An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/theteleporter/xuneix

A link rotator for enhanced admin panel security. Dynamic URLs, expiring tokens, customizable rotation. Easy setup with Shadcn UI & Tailwind CSS. Integrates with Vercel KV.

authentication link-rotator nextjs open-source security shadcn-ui

Last synced: 24 Mar 2025

https://github.com/didinj/grails4-spring-security-login-example

Grails 4 Tutorial: Spring Security Core Login Example

authentication core example grails grails4 login plugin security spring tutorial

Last synced: 24 Apr 2025

https://github.com/marcolivierbouch/solr-password-generator

Solr security.json password generator. Generate password for the file security.json using a script.

ci cicd password-rotation script security security-automation sitecore solr solr-configs

Last synced: 07 Oct 2025

https://github.com/maymeow/php-encrypt

🔏PHP library for creating and signing Certificates, text encryption and decryption.

certificates encryption hacktoberfest hacktoberfest2020 library openssl php security

Last synced: 19 Apr 2025

https://github.com/felixfriedrich/dnsmonitor

Monitor domain names for DNS changes

dns golang security

Last synced: 14 Jan 2026

https://github.com/grapheneos/tls-pinning

Utilities for setting up TLS key pinning for Android app network security configuration. We pin the keys of trusted roots and backup keys in order to avoid needing to rotate the pinned keys. Backup keys are never intended to be used unless the roots stop being available and then only need to be used until the pins expire or get updated.

https privacy security tls

Last synced: 13 Apr 2025

https://github.com/liangjfblue/go-keyserver

动态密钥服务器。带client端,server端使用demo

gin golang redis security

Last synced: 06 May 2025

https://github.com/kyoshidajp/dep-doctor

Diagnose whether your software dependency libraries are maintained.

dart dependencies elixir erlang golang javascript php python ruby rust security swift

Last synced: 09 Jul 2025

https://github.com/rnurgaliyev/dnscrypt-proxy

Docker container for implementing secure DoH DNS server based on dnscrypt-proxy on Raspberry Pi.

dns-server dnscrypt-proxy docker-container doh privacy raspberry-pi security

Last synced: 14 Oct 2025

https://github.com/trag1c/ixia

Connecting secrets' security with random's versatility

cryptography python random security

Last synced: 31 Oct 2025

https://github.com/boschresearch/pq-wolfssl

Integration of selected post-quantum schemes into the embedded TLS library wolfSSL as part of our paper "Mixed Certificate Chains for the Transition to Post-Quantum Authentication in TLS 1.3"

cryptography pqc security tls

Last synced: 07 Oct 2025

https://github.com/brittonhayes/notion-stix

Integrate Threat Intelligence into your Notion workspace with notion-stix 🛡️

golang mitre mitre-attack notion security stix stix2 threat-intelligence

Last synced: 08 Oct 2025

https://github.com/saptaks/saikoro

Diceware GUI: An easy way for non-tech people to get diceware passphrases

diceware gui-application passphrase security

Last synced: 24 Apr 2025

https://github.com/fossable/autovet

Automated security testing for open source libraries and applications.

security security-tools supply-chain

Last synced: 25 Apr 2025

https://github.com/elijahhx/dead1ock-h4ck

"Dead1ock-h4ck" is an open-source project dedicated to exploring cybersecurity and ethical hacking techniques. The project aims to provide resources and tools for learning about network security, cryptography, and penetration testing.

cyber-defense cybersecurity cybersecurity-research dead1ock-h4ck exploit github hacking hacktivism infosec malware pentesting programming ransomware security technology vulnerability

Last synced: 23 Apr 2025

https://github.com/ph-7/notallowed

🚫 NotAllowed 🚫 =>A lightweight library that helps you to censor words, profane words, banned IPs, banned bank accounts, etc.

ban ban-words banned blacklist censor censored-words check-words filter-words php72 profane profane-words security spam

Last synced: 09 Apr 2025

https://github.com/itemic/rotacsufbo

did u know the name of the repo is obfuscator backwards?

android android-security javaparser mobile-security obfuscate obfuscation obufscator proguard security

Last synced: 26 Jun 2025

https://github.com/c0m4r/paranoya

Simple IOC and YARA scanner for Linux®

malware-detector paranoya python security security-tool yara yara-scanner

Last synced: 25 Jul 2025

https://github.com/osirislab/fork-sentry

GitHub Action for detecting and alerting on suspicious forks of your repository

github-actions security

Last synced: 18 Jul 2025

https://github.com/mprpic/cvelint

CLI tool to validate CVE v5 JSON records.

cve linter security

Last synced: 12 Apr 2025

https://github.com/sondosaabed/sql-injection-attack-detection

Introduction to generative adversial network

ai conditional-gan security

Last synced: 09 Apr 2025

https://github.com/knutwurst/psnino

a pure, simple Playstation 1 PS1 Modchip for Arduino, ATMega and ATtiny

copy-protection modchip playstation security

Last synced: 13 Apr 2025

https://github.com/tldr-devops/auto-security-patching

Apply updates to your servers automatically and securely

automation patching security updates

Last synced: 04 Dec 2025

https://github.com/dsha256/token-go

JWT & PASETO Implementation of the Token Based Authentication

go golang jwt-tokens paseto-tokens security token-based-authentication

Last synced: 26 Jun 2025

https://github.com/cipherstash/cipherstash-proxy-playground

A playground to experiment with CipherStash and our data security capabilities.

