Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/alextanhongpin/go-microservice-architecture
Sample microservice architecture to demonstrate how each pieces are linked together
cache key-value-store load-balancer logging security service storage telemetry visualization
Last synced: 07 Sep 2025
https://github.com/xecrets/xecrets-cli
Xecrets Cli - A feature-rich AxCrypt-compatible file encryption cli toolbox using https://github.com/axantum/xecrets-net, forked from AxCrypt 2.x for cryptography. https://www.axantum.com/xecrets-ez is an easy to use graphical frontend for Windows, Linux and macOS using it, and https://www.nuget.org/packages/Xecrets.Sdk/ is a .NET SDK .
cryptography decryption encryption encryption-decryption encryption-tool encryption-utility security security-tools
Last synced: 16 Jan 2026
https://github.com/hahwul/backbomb
💣 Dockerized penetration-testing/bugbounty/app-sec testing environment
appsec bugbounty docker docker-image environment golang hacking pentest security tools
Last synced: 01 Oct 2025
https://github.com/wolfssl/wolfcrypt-jni
wolfCrypt JCE provider and JNI wrapper
android android-fips cryptography embedded fips jce jce-provider jni jni-android jni-wrapper security wolfssl
Last synced: 16 Apr 2026
https://github.com/lumontec/lsmtrace
Trace deep kernel events through eBPF and lsm hooks
ebpf kernel linux-security-module security tracing
Last synced: 06 Feb 2026
https://github.com/mxrxdxn/pwned-passwords
A PHP library to query Troy Hunt's Pwned Passwords service to see whether or not a password has been included in a public breach.
breach password password-strength passwords php php7 pwnedpasswords security
Last synced: 14 Feb 2026
https://github.com/cymmetria/weblogic_honeypot
WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.
deception execution-vulnerability honeypot oracle security security-tools security-vulnerability vulnerability weblogic weblogic-server
Last synced: 04 Apr 2026
https://github.com/seqra/opentaint
The open source taint analysis engine for the AI era
java kotlin sast security security-tools seqra spring static-analysis taint-analysis vulnerabilities vulnerability-detection vulnerability-scanners
Last synced: 13 May 2026
https://github.com/nodesecure/scanner
⚡️ A package API to run a static analysis of your module's dependencies. This is the CLI engine!
audit nodejs nodesecure sast scanner security
Last synced: 02 Apr 2026
https://github.com/jasondrawdy/memorymapper
Lightweight library which allows the ability to map both native and managed assemblies into memory by either using process injection of a process specified by the user or self-injection.
assemblies cryptography library managed memory memory-allocation memory-hacking memory-management native-module security windows
Last synced: 25 Sep 2025
https://github.com/tpeczek/lib.aspnetcore.security
Lib.AspNetCore.Security is a library which provides security features like Content Security Policy, Strict Transport Security or Expect-CT for ASP.NET Core
asp-net-core csp hsts security
Last synced: 06 Apr 2025
https://github.com/picohz/pawprint
🐾 A simple web app for inspecting TLS / HTTP/2 fingerprints
fingerprinting http2 https ja3 rust security ssl tls tls-fingerprint webapp
Last synced: 21 Mar 2025
https://github.com/ivan-sincek/phishing-mobile-app
Phishing mobile application made in React Native for both Android and iOS devices.
android bug-bounty ethical-hacking ios javascript mobile-application mobile-penetration-testing offensive-security penetration-testing-tools phishing react-native red-team-engagement security
Last synced: 15 Apr 2025
https://github.com/ammarfaizi2/php-integral-obfuscator
PHP Integral Obfuscator
eval obfuscation obfuscator php php-eval php-obfuscator php7 security
Last synced: 14 Apr 2025
https://github.com/prismer-ai/signet
Proof layer for AI agents. Cryptographically verify every action.
agent-security ai-agents audit-trail autogen claude-code crewai cryptographic-signing cursor ed25519 langchain mcp mcp-security mcp-tools open-source python rust security signing typescript wasm
Last synced: 26 Apr 2026
https://github.com/capnspacehook/gorepro
Easily reproduce Go binaries
go golang reproducibility security
Last synced: 12 May 2025
https://github.com/zidansec/subscan
Subscan is a simple tool for subdomain scanner, it can scan subdomains fast.
cyber-security hacktool information-security linux-tools osint osint-tool pentest pentest-tool security subdomain-scanner
Last synced: 25 Mar 2025
https://github.com/sjinks/mysql-honeypotd
Low interaction MySQL honeypot written in C
Last synced: 10 Apr 2025
https://github.com/thewh1teagle/chrome-privless-encryption
A PoC demonstrating how to bypass Chrome v20+ appbound encryption to extract HTTP-only and secure cookies using Chrome's Remote Debugging Protocol, without admin rights.
