Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/pentesttoolscom/pentesttools-github-action
Scan your web apps for vulnerabilities, misconfigurations, and other security issues with the Pentest-Tools.com command-line program.
ci cicd cli continuous-delivery continuous-integration penetration-testing security security-audit security-automation security-hardening security-scanner security-testing security-tools vulnerability-assessment vulnerability-detection vulnerability-scanners
Last synced: 03 Apr 2025
https://github.com/snapt/traefik-nova-plugin
Traefik plugin to proxy requests to Snapt Nova for evaluation against the WAF.
Last synced: 15 Jan 2026
https://github.com/nextcloud/end_to_end_encryption_rfc
๐ Specification for end-to-end encryption used by Nextcloud sync & mobile apps
encryption encryption-rfc end-to-end-encryption nextcloud nextcloud-sync security
Last synced: 15 Jun 2025
https://github.com/ScribeMD/rootless-docker
Run Docker in Rootless Mode to Prevent Permission Errors
asdf composite-action conventional-commits docker editorconfig github-actions github-actions-docker megalinter nodejs permissions pre-commit prettier python python-poetry renovate rootless-docker security semver vscode yaml
Last synced: 08 Jul 2025
https://github.com/gamemann/packet-flooder
A packet flooding/generating program I made that supports TCP, UDP, and ICMP packets. Includes functionality to change characteristics per packet and is also multithreaded.
c denial-of-service dos dos-attack fast flood flooding multithreading network packet packet-flood packet-flooder packet-generator packetflood pcktflood pcktgen pentest pentest-tool pentesting security
Last synced: 18 Mar 2025
https://github.com/masterflomaster1/jfxcrypto
๐ 150+ Algorithms, Reactive GUI, and More: Text & File Encryption, Hashing, MAC, Key Generation, and Password Strength Evaluation. JCA, JCE with Bouncy Castle
aes aes-256 chacha20 cipher encryption enigma gui hash hmac java javafx md5 mvvm password pbkdf2 rc4 reactive salsa20 security sha-256
Last synced: 13 Jul 2025
https://github.com/kickstarter/ruby-homograph-detector
๐ต๏ธโโ๏ธ๐ต๏ธโโ๏ธ Ruby gem for determining whether a given URL is considered an IDN homograph attack
homograph-attack idn-homograph-attack security unicode
Last synced: 20 Oct 2025
https://github.com/noraj/miniss
Displays a list of open listening sockets. It is a minimal alternative to ss or netstat.
crystal crystal-shard crystal-shards ctf ctf-tools cyber cybersecurity hacking hacking-tool network pentest pentesting security security-tools shard shards socket tool
Last synced: 07 Oct 2025
https://github.com/oisf/suricata-intel-index
Suricata rule and intel index
ids intel ips nsm rules security signatures suricata
Last synced: 31 Jan 2026
https://github.com/rusty-snake/firejailed-tor-browser
HOWTO: Firejailed Tor Browser
firejail howto sandbox security tbb tor-browser
Last synced: 21 Mar 2025
https://github.com/erlendellingsen/digitalocean-developer-firewall
Tool for developers to easily configure firewalls and gain access to their servers when using DigitalOcean cloud firewalls.
digitalocean digitalocean-droplets digitalocean-firewall droplets firewall firewall-management nodejs security server server-management
Last synced: 13 May 2025
https://github.com/salesforce/terraform-provider-policyguru
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
aws aws-security cloud cloudsecurity hacktoberfest iam salesforce security
Last synced: 15 Apr 2025
https://github.com/leodido/demo-cloud-native-ebpf-day
Various eBPF programs for tracing network connections
attack auditing bpf defense demo ebpf enforcement experimentation kernel lsm lsm-hooks prevention security talk tracepoints tracing
Last synced: 17 Jun 2025
https://github.com/hakdogan/apacheshiro
:key: Using Apache Shiro JDBC Realm with MySQL Database
Last synced: 05 Oct 2025
https://github.com/NodeSecure/vulnera
Programmatically fetch security vulnerabilities with one or many strategies (NPM Audit, Sonatype, Snyk, Node.js DB).
