An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/xnomas/web-ctf-help

Collection of scripts to help with web based ctfs.

ctf ctf-tools ctfs hackthebox python scraping security tryhackme web-ctf

Last synced: 21 Jun 2026

https://github.com/prodnull/prmana

OIDC SSH login for Linux with DPoP — replace static SSH keys with IdP-issued tokens, no gateway

authentication dpop linux oidc pam security ssh

Last synced: 25 Apr 2026

https://github.com/aydinnyunus/packagespy

PackageSpy is a versatile command-line tool designed to simplify the process of searching for packages on two popular package managers

golang javascript npm pypi python security

Last synced: 23 Aug 2025

https://github.com/nonlin-lin-chaos-order-etc-etal/i2pchat

🌀 i2pchat's old repo. This repo is deprecated in favor of https://github.com/i2pchat/i2pchat which is now the main repo.

anonymity i2p i2p-chat instant-messaging messenger privacy security

Last synced: 11 May 2025

https://github.com/gastonchenet/hopmytrack

🕵️‍♂️ HopMyTrack is an powerful OSINT tool to check for your information around the world wide web.

bun cli information-gathering intelligence osint security typescript

Last synced: 15 Apr 2025

https://github.com/azu/request-filtering-agent

An http(s).Agent implementation that block request Private/Reserved IP addresses. Prevent SSRF.

agent block http node nodejs security ssrf

Last synced: 09 Aug 2025

https://github.com/widgetii/beye

Binary EYE is a viewer of binary files with a built-in editor

analysis disassembler forensics hex reverse-engineering security

Last synced: 11 Apr 2025

https://github.com/jenkinsci/mask-passwords-plugin

Mask Passwords plugin for Jenkins

security

Last synced: 07 Apr 2025

https://github.com/r6security/phoenix

Phoenix AMTD Operator for Kubernetes

amtd cicd container devops falco go kubernetes operator phoenix security

Last synced: 17 Jan 2026

https://github.com/lucasepe/grasp

Create strong passwords using words that are easy for you to remember. A password manager that does not require any type of storage

golang password-generator password-manager security

Last synced: 15 Jul 2025

https://github.com/aripalo/vegas-credentials

AWS credential_process utility to assume AWS IAM Roles with Yubikey Touch and Authenticator App TOTP MFA to provide temporary session credentials; With encrypted caching and support for automatic credential refresh.

amazon-web-services aws credential-helper credential-process credential-provider iam mfa multifactor-authentication security ykman yubikey

Last synced: 11 Sep 2025

https://github.com/cloudina/hawk

Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage

antivirus api-rest aws azure azure-blob-storage clamav-antivirus clamav-scanning cloud cloudsecurity gcp gcp-cloud-storage infosec rest-api s3scanner security security-tools virus-scanner virus-scanning yara yara-scanner

Last synced: 11 Jan 2026

https://github.com/securestackco/actions-code

A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition analysis).

deployment deployment-automation deployment-pipeline devsecops github-actions security security-automation security-tools software-composition-analysis vulnerability-detection vulnerability-scanner

Last synced: 30 Jul 2025

https://github.com/nabto/nabto-embedded-sdk

Nabto Edge Embedded SDK. Secure, direct connections to your IoT devices.

coap connectivity embedded-systems iot security

Last synced: 12 Mar 2026

https://github.com/duddu/cordova-plugin-antitampering

Verify the integrity of cordova static assets - Android / iOS

anti-tampering cordova security

Last synced: 16 Mar 2025

https://github.com/c1982/secureimage

Small image verification package for Go

golang image security upload verification

Last synced: 23 Jan 2026

https://github.com/phusion/nginx-modsecurity-ubuntu

Ubuntu package for modsecurity-nginx

modsecurity nginx security ubuntu

Last synced: 11 Jun 2025

https://github.com/m-mizutani/vulnivore

GitHub issue manager from vulnerability scan results for private repositories

go sarif security trivy vulnerability-management

Last synced: 27 Apr 2025

https://github.com/paulveillard/cybersecurity-android-security

An ongoing collection of awesome android security tools, software, libraries, learning tutorials, frameworks, academic and practical resources

android android-library android-security android-ui androidappdevelopment androidarchitecture devsecops-best-practices devsecops-university security security-audit security-tools tools

Last synced: 09 Apr 2025

https://github.com/pedroborges/kirby-authenticator

⬢ Improved authentication system with 2-step verification for Kirby CMS.