appbound chrome cookies encryption hacking security
Last synced: 14 Oct 2025
https://github.com/nicoswd/asvs-checklist
OWASP Application Security Verification Standard 4.0 Checklist
Last synced: 19 Apr 2025
https://github.com/wallarm/docker-wallarm-node
⚡️ Official docker image for Wallarm Node. API security platform agent.
api-firewall api-security application-firewall envoyproxy nginx openapi-security rest-security security security-audit security-automation security-scanner security-tools waf web-application-firewall
Last synced: 10 Jun 2025
https://github.com/dispatchrun/netjail
Go library providing network access controls for dial functions and http transports
Last synced: 07 Oct 2025
https://github.com/kee-org/keevault2
Kee Vault 2 is a password manager for multiple devices. Password databases (Vaults) are encrypted using the KeePass storage format (KDBX) before being stored on the local device or sent to a remote server for synchronisation purposes.
android flutter kee-vault keepass password password-manager password-safety password-security password-store password-vault passwords security
Last synced: 22 Feb 2026
https://github.com/accuknox/discovery-engine
Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data emitted from policy engines..
cilium k8s kubearmor kubernetes policy security
Last synced: 14 Oct 2025
https://github.com/egen/tiny-tutorials
Quick tutorials on quick things that make each devops day better
bosh cloudfoundry devops devops-tools security tutorials
Last synced: 25 Jan 2026
https://github.com/grayddq/PypiScan
这个脚本主要提供对pypi供应链的源头进行安全扫描研究,扫描并发现未知的恶意包情况。
Last synced: 11 Jul 2025
https://github.com/ryandaniels/ansible-role-server-update-reboot
Update server (Redhat/CentOS or Ubuntu) to latest packages, reboot server, and wait for the server to start up.
ansible ansible-role centos linux redhat security ubuntu
Last synced: 19 Jul 2025
https://github.com/secusu/secusu
SЁCU is a public API to store self-destructing data payloads with url shortener and handle anonymous chat-rooms.
application cybercog decrypt destructing-data-payloads encrypt messenger package privacy secu security stanford-javascript-crypto url-shortener
Last synced: 13 Dec 2025
https://github.com/infisical/infisical-python
♾ Official Infisical SDK for Python
end-to-end-encryption environment-variables open-source python python-types python3 secret-management secrets security
Last synced: 07 May 2025
https://github.com/noracodes/rloris
A Rust implementation of slow HTTP DoS techniques
denial-of-service hacking http security slowloris
Last synced: 30 Apr 2025
https://github.com/brosck/l1lkiller
「⚠️」Performing a BYOVD on the truesight.sys driver
byovd development hacking malware offensivesecurity redteam security windows
Last synced: 04 Apr 2025
https://github.com/flashnuke/deadnet
A dos (denial of service) attack for local networks using dead router attack (IPv6) and ARP attack (IPv4) simultaneously
arp arp-poisoning arp-spoofing cybersecurity dead-router-attack denial-of-service dos dos-attack ipv4 ipv6 ipv6-security kali-linux pentest pentesting security wifi-attack
Last synced: 17 Mar 2025
https://github.com/geerlingguy/ansible-role-htpasswd
Ansible Role - htpasswd
ansible apache htaccess htpasswd http-basic-auth nginx role security webserver
Last synced: 17 Mar 2025
https://github.com/element119/module-sansec-composer-integrity-checker
A Magento 2 module wrapper for the Sansec Composer Integrity plugin.
Last synced: 10 Apr 2025
https://github.com/idlesign/srptools
Tools to implement Secure Remote Password (SRP) authentication
authentication python rfc-2945 rfc-5054 security srp
Last synced: 09 Apr 2025
https://github.com/cyb3rmx/nscript
Network security analysis tool with nmap scripts for termux ...
bash linux nmap nmap-brute nmap-scripts security security-vulnerability shell
Last synced: 11 Jul 2025
https://github.com/ldsec/unlynx
A decentralized privacy-preserving data sharing tool
data-sharing onet privacy-protection security
Last synced: 06 Apr 2026
https://github.com/9oelm/elasticpwn
Quickly collect data from thousands of exposed Elasticsearch or Kibana instances and generate a report to be analysed.