audit nodesecure npm security vuln vulnerabilities
Last synced: 30 Aug 2025
https://github.com/jonpulsifer/dnsmon-go
A golang DNS monitor inspired by https://github.com/gamelinux/passivedns
dns golang gopacket monitoring prometheus security security-tools
Last synced: 23 Aug 2025
https://github.com/moloch--/wire-transfer
Encode binary as English text over HTTP(s)
encoder obfuscation obfuscator security security-tools
Last synced: 14 Apr 2025
https://github.com/authzed/spicedb-kubeapi-proxy
Secure access to the Kubernetes API using SpiceDB
acl authorization cloud-native fga fine-grained-access-control kubernetes permissions proxy rebac security spicedb zanzibar
Last synced: 21 Jul 2025
https://github.com/sasanlabs/owasp-zap-jwt-addon
OWASP ZAP addon for finding vulnerabilities in JWT Implementations
fuzzer hacktoberfest jwt jwt-scanner owasp scanning security security-tools zap-extension zaproxy
Last synced: 21 Sep 2025
https://github.com/jassics/cybersecurity-slides
Collection of mine and others presentations on various topics like application security, python, cloud security, DevSecOps and so on... These are free to use and publicly available slides. But, don't forget to give the credit to the owners!
application-security aws cybersecurity-awareness cybersecurity-training devsecops learning-materials learning-resources presentations security security-presentations security-slides slides threat-modeling web-security
Last synced: 27 Apr 2025
https://github.com/tracerip/archive.trace.rip
Access and download databreaches for absolutely free!
breaches csint cyber-security cybersecurity cybersecurity-education data-breach data-leaks database databases databreach dataleaks hacking haveibeenpwned leaks osint osint-tool password password-breach passwords security
Last synced: 09 Oct 2025
https://github.com/anthonysgro/geospoof
Browser extension to spoof your geolocation, timezone, and prevent WebRTC IP leaks.
browser firefox gecko geolocation privacy security spoof spoofing spoofing-detection timezone vpn
Last synced: 27 May 2026
https://github.com/bmedicke/quantum_cryptography
demonstration of quantum cryptography ๐ ๐ , one-time pad communication via BB84. repo for our IT Security Master project
alice bb84-protocol beam-splitter bob cryptography docker docker-compose hardware jupyter-notebooks lasers master mcs mqtt photons quantum quantum-cryptography rabbitmq security theory thorlabs
Last synced: 02 Apr 2025
https://github.com/duaraghav8/solparse
Solidity Parser for Solium
abstract-syntax-tree ast blockchain decentralized ethereum parse pegjs security smart-contracts solidity solium
Last synced: 17 Mar 2025
https://github.com/hunters-org/hunter-kit
Hunter-Kit is a cross platform security toolkit and framework that can automate most of the pentesting engagement from the recon to reporting phase
attacks autmation frameworks pentesting-tools reconnaissance security security-tools toolkit
Last synced: 12 Mar 2026
https://github.com/asggo/spf
Parse SPF record and determine if client IP is allowed to send email.
dns go golang security sender-policy-framework spf spf-record
Last synced: 03 Feb 2026
https://github.com/optum/cloudig
Cloud governance reports from native services in a clear and readable digest
athena audit aws aws-config aws-iam aws-phd cloud cloudtrail compliance ecr-scan go governance inspector least-privilege reporting security trusted-advisor well-architected
Last synced: 14 Apr 2025
https://github.com/fabaff/fsl-test-bench
FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching security testing methodologies, testing tools, learning, and playing.
ansible fedora fedora-security-lab pentesting playground security vulnerable
Last synced: 15 Apr 2025
https://github.com/junkurihara/lecture-security_engineering
Slide decks and sample codes for a lecture of "Security Engineering", which are composed in terms of how to choose and deploy appropriate standardization security technologies in information systems.
lecture lecture-slides security university-course
Last synced: 14 Apr 2025
https://github.com/jenkinsci/azure-ad-plugin
Authentication and Authorization with Azure AD
azure hacktoberfest security user
Last synced: 06 Apr 2025
https://github.com/datadog/nginx-datadog
Enhance NGINX Observability and Security with Datadog's Module
apm appsec datadog nginx observability security tracing
Last synced: 06 Feb 2026
https://github.com/ariary/tacos
๐ฎ INTERACTIVE reverse shell everywhere! (Particularly digestible with socat multi-handler listener)
ctf golang infosec interactive pentest pentest-tool reverse-shell security socat
Last synced: 26 Apr 2025
https://github.com/javiercasares/wpvulnerability
Plugin WPVulnerability for WordPress. https://wordpress.org/plugins/wpvulnerability/
php security vulnerability wordpress wordpress-plugin
Last synced: 13 Jun 2025
https://github.com/grahamhelton/spoofpoint
Spoofpoint is a domain monitoring tool that allows you to generate a list of domains that are 1 character off of your domain (grahamhelton.com turns into -> grahamheIton.com ((The L is a capital I )), check a list of domains you already have, or check as single domain.