2-factor-authentication 2-step-verification 2fa authentication kirby-cms kirby-plugin login security

Last synced: 10 Oct 2025

https://github.com/evpobr/keepass4d

KeePass4D is password manager written in Delphi with Kdbx format support.

delphi password-manager security windows

Last synced: 05 Oct 2025

https://github.com/mehdibo/Codeigniter-SSLHook

Appropriate headers and redirection for SSL websites

codeigniter headers hooks security ssl ssl-support

Last synced: 29 Apr 2025

https://github.com/SasanLabs/owasp-zap-fileupload-addon

OWASP ZAP add-on for finding vulnerabilities in File Upload functionality.

dast fileupload hacktoberfest java sasanlabs scanner security security-tools zap zaproxy

Last synced: 11 Jul 2025

https://github.com/brittandeyoung/ckia

ckia (cloud know it all), an open source tool for making recommendations for target cloud account. An open source alternative to AWS Trusted Advisor.

aws cost-optimization security

Last synced: 05 May 2025

https://github.com/gdgd009xcd/RequestRecorder

A ZAPROXY Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applications that need to access pages in a specific order, such as shopping carts or registration of member information.

activescan addon authentication csrf multistep multistep-form security security-testing security-tools vulnerability-scanners web-security webcrawler websecurity zap-extension zaproxy

Last synced: 31 Oct 2025

https://github.com/paulveillard/cybersecurity-java-security

An ongoing collection of java language tools and frameworks, software, libraries, learning tutorials, frameworks, academic and practical resources.

java java-8 java-exception java-exercises java-frameworks java-operator-sdk java-security java-server pentest-scripts pentest-tool pentesting security

Last synced: 10 Apr 2025

https://github.com/leohidalgo/little-snitch---rule-groups

This repo provide rule groups for Little Snitch based on unified host list to block ads, malware, fake news , gambling and porn

ad-blocker antivirus gambling-filter little-snitch malware porn-filter pornblocker privacy protection ransomware security social-media-filter steven-black trojans unifed-hosts

Last synced: 17 Mar 2025

https://github.com/magecomp/magento-pre-patched-files

Read About All PrePatched Files Blog Installation Instructions

files magento patches prepatch security supee

Last synced: 13 Apr 2025

https://github.com/evpobr/KeePass4D

KeePass4D is password manager written in Delphi with Kdbx format support.

delphi password-manager security windows

Last synced: 07 May 2025

https://github.com/mojoblanco/domainos

A laravel package for blacklisting or whitelisting specific email providers or domains

blacklist domain email laravel security whitelist

Last synced: 11 Jan 2026

https://github.com/paulveillard/cybersecurity-macos-ios-security

An ongoing collection of awesome macOS and iOS security tools, software, libraries, learning tutorials, frameworks, academic and practical resources.

apple application applications apps ios ios-demo ios-developer-tools ios-development ios-sdk ios-swift macos macos-development security security-tools security-vulnerability web xcode xcode12 xcode13

Last synced: 10 Apr 2025

https://github.com/davemolk/searcher

Run a base query (plus optional add-ons) through ask, bing, brave, duck duck go, yahoo, and yandex.

go golang infosec osint pentesting pentesting-tools recon research search search-engine security

Last synced: 11 Apr 2025

https://github.com/mozilla-services/shavar

Tracking Protection update service for Firefox based on Safe Browsing protocol

privacy python security

Last synced: 11 Apr 2025

https://github.com/friends-of-presta/security-advisories

Security advisories of the FOP security team for prestashop

cve fop prestashop security

Last synced: 24 Oct 2025

https://github.com/ndkirillov/web3-tournaments

Here we decide who is the best

list security web3

Last synced: 20 Jan 2026

https://github.com/cosad3s/salsa

SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.

