Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/apriorit/access-app-data-android
A no-root solution to access Android app private data without root access. Browser history and instant messages example
Last synced: 08 May 2025
https://github.com/exploitworks/escalatex
A powerful Linux privilege escalation scanner — a feature-rich and modern alternative to LinPEAS, built for speed, depth, and clarity.
bash blackarch capability-checker container-security ctf-tools cybersecurity ethical-hacking infosec kali-linux kernel-exploitation linux penetration-testing pentesting privilege-escalation redteam security security-tools suidsploit sysadmin vulnerability-scanners
Last synced: 11 Apr 2025
https://github.com/atilafassina/shieldwall
Secure your Fullstack App 🛡️
content-security-policy middleware owasp security serverless solidjs solidstart typescript
Last synced: 15 Jun 2025
https://github.com/sbaresearch/amlsec
Automated Security Risk Identification Using AutomationML-based Engineering Data
automationml cyber-physical-systems industrial-automation research risk-assessment security semantic-web
Last synced: 12 Jul 2025
https://github.com/theredspy15/multi-go
A multi-tool made in Go, and aimed at security experts to make life a little more convenient
audit auditing beginner beginner-friendly beginner-project command-line-tool decryption denial-of-service dos-attack email-sender encryption go hashing linux password-generator scraping-websites security security-tools toolkit
Last synced: 18 Jul 2025
https://github.com/parsiya/parsia-code
Contains random code and some of my older projects
Last synced: 20 Apr 2026
https://github.com/damienbod/azurefunctionssecurity
Azure Functions Security
api aspnet-core azure azure-functions security serverless
Last synced: 15 Apr 2025
https://github.com/alcideio/pipeline
Alcide Kubernetes Advisor ... Cluster Hygiene & Security Scanner - Pipeline Integration
aks argo argocd azure circleci eks github-action gitlab-ci gke google-cloud-build jenkins kubernetes security security-audit travis travis-ci vulnerability-scanner
Last synced: 16 Apr 2025
https://github.com/hazcod/security-slacker
Pokes users about outstanding security risks found by Crowdstrike Spotlight or vmware Workspace ONE so they secure their own endpoint.
crowdstrike one security slack spotlight workspace ws1
Last synced: 19 Apr 2025
https://github.com/WiPi-Hunter/PiUser
👨💻🕵🏻👩💻 Analyze user behavior against fake access points📡
access-point attacker blueteam corporations fake pentesting probe-requests redteam security user wifi
Last synced: 07 Apr 2025
https://github.com/dan-nolan/delegatecall-proxy-bug
An Exploit on the AAVE v2 Contract Vulnerability
security smart-contracts solidity
Last synced: 31 Aug 2025
https://github.com/simeononsecurity/windows-hardening-ctf
A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.
automation ctf ctf-tools hardening security windows
Last synced: 15 Apr 2025
https://github.com/tethik/burn-after-reading
A service to share short term messages stored in memory.
Last synced: 26 Jun 2025
https://github.com/stirby/fastpass
A password manager that gets you logged in quickly
linux password-generator password-manager password-store passwords security
Last synced: 11 Mar 2026
https://github.com/fractalfir/memory_pages
`memory_pages` is a small library provinig a cross-platform API to request pages from kernel with certain premisions
low-level memory-management rust security
Last synced: 16 May 2025
https://github.com/RegioHelden/django-scrubber
Data anonymizer for Django
anonymization development django python security
Last synced: 01 Aug 2025
https://github.com/turbot/steampipe-mod-terraform-aws-compliance
Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.
aws compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform
Last synced: 10 Mar 2026
https://github.com/jrbrtsn/ban2fail
Simple & efficient log file scanning and iptable filtering
anti-bot attack-prevention attackers ban-hosts c fail2ban gplv3 intrusion-prevention iptables iptables-filtering iptables-rules linux-server loganalyzer logfile-analysis logs monitoring scanning security security-tools zero-trust
Last synced: 30 Mar 2025
https://github.com/kajov/wazuh-kubernetes-helmchart
Wazuh - Wazuh Kubernetes Helm chart. This repo is not maintained by Wazuh team. This is community project.
automation community compliance containers devsecops docker helm helm-chart k8s kubernetes monitoring orchestration security security-tools vulnerability-detection wazuh
Last synced: 11 Jul 2025
https://github.com/davidalami/VulnMapAI
VulnMapAI combines the power of nmap’s detailed network scanning and the advanced natural language processing capabilities of GPT-4 to generate comprehensive and intelligible vulnerability reports. It aims to facilitate the identification and understanding of security vulnerabilities.