domain domain-monitoring security
Last synced: 22 Jan 2026
https://github.com/claude-world/claude-skill-antivirus
Security scanner for Claude Code Skills โ 9 engines detect malicious patterns, data exfiltration, dangerous ops across 71K+ skills
claude-code claude-code-skills malware-detection nodejs npm scanner security
Last synced: 03 Apr 2026
https://github.com/lubux/ecelgamal
Additive homomorphic EC-ElGamal
c cryptography homomorphic-encryption java secure-computation security
Last synced: 12 Oct 2025
https://github.com/rverton/gxss
Blind XSS service alerting over slack or email
blind-xss exfiltration pentesting security xss
Last synced: 09 Mar 2026
https://github.com/wolfssl/wolfssh-examples
Example applications using the wolfSSH Library.
embedded esp32 esp8266 examples getting-started iot security ssh ssh-examples wolfssh wolfssl
Last synced: 23 Aug 2025
https://github.com/bobek/masscan_as_a_service
masscan as a service
audit bare-metal cloud containers git-scraping masscan phabricator security security-scanner security-tools sre
Last synced: 25 Jan 2026
https://github.com/sefinek/malicious-ip-addresses
A list of malicious IP addresses associated with botnets, cyberattacks, and the generation of artificial traffic on websites. Useful for network administrators and security companies to block threats and protect against DDoS attacks.
botnets cybersecurity ddos ddos-protection firewall google-adsense ip-list list malicious malicious-ips malicious-url malicious-url-detection network-monitoring protection security security-tools threat-detection traffic-analysis
Last synced: 25 Jul 2025
https://github.com/gnat/csrf-starlette-fastapi
Dead simple CSRF security middleware for Starlette โญ and FastAPI โก
async csrf fastapi htmx hyperscript python security starlette web
Last synced: 15 Apr 2025
https://github.com/shelld3v/flydns
Related subdomains finder
bug-bounty bugbounty hacking infosec network-security osint pentest pentesting recon reconnaissance security subdomains subdomains-discovery
Last synced: 22 Mar 2025
https://github.com/theupdateframework/taps
TUF Augmentation Proposals (TAPs)
Last synced: 25 Feb 2026
https://github.com/arall/vulnerabilities
Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
dast sast security vulnerabilities vulnerability vulnerable vulnerable-app vulnerable-application
Last synced: 22 Jan 2026
https://github.com/yusuf-daglioglu/mitmproxy_redirector
Redirect your web browser to your any enviroment
http local-development man-in-the-middle mitmproxy productivity proxy security ssl websocket
Last synced: 15 Apr 2025
https://github.com/pwelch/virustotal_api
Ruby Gem for VirusTotal API
malware-analysis ruby security
Last synced: 15 Apr 2025
https://github.com/namecoin/electrum-nmc
Namecoin port of Electrum Bitcoin client.
anticensorship blockchain civil-liberties cryptocurrency cryptography decentralized electrum free-speech hacktoberfest human-rights internet-freedom namecoin namecoin-wallet p2p privacy python security
Last synced: 30 Apr 2025
https://github.com/Keeper-Security/keeper-sdk-dotnet
.Net and PowerShell version of Keeper Commander, a CLI and SDK interface for the Keeper Security platform.
commander dotnet password-manager passwords powershell security
Last synced: 05 May 2025
https://github.com/univ-of-utah-marriott-library-apple/disable_sip
This script is used in the recovery partition to automatically disable SIP.
bash mac macadmin macadmins security system-integrity-protection
Last synced: 10 Apr 2025
https://github.com/techgaun/plug_secex
Plug that adds various HTTP Headers to make Phoenix/Elixir app more secure
elixir hex hex-downloads http-headers phoenix plug plug-secex security
Last synced: 13 Jun 2025
https://github.com/keeper-security/keeper-sdk-dotnet
.Net and PowerShell version of Keeper Commander, a CLI and SDK interface for the Keeper Security platform.
commander dotnet password-manager passwords powershell security
Last synced: 05 Apr 2025
https://github.com/geekmasher/securitree.nvim
SecuriTree - Security Research Tool
Last synced: 06 Mar 2026
https://github.com/the-mcgrail-foundation/mimedefang
MIMEDefang is an e-mail filtering tool that works with the Sendmail โMilterโ library. MIMEDefang lets you express your filtering policies in Perl rather than C, making it quick and easy to filter or manipulate your mail.
antispam email filter perl security smtp
Last synced: 01 Jul 2025
https://github.com/vacuumlabs/cardano-ctf
A game where Cardano developers and enthusiasts can try to exploit purposely vulnerable smart contracts and learn about the most common security issues and how to prevent them.