bugbounty hacking salesforce security

Last synced: 14 Jul 2025

https://github.com/anthonyharrison/sbom4python

A tool to generate a SBOM (Software Bill of Materials) for an installed Python module

cyclonedx devsecops python sbom sbom-generator security spdx

Last synced: 11 Apr 2025

https://github.com/openscap/openscap-report

Tool for generating a report from results of oscap scan.

arf openscap oscap report security security-tools xml

Last synced: 16 Jun 2025

https://github.com/jamf/stig-macos-10_14

STIG for macOS Mojave - audit and remediation with scripts and Configuration Profiles

configuration-profiles jamf macos security stig

Last synced: 14 Jul 2025

https://github.com/mitre/heimdall-lite

Heimdall Lite 2.0 is a JavaScript based security results viewer and review tool supporting multiple security results formats, such as: InSpec, SonarQube, OWASP-Zap and Fortify which you can load locally, from S3 and other data sources.

heimdall-lite inspec mitre-corporation mitre-inspec netlify security viewer

Last synced: 21 Apr 2025

https://github.com/openmined/pyariesfl

Federated Learning on HyperLedger Aries

federated-learning python security

Last synced: 02 Jul 2025

https://github.com/En14c/LilyOfTheValley

Simple LKM linux kernel rootkit (x86 / x86_64)

c kernel kernel-module linux-kernel linux-kernel-module security

Last synced: 10 Mar 2025

https://github.com/aquasecurity/windows-bench

Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark

cis-benchmarks devsecops security windows-cis

Last synced: 13 Oct 2025

https://github.com/longluo/rsa

RSA encryption and decryption Algorithms in C Language. ---RSA加解密算法的演示,C语言实现。

algorithm cybersecurity demo math rsa rsa-algorithm rsa-cryptography rsa-decryption rsa-encryption security

Last synced: 22 Apr 2025

https://github.com/timkuijsten/node-chroot

Safely chroot the current process and drop privileges

chroot nodejs security

Last synced: 09 Apr 2025

https://github.com/github/entitlements-gitrepo-auditor-plugin

Entitlements plugin for a robust audit log

audit entitlements iam security

Last synced: 10 May 2025

https://github.com/m4n3dw0lf/SecureFiware

Proposing security measures and security analysis in the Fiware IoT environment.

coap dtls fiware https iot iot-platform lwm2m secure security smartcities

Last synced: 30 Mar 2025

https://github.com/coloquinte/moosic-yosys-plugin

Yosys plugin for logic locking and supply-chain security

hardware hardware-security logic-locking security supply-chain-security

Last synced: 13 Apr 2025

https://github.com/snawoot/httptrap

Web-server which produces infinite chunked-encoded responses to slowdown malicious clients

ddos-mitigation filter filtering http-flood http-server security webserver

Last synced: 13 Apr 2025

https://github.com/mofneko/lilium

Lilium is a wrapper library for SafetyNet API provided by Google. Unity Compatible.

android-library play-services safetynet-api security unity3d-plugin verification verify

Last synced: 02 Aug 2025

https://github.com/gitguardian/gg-mcp

MCP server for scanning and remediating hardcoded secrets using GitGuardian’s API. Detect over 500 secret types and prevent credential leaks before code goes public.

mcp mcp-server secrets security

Last synced: 27 Aug 2025

https://github.com/capnspacehook/egress-eddie

Hostname filtering for arbitrary network protocols

dns firewall golang security

Last synced: 12 May 2025

https://github.com/caronc/ultrasync

API and CLI wrapper to The Interlogix ZeroWire and Hills ComNav (NX-595E) UltraSync Security Panel

alarm api comnav hills interlogix nx-595e security smarthome ultrasync zerowire zerowire-hub

Last synced: 07 Mar 2026

https://github.com/securestackco/actions-exposure

A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.

actions cloud-security cloud-security-posture-management deployment deployment-automation deployment-pipeline dynamic-analysis github-actions secrets-detection security software-composition-analysis vulnerability-detection vulnerability-scanning web-application web-vulnerability web-vulnerability-scanner

Last synced: 07 Aug 2025

https://github.com/dgac/inseca

INSECA is a set of tools to build and manage very secure live Linux based endpoint systems.

cybersecurity debian endpoint linux linux-desktop live-linux security workstations