data-analytics elastic elasticsearch elasticstack intelligence kibana osint security
Last synced: 30 Apr 2025
https://github.com/nwtgck/http-knocking
🚪HTTP-Knocking hides a Web server and open it by knocking sequence: Hide Web server until your knocks
docker http npm port-knocking proxy-server reverse-proxy security
Last synced: 14 Sep 2025
https://github.com/dimkr/luufs
Lazy man's, user-mode union file system
c files filesystem fuse security
Last synced: 30 Apr 2025
https://github.com/yinhangcode/homebridge-mi-gateway-security
XiaoMi Gateway Security plugin for HomeBridge.
aqara gateway homebridge homebridge-plugin security xiaomi
Last synced: 09 Jul 2025
https://github.com/disclose/dnssecuritytxt
A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
disclosure-policy security security-txt vulnerability-disclosure vulnerability-disclosure-policies
Last synced: 17 Jan 2026
https://github.com/ldebruijn/graphql-protect
A dead-simple yet highly customizable security proxy compatible with any HTTP GraphQL Server or Gateway.
Last synced: 29 Jun 2025
https://github.com/rix4uni/cvemapping
This repo Gathers all available cve exploits from github.⚠️ Be careful Malware.
bug-bounty bugbounty bugbountytips cve exploits hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence
Last synced: 15 Apr 2025
https://github.com/UDcide/udcide
Android Malware Behavior Deleter
android antivirus editor malware security security-tools
Last synced: 15 Nov 2025
https://github.com/kpcyrd/apt-swarm
🥸 Experimental p2p gossip network for OpenPGP signature transparency 🥸
censorship-resistance decentralized p2p rust security transparency-log
Last synced: 14 Apr 2025
https://github.com/jishanshaikh4/cryptography-roadmap
The Cryptography Roadmap 2021
cryptanalysis cryptography roadmap security
Last synced: 01 Mar 2026
https://github.com/aryma-f4/worldshellfinder
Web Shell finder using grep, where it has wordlist around the world to grep inside using regex and wordlist. So Lightweight and fast!
backdoor backdoor-defense backdoor-finder cyber-security cybersecurity finder finder-shell security security-scanner shell shell-detection shell-detector shell-finder shell-script web-shell webshell worldfind worldshellfinder
Last synced: 16 Apr 2026
https://github.com/nix-security-wg/nix-security-tracker
Web service for managing information on vulnerabilities in software distributed through Nixpkgs
nixpkgs security vulnerabilities
Last synced: 26 Oct 2025
https://github.com/kamushadenes/apkrash
APKrash is an Android APK security analysis toolkit focused on comparing APKs to detect tampering and repackaging.
analysis android apk repackaging reversing security tampering
Last synced: 20 Oct 2025
https://github.com/checkmarx-ts/checkmarx-github-action
Checkmarx Scan Github Action
appsec checkmarx checkmarx-sast checkmarx-server github-actions osa sast sca scanning security security-vulnerabilities
Last synced: 18 Jan 2026
https://github.com/brimstone/docker-kali
A Docker image for bits of Kali Linux
armitage docker kali metasploit pentesting security zaproxy
Last synced: 10 Oct 2025
https://github.com/networknt/light-graphql-4j
GraphQL implementation based on light-4j
graphql graphql-security graphql-validator java relay relayjs security
Last synced: 06 Jul 2025
https://github.com/securestackco/actions-secrets
Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host strings, API keys, .env and config files and more
actions deployment devsecops github-actions secrets secrets-detection secrets-discovery-service secrets-scan secrets-scanner security security-automation security-tools vulnerability-detection
Last synced: 30 Jul 2025
https://github.com/hahwul/xssmaze
XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnerabilities.
crystal-lang hacking security vulnapp xss xss-maze
Last synced: 13 Mar 2026
https://github.com/cpl/cryptor
Privacy, Anonymity, Freedom - P2P network
anonymity cryptography cryptor encryption file-sharing freedom network p2p privacy security under-development
Last synced: 16 Jan 2026
https://github.com/consensysdiligence/pythx
A Python library for the MythX smart contract security analysis platform
mythx security security-scanner smart-contracts solidity
Last synced: 11 Mar 2026
https://github.com/turbot/steampipe-mod-kubernetes-compliance
Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters using Powerpipe and Steampipe.
compliance hacktoberfest k8s kubernetes kubernetes-api powerpipe powerpipe-mod security steampipe steampipe-mod
Last synced: 15 Apr 2025
https://github.com/qkaiser/cottontail
Capture all RabbitMQ messages being sent through a broker.