hacking hackthebox hacktoberfest machine-learning penetration-testing port-scanning security tryhackme vulnerability-scanners
Last synced: 07 Sep 2025
https://github.com/Cymmetria/honeycomb_plugins
The plugin repository for Honeycomb, the honeypot framework by Cymmetria
honeycomb python security security-tools
Last synced: 27 Mar 2025
https://github.com/nwtgck/piping-draw-web
🎨 End-to-End Encryption Share Drawing via Piping Server
canvas drawing end-to-end-encryption handwriting paint piping-server security
Last synced: 07 Mar 2026
https://github.com/fusionauth/fusionauth-example-modern-guide-to-oauth
The example application paired with the Modern Guide to OAuth
authentication oauth oauth2 security
Last synced: 05 Apr 2025
https://github.com/houzuoguo/cryptctl
A disk encryption utility that helps setting up LUKS-based disk encryption using randomly generated keys, and keeps all keys on a dedicated key server.
disk-encryption encryption go golang linux luks os security
Last synced: 13 Apr 2025
https://github.com/karlamoe/unsafe-accessor
A bridge to access sun.misc.Unsafe & jdk.internal.misc.Unsafe
java jdk jvm reflect reflection security tool tools unsafe
Last synced: 15 Jan 2026
https://github.com/chewbaka69/fail2ban_pterodactyl
A fail2ban filter for wings daemon, the service of pterodactyl panel, to secure the SFTP bruteforcing
fail2ban fail2ban-filter security
Last synced: 24 Feb 2025
https://github.com/mondoohq/packer-plugin-cnspec
Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!
ami cnspec mondoo packer packer-plugin security vulnerability
Last synced: 27 May 2026
https://github.com/hxsecurity/dongtai-plugin-idea
Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions such as vulnerability detection and code audit during application development, enabling developers to find application vulnerabilities more intuitively, quickly and in real time during application development.
applicationsecuritymonitoring appsec-tutorials code-quality devsecops dongtai-iast iast idea-plugin intellij-platform security
Last synced: 04 Oct 2025
https://github.com/samdark/slides
Alexander Makarov conference slides
architecture conferences hhvm i18n oop php security slide slides yii yii-framework yii2 yii3
Last synced: 30 Oct 2025
https://github.com/regiohelden/django-scrubber
Data anonymizer for Django
anonymization development django python security
Last synced: 20 Jan 2026
https://github.com/rroemhild/docker-mailpile
A minimal Mailpile Docker image based on Alpine Linux.
docker email encryption gnupg mailpile security
Last synced: 24 Oct 2025
https://github.com/vboureaud/ctfbourgpalette
A pokemon-like project game where you level up by hacking your neighbor.
Last synced: 25 Oct 2025
https://github.com/kstr0k/migrate-apt-keys
Migrates from "apt-key" managed keys to "[signed-by=.../keyrings/...]"
apt apt-key debian gpg security shell-script ubuntu
Last synced: 22 Apr 2025
https://github.com/animeshshaw/learning-node.js-security
A Collection of articles, videos, blogs, talks and other materials on Node.js Security
learning-nodejs nodejs nodejs-pentesting nodejs-secuirty-reading nodejs-security penetration-testing pentesting security web-security
Last synced: 16 Oct 2025
https://github.com/unicornsasfuel/keybrute
A wordlist-based encryption key brute forcer targeting weak key choice/derivation
aes aes-encryption brute-force computer-security crack cryptanalysis crypto cryptography encryption information-security infosec security
Last synced: 26 Mar 2025
https://github.com/jpcertcc/quasarrat-analysis
QuasarRAT analysis tools and research report
Last synced: 05 Apr 2025
https://github.com/dev-sec/chef-mysql-hardening
This chef cookbook provides security configuration for mysql.
chef chef-cookbook devops hardening mysql security
Last synced: 09 Jul 2025
https://github.com/miguelgrinberg/microblog-authy
Microblog application from the Flask Mega-Tutorial with added two-factor push authentication via Authy
authentication authy authy-api flask security twilio two-factor-authentication
Last synced: 06 Sep 2025
https://github.com/jlleitschuh/security-checklist-transformer
Sqreen Security Checklist Transformer & Uploader
security security-checklists security-plan security-tools
Last synced: 07 Apr 2025
https://github.com/rbiedrawa/spring-webflux-keycloak-demo
This repository demonstrates how to use reactive Spring Security with OAuth2 and Keycloak. Keycloak server with all components can be started using docker-compose and utility script.
docker docker-compose jwt jwt-authentication keycloak oauth2 postman postman-collection reactor security spring-boot spring-security spring-security-5 spring-security-oauth2 spring-webflux testing webflux-security wiremock
Last synced: 19 Oct 2025
https://github.com/andygeiss/cloud-native-utils
A collection of high-performance, modular utilities for enhancing testing, transactional consistency, efficiency, security and stability in cloud-native Go applications.
assert automated-testing batteries-included best-practices cloud-native cloud-native-patterns consistency efficiency extensibility go golang logging resource security service stability templating utils
Last synced: 17 Jan 2026
https://github.com/koki-develop/ghasec
🫴 Catch security risks in your GitHub Actions workflows.