cardano ctf decentralized-finance security smart-contracts vulnerabilities
Last synced: 12 Apr 2025
https://github.com/nekmo/pip-rating
Check the health of your project's requirements and get a score for each dependency.
dependencies hacktoberfest pip python rating requirements security security-audit security-tools vulnerabilities
Last synced: 13 Dec 2025
https://github.com/0xInfection/PewSWITCH
A FreeSWITCH specific scanning and exploitation toolkit for CVE-2021-37624 and CVE-2021-41157.
exploitation-framework freeswitch security sip-security unauthenticated-requests voip-telephony-providers
Last synced: 11 Jul 2025
https://github.com/en14c/erebus
Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
c elf elf-binaries elf64 linux linux-system-programming process-injection proof-of-concept security virus x64-assembly
Last synced: 09 Jul 2025
https://github.com/khaosdoctor/enigmajs
Full implementation of the 1944 German cryptographic machine in TypeScript with a nice UI
cipher cryptography enigma enigma-cipher enigma-js enigma-machine enigma-simulator javascript security typescript vue
Last synced: 29 Apr 2025
https://github.com/VerSprite/alpnpass
This tool will listen on a given port, strip SSL encryption, forward traffic through a plain TCP proxy, then encrypt the returning traffic again and send it to the target of your choice. Unlike most SSL stripping solutions this tool will negotiate ALPN and preserve the negotiated protocol all the way to the target.
alpn mitm mitmproxy security security-tools ssl tls
Last synced: 11 Jul 2025
https://github.com/rrd108/nuxt-api-shield
Nuxt API Rate Limiter / Brute Force Protection
nuxt nuxt-module rate-limiter security
Last synced: 10 Apr 2025
https://github.com/atilafassina/shieldwall
Secure your Fullstack App ๐ก๏ธ
content-security-policy middleware owasp security serverless solidjs solidstart typescript
Last synced: 15 Jun 2025
https://github.com/ssstonebraker/log4j-scan-turbo
Multithreaded log4j vulnerability scanner using only bash! Tests all JNDI protocols, HTTP GET/POST, and 84 headers.
bash kali log4j log4shell oscp oscp-tools osint pentesting security securty-tools shell
Last synced: 12 Jul 2025
https://github.com/sbaresearch/amlsec
Automated Security Risk Identification Using AutomationML-based Engineering Data
automationml cyber-physical-systems industrial-automation research risk-assessment security semantic-web
Last synced: 12 Jul 2025
https://github.com/exploitworks/escalatex
A powerful Linux privilege escalation scanner โ a feature-rich and modern alternative to LinPEAS, built for speed, depth, and clarity.
bash blackarch capability-checker container-security ctf-tools cybersecurity ethical-hacking infosec kali-linux kernel-exploitation linux penetration-testing pentesting privilege-escalation redteam security security-tools suidsploit sysadmin vulnerability-scanners
Last synced: 11 Apr 2025
https://github.com/apriorit/access-app-data-android
A no-root solution to access Android app private data without root access. Browser history and instant messages example
Last synced: 08 May 2025
https://github.com/0xinfection/pewswitch
A FreeSWITCH specific scanning and exploitation toolkit for CVE-2021-37624 and CVE-2021-41157.
exploitation-framework freeswitch security sip-security unauthenticated-requests voip-telephony-providers
Last synced: 13 Apr 2025
https://github.com/flashnuke/pass-generator
Generate wordlists for dictionary attacks
brute-force bruteforce dict-attack dictionary-attack kali-linux password password-generator password-list-generator password-list-maker passwordlist-generator passwordlist-maker pentest pentesting pentesting-tools security wordlist wordlist-attack wordlist-generator wordlist-maker
Last synced: 17 Mar 2025
https://github.com/tankpkg/tank
Security-first package manager for AI agent skills
ai-agents ai-coding-agent claude-code cli cursor developer-tools npm-alternative package-manager registry security semver skills static-analysis supply-chain-security
Last synced: 21 May 2026
https://github.com/rikyz90/shibaclaw
๐ก๏ธ Self-hosted AI agent with 5-layer prompt injection protection. Multi-channel, parallel agents, MCP, Docker-ready, LLM-agnostic.