Last synced: 13 Apr 2025

https://github.com/suzuki-shunsuke/ghir

ghir is a CLI making past GitHub Releases immutable

cli github oss security

Last synced: 13 Jun 2026

https://github.com/appknox/irene

I AM SHER LOCKED. Dashboard for Appknox Users.

appknox ember emberjs security security-dashboard

Last synced: 29 Apr 2026

https://github.com/rmuir/uv-dependency-submission

GitHub Action for submitting uv.lock dependencies

dependency-graph dependency-management github-actions python security uv

Last synced: 27 Apr 2026

https://github.com/hoangsonww/envguard-env-validator

🛡️ EnvGuard – A powerful NPM package that validates your .env files against a predefined schema, ensuring all required environment variables are set and secure. Prevent misconfigurations in production by detecting missing values, insecure defaults, and enforcing .env.example consistency across teams.

env-example env-file env-schema env-vars environment environment-variables javascript jest node node-js node-package node-package-manager nodejs npm npm-package schema-validator security typescript validation validator

Last synced: 28 Oct 2025

https://github.com/amboxer21/flashlight

Silently logs and E-mails all incoming/outgoing calls and text messages while doubling up as a flashlight app. The app also has the ability to hide itself via text message and show the phones location.

android flashlight intercept rat security spy trojan

Last synced: 13 May 2025

https://github.com/mselerin/ngx-security

Security directives for your Angular application to show/hide elements based on a user roles / permissions.

acl angular permissions roles security

Last synced: 15 Apr 2025

https://github.com/luminousmen/zuc

Stream cipher ZUC - core component in the 3GPP confidentiality and integrity algorithms 128-EEA3 and 128-EIA3.

cipher security steam

Last synced: 01 May 2025

https://github.com/jishanshaikh4/jaam

Web Browser Security Framework

jaam security security-tools vulnerabilities web-browser

Last synced: 25 Apr 2025

https://github.com/mitre/nginx-stigready-baseline

STIG Ready Content: InSpec Profile for NGINX Open Source based off the Web SRG V2R3

disa inspec mitre-corporation mitre-saf nginx security srg stig stigs

Last synced: 21 Apr 2025

https://github.com/TeamBion/kubectl-irsa

The kubectl plugin which allows us to test IRSA configuration AWS sa

aws irsa kubectl kubernetes oidc security

Last synced: 01 Apr 2025

https://github.com/symph0nia/expfuzzwordlist

ExpFuzz字典

exp poc security

Last synced: 21 Apr 2025

https://github.com/anfedotoff/gdb-command

Library for manipulating gdb in batch mode

gdb rust security testing

Last synced: 02 Aug 2025

https://github.com/ozonru/cyclonedx-go

Creates CycloneDX Software Bill-of-Materials (SBOM) from Go projects. So you can use it with DependencyTrack to monitor security issues in 3rd party modules.

bill-of-materials bom component-analysis cyclonedx sbom security security-tools software-composition-analysis

Last synced: 17 Jan 2026

https://github.com/m4n3dw0lf/securefiware

Proposing security measures and security analysis in the Fiware IoT environment.

coap dtls fiware https iot iot-platform lwm2m secure security smartcities

Last synced: 23 Mar 2025

https://github.com/juanjocodedev/auth-nest

🚀 Sistema de autenticación con Google y GitHub, gestión de roles, y extensión de sesión con refresh tokens. 🧑‍🚀

authentication authentication-backend github-auth google-auth jwt jwt-token oauth2 refresh-tokens roles-management security

Last synced: 13 Apr 2025

https://github.com/robertdebock/ansible-role-cis

Apply and/or check recommendations from the CIS benchmarks.

ansible cis molecule playbook security tox

Last synced: 24 Apr 2025

https://github.com/spectralops/service-policy-kit

service_policy_kit is a Rust based toolkit for verifying HTTP services against policies.

rust rust-lang security testing

Last synced: 15 Jul 2025

https://github.com/yogcrypt/yogcrypt

A fast, general purpose crypto library in pure Rust.

block-cipher cryptographic-hash cryptography rust security signature sm2 sm3 sm4

Last synced: 01 Apr 2026