Last synced: 17 Apr 2026
https://github.com/anof-cyber/alphascan
A BurpSuite extension for vulnerability Scanning
application-security appsec bug-bounty bugbounty burp-extensions burpsuite pentesting security security-scanner vulnerability vulnerability-scanners
Last synced: 06 Jul 2025
https://github.com/cdpxe/nefias
Network Forensic & Anomaly Detection System; tailored for covert channel/network steganography detection
anomaly-detection bash covert-channels distributed-computing information-hiding information-security infosec linux network network-covert-channels network-forensics network-monitoring network-steganography networks scientific-computations scientific-research security shell shell-scripts steganography
Last synced: 16 Mar 2025
https://github.com/tahoe-lafs/magic-folder
Tahoe-LAFS-based file synchronization
linux macos networking privacy python27 security synchronization tahoe-lafs twisted windows
Last synced: 09 Apr 2025
https://github.com/c0r0n3r/cryptolyzer
CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)
certificate-transparency content-security-policy dnssec http-header-check http-scan mixed-content openvpn python scan-tool scanning-tool security security-audit security-tools ssh-scanner ssl-scanner subresource-integrity tls-scan tls-scanning-library vulnerability-scanners
Last synced: 20 Nov 2025
https://github.com/lgarron/crypto.graphics
crypto.graphics
authentication cryptography encryption graphics mac prf security semantic-security threat-model visualization viz
Last synced: 14 Apr 2025
https://github.com/vitormesquita/msession
A simple and sophisticated session and authentication solution written in Swift
apple authentication faceid faceid-authentication ios keychain secur security session swift swift-library
Last synced: 25 Jul 2025
https://github.com/wix-incubator/isolated-runtime
Run untrusted Javascript code in a multi-tenant, isolated environment
isolated javascript nodejs security threads vm
Last synced: 14 Apr 2025
https://github.com/augustoproiete/i-am-root-nuget-package
📦🏴☠️ NuGet package that shows we can run arbitrary code from any NuGet package
code groot hacktoberfest i-am-root iamroot nuget powershell root security
Last synced: 14 Apr 2025
https://github.com/qfcy/no-subclasses
A library that removes the __subclasses__() list from all classes, allowing for nearly absolute security in exec and eval functions. 一个清除所有类的__subclasses__()列表的库,使得exec和eval函数变得几乎绝对安全。
eval exec python python-sandbox sandbox-tool security subclasses
Last synced: 07 Jul 2025
https://github.com/advanced-security/codeql-bundle-action
Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
Last synced: 10 Mar 2026
https://github.com/bjornstar/intercept-redirect
Skip tracking redirects that serve no purpose other than to waste your precious time.
anti-tracker browser-extension privacy redirect security webextension
Last synced: 15 Apr 2025
https://github.com/stijnmoreels/fsecurity
Security testing library written in F# to make writing security tests more fun.
exploitation fsec fsharp input-validation owasp security testing tests url-tampering vulnerability-detection xml-parsing
Last synced: 23 Mar 2025
https://github.com/sourcefuse/loopback4-helmet
A loopback4 extension for helmetjs integration
arcbysf helmetjs loopback-next loopback4 loopback4-extension security security-hardening security-tools
Last synced: 03 Aug 2025
https://github.com/kawaiipantsu/ip-blacklist-collection
These are automated updated IP address blacklist/whitelist you can use to fetch and parse and put in your firewall, waf, null-routing, sinkhole or what ever you choose. The blacklists are not necessary threat actors, it's just lists i like to have ready and handy.
blacklist blocklist blueteam compliance firewall geoblocking ip iptables ipv4 ipv6 mullvad nordvpn privacy proxy proxy-list security ufw waf
Last synced: 17 Jan 2026
https://github.com/5gsec/nimbus
Intent driven security automation framework
5g 5g-core intents k8s o-ran operator-sdk security
Last synced: 14 Aug 2025
https://github.com/sderosiaux/checklists
All checklists
checklists development security web
Last synced: 26 Feb 2025
https://github.com/VolkanSah/GPT-Security-Best-Practices
The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.