agent-framework ai-agent ai-agents chatbot docker hardened-agent llm matrix mcp multi-agent ollama open-source openai openrouter prompt-injection python security self-hosted telegram-bot ultra-light
Last synced: 17 May 2026
https://github.com/parsiya/parsia-code
Contains random code and some of my older projects
Last synced: 20 Apr 2026
https://github.com/kraftjectory/secrex
Simple and secure secrets manager in Elixir projects
Last synced: 15 Jul 2025
https://github.com/tigran-sargsyan-w/self-signed-cert-toolkit
A toolkit for generating self-signed digital certificates for signing PDFs, emails, software, and other content using tools like JSignPdf or any software that supports PKCS#12.
cert-generation certificate cli-tool code-signing digital-signature document-signing email-signature encryption openssl p12 pdf pdf-signature pkcs12 privacy security self-signed smime ssl tls x509
Last synced: 29 May 2026
https://github.com/perfectlysoft/perfect-crypto
Cryptographic Operations
crypto cryptography security server-side-swift ssl swift
Last synced: 05 May 2025
https://github.com/WiPi-Hunter/PiUser
๐จโ๐ป๐ต๐ป๐ฉโ๐ป Analyze user behavior against fake access points๐ก
access-point attacker blueteam corporations fake pentesting probe-requests redteam security user wifi
Last synced: 07 Apr 2025
https://github.com/alaz/legitbot
๐ค Is this Web request from a real search engine๐ท or from an impersonating agent ๐ต๏ธโโ๏ธ?
bot detect-crawlers fake googlebot impersonation protection ruby ruby-gem search-engine security
Last synced: 25 Apr 2026
https://github.com/damienbod/azurefunctionssecurity
Azure Functions Security
api aspnet-core azure azure-functions security serverless
Last synced: 15 Apr 2025
https://github.com/theredspy15/multi-go
A multi-tool made in Go, and aimed at security experts to make life a little more convenient
audit auditing beginner beginner-friendly beginner-project command-line-tool decryption denial-of-service dos-attack email-sender encryption go hashing linux password-generator scraping-websites security security-tools toolkit
Last synced: 18 Jul 2025
https://github.com/sectool/python-pentest-toolkit
Pentest ToolKit
cyber-security cybersecurity github github-projects penetration penetration-testing penetration-testing-framework pentest-toolkit pentesting project security security-scanner security-test security-testing security-tools security-vulnerability security-vulnerability-assessment toolkit toolkits tools
Last synced: 29 Apr 2025
https://github.com/simeononsecurity/Windows-Hardening-CTF
A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
automation ctf ctf-tools hardening security windows
Last synced: 17 Aug 2025
https://github.com/wolfssl/osp
wolfSSL Open Source project ports
apache cryptography freeradius git hostapd krb5 nginx openssh openssl-alternative python qt security stunnel wolfssl
Last synced: 08 May 2025
https://github.com/alulsh/intro-to-security-for-developers
An introduction to security for developers.
Last synced: 20 Nov 2025
https://github.com/hazcod/security-slacker
Pokes users about outstanding security risks found by Crowdstrike Spotlight or vmware Workspace ONE so they secure their own endpoint.
crowdstrike one security slack spotlight workspace ws1
Last synced: 19 Apr 2025
https://github.com/simeononsecurity/windows-hardening-ctf
A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
automation ctf ctf-tools hardening security windows
Last synced: 15 Apr 2025
https://github.com/sporkmonger/bulwark
Automated security decision making under uncertainty
bot-mitigation bulwark detection devsecops envoy security waap waf webassembly
Last synced: 19 Feb 2026
https://github.com/alcideio/pipeline
Alcide Kubernetes Advisor ... Cluster Hygiene & Security Scanner - Pipeline Integration
aks argo argocd azure circleci eks github-action gitlab-ci gke google-cloud-build jenkins kubernetes security security-audit travis travis-ci vulnerability-scanner
Last synced: 16 Apr 2025
https://github.com/tethik/burn-after-reading
A service to share short term messages stored in memory.
Last synced: 26 Jun 2025
https://github.com/JakeRoggenbuck/regolith
A server-side TypeScript and JavaScript library immune to Regular Expression Denial of Service (ReDoS) attacks by using Rust and linear RegEx under the hood. Regolith has a linear worst case time complexity, compared to the default RegExp found in TypeScript and JavaScript, which has an exponential worst case.
javascript regex security typescript
Last synced: 17 Aug 2025
https://github.com/d2iq-archive/kubernetes-security-benchmark
A simple way to evaluate the security of your Kubernetes deployment against sets of best practices defined by various community sources
cis cli cobra dcos golang ksphere kubernetes security
Last synced: 31 Mar 2025
https://github.com/1and1/compositejks
Load a custom Java Keystore into the SSL Context without replacing the system CA list.
Last synced: 05 Mar 2025