Last synced: 15 Aug 2025
https://github.com/bonfida/vault-watcher
An easily deployable service to monitor mission-critical SPL token accounts
monitoring security solana spl-token
Last synced: 05 Apr 2025
https://github.com/bkimminich/webappsec-nutshell
An ultra-compact intro (or refresher) to Web Application Security.
application-security owasp security security-awareness training-materials web-application-security
Last synced: 04 Sep 2025
https://github.com/thewhiteh4t/thewhiteh4t.github.io
thewhiteh4t's Blog
blog blogging exploit exploitation framework hacking mitigation security tips-and-tricks
Last synced: 05 Mar 2025
https://github.com/Myskiv-Ivan/SecTools
List of tools for SecDevOps, vulnerability analysis, network scanning
appsec devops devsecops hacking osint pentest-tool pentesting scanner-web secdevops security security-tools vulnerability-scanners
Last synced: 22 Jul 2025
https://github.com/infokiller/config-public
Optimize ergonomics, security, and productivity: vim/neovim, zsh, tmux, i3, emacs, vscode, ipython, jupyter, ranger, fzf, kitty, xkb, quantself, systemd, etc
archlinux doom-emacs dotfiles emacs i3 ipython python quantified-self ranger security selfquant tmux vim vscode wsl2 zsh
Last synced: 16 Mar 2025
https://github.com/SasanLabs/owasp-zap-jwt-addon
OWASP ZAP addon for finding vulnerabilities in JWT Implementations
fuzzer hacktoberfest jwt jwt-scanner owasp scanning security security-tools zap-extension zaproxy
Last synced: 10 May 2025
https://github.com/abathelt/Resources
Learning resources, blogs, news, SQL, PowerShell, SQL, Linux, Revers Engineering, Malware
Last synced: 30 Jul 2025
https://github.com/bratkartoffel/security-jwt
Spring Boot Addon to add JWT based security
jwt jwt-token security spring-boot spring-security
Last synced: 14 Jan 2026
https://github.com/ls9512/usecurity
USecurity is a security and anti-cheat component used in the Unity project.
anticheat encrypt encryption encryption-decryption game game-development safety security u3d unity unity3d unity3d-plugin
Last synced: 13 May 2026
https://github.com/in-toto/in-toto-rs
A rust implementation of in-toto
security software-supply-chain
Last synced: 05 Apr 2025
https://github.com/wolfssl/meta-wolfssl
wolfSSL layer for OpenEmbedded and Yocto, containing product recipes, examples, and bbappend files.
bblayers bitbake cryptography mqtt openembedded poky security ssh tls tls13 tpm2 wolfmqtt wolfssh wolfssl wolftpm yocto yocto-project
Last synced: 27 Apr 2025
https://github.com/nicoSWD/asvs-checklist
OWASP Application Security Verification Standard 4.0 Checklist
Last synced: 12 Jul 2025
https://github.com/andrewwebber/kate
Because Clair needs a friend
docker go golang security static-analysis vulnerabilities
Last synced: 23 Jul 2025
https://github.com/rocketshipapps/hardenedpaste
[Retired] Hardened Paste is a browser extension that prevents the “pastejacking” exploit.
bash chrome chrome-extension documentation frontend html javascript json security shell
Last synced: 24 Apr 2025
https://github.com/salesforce/terraform-provider-policyguru
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
aws aws-security cloud cloudsecurity hacktoberfest iam salesforce security
Last synced: 15 Apr 2025
https://github.com/spatie/email-concealer-cli
CLI tool for concealing e-mails in a file by replacing their domain
cli developer-tools email obfuscation security tool
Last synced: 22 Apr 2025
https://github.com/noraj/miniss
Displays a list of open listening sockets. It is a minimal alternative to ss or netstat.
crystal crystal-shard crystal-shards ctf ctf-tools cyber cybersecurity hacking hacking-tool network pentest pentesting security security-tools shard shards socket tool
Last synced: 07 Oct 2025
https://github.com/jakejarvis/cloudflare-ufw-updater
🔥 🧱 UFW rule updater to only allow HTTP and HTTPS traffic from Cloudflare IP address ranges
bash cloudflare firewall linux security shell ubuntu ufw
Last synced: 08 May 2025
https://github.com/yaroslaff/evalidate
Safe and fast evaluation of untrusted user-supplied python expressions
eval evaluate evaluation expression python python3 safe sandbox secure security validate
Last synced: 06 Apr 2025
https://github.com/leodido/demo-cloud-native-ebpf-day
Various eBPF programs for tracing network connections
attack auditing bpf defense demo ebpf enforcement experimentation kernel lsm lsm-hooks prevention security talk tracepoints tracing
Last synced: 17 Jun 2025
https://github.com/padosoft/laravel-composer-security
Laravel command to test security vulnerabilities in your composer files.