ajax ajax-request chatgpt chf code-security html js php security security-risks server-side serverside-rendering vulnerabilities vulnerabilities-fix
Last synced: 12 May 2025
https://github.com/jenkinsci/ownership-plugin
Jenkins plugin. Provides explicit ownership of jobs and agents
adopt-this-plugin jenkins jenkins-plugin jenkins-security ownership plugin security ui
Last synced: 30 Sep 2025
https://github.com/checkedc/checkedc
This was a fork of Checked C used from 2021-2024. The changes have been merged into the original Checked C repo.
c c-programming-language reliability security systems-programming
Last synced: 29 Mar 2025
https://github.com/sofianehamlaoui/b-ok-scraper
A b-ok.cc Simple Python Scraper
beautifulsoup beautifulsoup4 bok-scrapper books hacking python scraper security sofianehamlaoui
Last synced: 05 Mar 2026
https://github.com/wultra/powerauth-push-server
PowerAuth Push Server repository
apns authentication banking fcm gcm mobile-security push-notifications security
Last synced: 24 Feb 2026
https://github.com/alephao/nft-sale-proxy
A proxy to hide NFT metadata during the sale and prevent people from sniping specific NFTs.
Last synced: 31 Jul 2025
https://github.com/linuxchata/fido2
Shark WebAuthn library for .NET. WebAuthn allows users to authenticate with cryptographic key pairs, where the private key remains securely stored on the user's device. This makes authentication resistant to phishing, credential stuffing, and data breaches.
fido2 fido2-standard passkeys passwordless passwordless-authentication security webauthn
Last synced: 14 Jan 2026
https://github.com/tsundokul/pyradamsa
Python bindings for calling radamsa mutators
Last synced: 14 Jan 2026
https://github.com/pilotpirxie/devcaptcha
🤖 Open source captcha made with React, Node and TypeScript for DEV.to community
captcha captcha-alternative hip mechanism puzzle react security solve typescript typescript-library
Last synced: 07 Oct 2025
https://github.com/docker/github-builder
Official Docker-maintained reusable GitHub Actions workflows to securely build container images
buildkit buildx docker github-actions github-actions-docker reusable-workflows sbom security security-hardening slsa slsa-provenance
Last synced: 15 Apr 2026
https://github.com/easybill/easypwned
offline haveibeenpwned HIBP check and downloader, rest api, easybill
haveibeenpwned hibp password security
Last synced: 02 Apr 2026
https://github.com/volkansah/gpt-security-best-practices
The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.
ajax ajax-request chatgpt chf code-security html js php security security-risks server-side serverside-rendering vulnerabilities vulnerabilities-fix
Last synced: 12 Apr 2025
https://github.com/piomin/sample-micronaut-applications
sample application illustarting usage of micronaut framework
jwt jwt-authentication micronaut micronaut-http-client micronautfw netty reactive rxjava2 security swagger
Last synced: 16 Mar 2025
https://github.com/yvesago/imap-honey
IMAP or SMTP honeypot written in Golang
golang honeypot imap security security-tools smtp
Last synced: 04 Apr 2026
https://github.com/kostasereksonas/besder-6024pb-xma501-ip-camera-security-investigation
Security investigation of Besder 6024PB-XMA501 IP camera.
analysis besder besder-6024pb besder-6024pb-xma501 camera camera-hack camera-hacking cybersecurity investigation ip ip-cam ip-camera ipcam ipcamera nmap security security-tools sofia xiongmai xiongmaitech
Last synced: 29 Jan 2026
https://github.com/shgew/cs-firewall-bouncer-docker
A dockerized version of https://github.com/crowdsecurity/cs-firewall-bouncer
attacks-prevention bouncer crowdsec detection docker firewall homelab nftables protection security truenas
Last synced: 01 Apr 2026
https://github.com/holtwick/bx-mac
Sandbox any macOS app — only your project directory stays accessible
claude-code cli developer-tools macos privacy sandbox security terminal vscode xcode
Last synced: 19 Apr 2026
https://github.com/grapheneos/platform_packages_apps_settings
android grapheneos privacy security
Last synced: 04 Apr 2025
https://github.com/rubysec/rubysec.github.io
Current home of rubysec.com
ruby rubygems security vulnerability
Last synced: 04 Apr 2025
https://github.com/fabriziosalmi/zonecontrol
Cloudflare Zones Settings Automation using GitHub Actions
automation cloudflare cloudflare-api cloudflare-dns cloudflare-zone cybersecurity dnssec domains https infrastructure-as-code security settings tls13 waf workflow zones
Last synced: 07 May 2025
https://github.com/cloudposse/terraform-aws-guardduty
Terraform module to provision AWS Guard Duty
compliance hcl2 security terraform terraform-modules
Last synced: 29 Apr 2025
https://github.com/luizbizzio/pihole-https
🔒 Enable HTTPS for Pi-hole with automatic SSL certificate generation, Tailscale DNS detection, and cross-platform compatibility for Windows, Linux, macOS, and Android devices.