composer laravel laravel-command laravel-package security
Last synced: 23 Apr 2025
https://github.com/cenk/bad-hosts
A blocklist file for blocking ads, trackers and malware domains.
ad-blocker adblock adblock-list adblocker adguard adguardhome ads blacklist blocklist dns dnsmasq hosts hostsfile ipv6 malware pihole privacy security unbound unified-hosts
Last synced: 18 Jan 2026
https://github.com/authzed/spicedb-kubeapi-proxy
Secure access to the Kubernetes API using SpiceDB
acl authorization cloud-native fga fine-grained-access-control kubernetes permissions proxy rebac security spicedb zanzibar
Last synced: 21 Jul 2025
https://github.com/ayesh/statelesscsrf
Secret-key based state-less CSRF token generator and validator for PHP 7. State-less means you do not have to store the CSRF token in session or database.
csrf netsec php php7 security stateless token token-authetication
Last synced: 06 Nov 2025
https://github.com/SalehLardhi/google-dorks-toolkit
GoogleDorks Toolkit is a powerful automated tool for google dorks, designed for pentration tester, ethical hackers and bug hunters to detect harmful security vulnerabilities using Google Dorks techniques. It has methods to bypass google captcha and search in a list of any possible program in wild.
bypass-google cybersecurity dorking-tool ghdb google google-captcha google-dork google-dorks google-hacking-database google-scraping googledork googledorks googlehacking googlesearch hackgoogle hacking python scraper security
Last synced: 01 Apr 2025
https://github.com/jassics/cybersecurity-slides
Collection of mine and others presentations on various topics like application security, python, cloud security, DevSecOps and so on... These are free to use and publicly available slides. But, don't forget to give the credit to the owners!
application-security aws cybersecurity-awareness cybersecurity-training devsecops learning-materials learning-resources presentations security security-presentations security-slides slides threat-modeling web-security
Last synced: 27 Apr 2025
https://github.com/tracerip/archive.trace.rip
Access and download databreaches for absolutely free!
breaches csint cyber-security cybersecurity cybersecurity-education data-breach data-leaks database databases databreach dataleaks hacking haveibeenpwned leaks osint osint-tool password password-breach passwords security
Last synced: 09 Oct 2025
https://github.com/attumm/maat
Validation and transformation library powered by recursive descent validation algorithm. Made to be extended for any kind of project.
dictionary fast json-schema nested-structures parser security serialization types validation validator
Last synced: 09 Apr 2025
https://github.com/gregwar/mitm
Man in the middle tool
arp-poisoning attack audit c network replayed-packets security security-tools
Last synced: 08 Jul 2025
https://github.com/r3dxpl0it/CVE-2018-4407
IOS/MAC Denial-Of-Service [POC/EXPLOIT FOR MASSIVE ATTACK TO IOS/MAC IN NETWORK]
attack blueteam cve cyber-security cybersecurity denial-of-service exploit hacking hacking-tool ios macos network penetration-testing poc redteam security
Last synced: 22 Apr 2025
https://github.com/sysdiglabs/k8s-security-configwatch
Git action to generate security lint report for Kubernetes workload YAML files on PR
Last synced: 13 Jul 2025
https://github.com/ivan-sincek/chad
Search Google Dorks like Chad. / Broken link hijacking tool.
broken-link-takeover bug-bounty crawler ethical-hacking google google-dorking google-dorks offensive-security penetration-testing playwright python red-team-engagement scraper search-engine security social-media social-media-takeover threat-hunting threat-intelligence web-penetration-testing
Last synced: 10 Mar 2026
https://github.com/erlendellingsen/digitalocean-developer-firewall
Tool for developers to easily configure firewalls and gain access to their servers when using DigitalOcean cloud firewalls.
digitalocean digitalocean-droplets digitalocean-firewall droplets firewall firewall-management nodejs security server server-management
Last synced: 13 May 2025
https://github.com/hakdogan/apacheshiro
:key: Using Apache Shiro JDBC Realm with MySQL Database
Last synced: 05 Oct 2025
https://github.com/rusty-snake/firejailed-tor-browser
HOWTO: Firejailed Tor Browser
firejail howto sandbox security tbb tor-browser
Last synced: 21 Mar 2025
https://github.com/NodeSecure/vulnera
Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).
audit nodesecure npm security vuln vulnerabilities
Last synced: 30 Aug 2025