android automation certificates dns guide https letsencrypt lighttpd linux macos open-source openssl pi-hole pihole pihole-tools security self-hosted tailscale tutorial windows
Last synced: 11 Apr 2025
https://github.com/leonjza/tc2
treafik fronted c2 examples
c2 cobaltstrike covenant redteam security traefik
Last synced: 01 Nov 2025
https://github.com/jippi/go-metadataproxy
A proxy for AWS's metadata service that gives out scoped IAM credentials from STS
aws docker golang security sts-credentials
Last synced: 19 Mar 2025
https://github.com/ims94/spring-boot-jwt-authorization
Example project to do role based access control (RBAC) using Spring Boot and JWT
authorization jwt jwt-authentication rbac rest-api role-based-access-control roles security single-page-app spring-boot spring-security
Last synced: 16 Jun 2025
https://github.com/checkedc/checkedc-fork
This was a fork of Checked C used from 2021-2024. The changes have been merged into the original Checked C repo.
c c-programming-language reliability security systems-programming
Last synced: 31 Oct 2025
https://github.com/dopplerhq/gitops-secrets-nodejs
GitOps encrypted secrets workflow for Node.js
secret-management secrets secrets-management secrets-manager security
Last synced: 11 Sep 2025
https://github.com/wrogistefan/desktop-2fa
A secure offline desktop application for generating and managing TOTP 2FA codes. Features encrypted vault storage, modern cryptography (Argon2 + AES‑GCM), modular architecture, and a local‑first approach with no cloud dependencies. Designed for reliability, extensibility, and future cross‑platform UI.
2fa aes-gcm argon2 authenticator cryptography desktop-app local-first offline open-source privacy security totp vault
Last synced: 13 Jan 2026
https://github.com/jxnet/jxnet
Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).
capture-packets java jni libpcap network-security network-security-monitoring npcap packet-analyzer packet-capture packet-crafting packet-sniffer pcap-library security security-audit security-scanner sending-packets winpcap
Last synced: 09 Jul 2025
https://github.com/chen-keinan/mesh-kridik
mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and is leveraged by OPA (Open Policy Agent) to enforce security rules.
istio kubernetes kubernetes-cluster opa open-policy-agent open-source policy scanner security service-mesh
Last synced: 13 Jun 2025
https://github.com/openzeppelin/defender-sdk
Defender SDK
openzeppelin openzeppelin-defender security web3
Last synced: 28 Jun 2025
https://github.com/sergio11/eclipserecon
🌑 EclipseRecon is a personal project developed during my cybersecurity learning journey 🛡️. It helps practice web reconnaissance 🌐 by identifying subdomains 🧩, site structures 🧭, and vulnerabilities 🐞 in a controlled environment 🧪.
blue-team bug-bounty cybersecurity ethical-hacking information-gathering owasp penetration-testing reconnaissance red-team scan-tools security security-analysis security-reporting security-tools subdomain-scanner vulnerability vulnerability-scanner web-application-security web-crawler web-security
Last synced: 06 Sep 2025
https://github.com/rusty-ferris-club/recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
devops devops-tools rust security security-tools
Last synced: 30 Apr 2025
https://github.com/kurobeats/sparkler
The tool creates a Microsoft Active Directory Domain with a structure and objects for learning.
active-directory educational security
Last synced: 23 May 2026
https://github.com/0xAkashsky/sub-scout
Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
bugbounty cybersecurity infosec infosectools security tools
Last synced: 10 Mar 2025
https://github.com/thebugcatcher/heimdall
Share secrets in a secure way with paswords, ttl, IP allowlisting and encryption
encryption passwords security share-secrets
Last synced: 18 Jan 2026
https://github.com/pompelmi/pompelmi
File-upload malware scanning for Node.js. Express/Koa/Next.js adapters, ZIP deep-inspection, MIME/size checks, optional YARA.
antivirus api automation backend cli cybersecurity devops files filesystem javascript library module nodejs npm opensource scanner security server typescript web
Last synced: 03 Apr 2026