aws-dynamodb data-security dynamodb encryption postgres postgresql searchable-encryption security security-tools

Last synced: 07 May 2025

https://github.com/scipag/phputilities

PHPUtilities provides various utility scripts.

commands exploitation penetration-testing php security shell

Last synced: 05 Oct 2025

https://github.com/imranismail/cloudcreds

Secure access to your organization's AWS accounts for both programmatic and console use-case via federated identity and short-lived credentials

aws federated-identity google oauth oidc security

Last synced: 22 Apr 2025

https://github.com/lovasoa/pyformat-challenge

Python format string vulnerability exploitation challenge

challenge format format-string-attack python security

Last synced: 24 Mar 2025

https://github.com/ebkalderon/bastille

Process sandboxing library written in Rust

cross-platform namespace rust sandbox security

Last synced: 23 Apr 2025

https://github.com/sethvargo/go-malice

A malicious package to demonstrate the importance of software supply chain security.

dont-use-this-no-really security software-supply-chain

Last synced: 08 May 2025

https://github.com/zaryab2000/smart-contracts_audit_reports

A collection of my publicly available smart contract security audit reports and details about my audit procedures. 🔐

security security-audit smart-contracts solidity web3

Last synced: 30 Jul 2025

https://github.com/maandree/correctpony

Passphrase generator based on http://xkcd.com/936/

correcthorsebatterystaple password-generator security

Last synced: 24 Feb 2025

https://github.com/dents/torche

Torrent file checker - verifies files in a directory against a torrent file in the same directory

datahoarder datahoarding file file-validation hash security sha1 storage torrent torrent-files torrents

Last synced: 11 Mar 2026

https://github.com/mvladislav/vm-docker-collection

Collection of some useful docker container with composer and swarm setup with traefik support

collection docker docker-compose docker-swarm monitoring security swarm traefik

Last synced: 23 Apr 2025

https://github.com/qaware/cloudid-showcase

Cloud Native Identity Management Showcase.

cloud-native java jsa kubernetes security spiffe spire vault

Last synced: 08 Apr 2025

https://github.com/davemolk/dorking

advanced searching for bing, brave, duck duck go, and yahoo

bug-bounty bugbounty dorking go golang infosec osint pentesting pentesting-tools recon research search search-engine security

Last synced: 14 Jul 2025

https://github.com/pixielabs/whisper-key

Send & receive secure messages in the browser.

cryptography messaging security

Last synced: 20 Jun 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/artem-smotrakov/java-dns-tunneling

Here is an example which shows an idea how DNS tunneling can be implemented in Java.

dns-tunneling java java-dns security

Last synced: 16 Jul 2025

https://github.com/edyatl/passchek

Passchek is a simple cli tool, checks if your password has been compromised.

check cli compromise k-anonymity password pipeline pwnedpasswords security utility

Last synced: 28 Apr 2025

https://github.com/oops-org-php/mod_execdir

mod_execdir: jailed system function. Run only the shell command in the specified directory

jail php8 security shell-injection

Last synced: 26 Apr 2025

https://github.com/SixHq/GPT4-AI-Realtime-code-scanner-Autocomplete-and-Highlighter-for-Javascript-Py-JS-Java-Php-Sixth-SAST

Easily spot, fix and detect badly written code in your project without breaking a sweat. Your GPT4 and LLM powered programming AI realtime code editor for python, javascript, typescript, java, php, c# and many more!

ai api autocomplete chatbot chatgpt enterprise-software fastapi frontend github-config gpt4 java javascript llm openai programming python react rest-api security vscode

Last synced: 24 Mar 2025

https://github.com/traycho/micronaut-security-attributes

Micronaut security attributes - secure your endpoints by validating authentication attribute using micronaut-security and a bit more. Library is not limited to any specific authentication method and is expected to work with supported authentication methods from micronaut.

attributes aws claims jwt jwt-authentication jwt-token lambda ldap-authentication micronaut security serverless tokens validation

Last synced: 11 Jan 2026

https://github.com/humblelad/neuro

Netlas automation to scan for vulnerabilities using nuclei templates.

netlas security security-automation

Last synced: 10 May 2025

https://github.com/captainhook-git/secrets

Some useful functionality to detect secrets

git git-hooks secret-detection security

Last synced: 13 Apr 2025

https://github.com/robertdebock/ansible-role-sysstat

Install, start and enable sysstat on your system.

ansible molecule monitoring playbook security sysstat system tox

Last synced: 24 Apr 2025

https://github.com/dyne/redroom

Zenroom crypto module for Redis

crypto cryptography password redis redis-module security

Last synced: 16 Jul 2025

https://github.com/mrcl0wnlab/new-ip-tor

This module that makes it easy to reboot IP Tor network

hacking python security security-tools tor

Last synced: 18 Jul 2025

https://github.com/inexio/cve-alert-manager

Collect security alerts from different sources and provide a normalized API to query

cve golang security security-vulnerability

Last synced: 09 Mar 2026

https://github.com/kahalewai/agbac

AGent Based Access Control (AGBAC) is is an open, vendor-neutral security specification that defines how AI agents securely perform actions on behalf of humans using existing IAM technologies

access-control agent agentic agents ai ai-agent artificial-intelligence auth-n auth-z authentication authorization dual-subject enterprise iam innovation llm security technology zero-trust

Last synced: 29 May 2026

https://github.com/djinn-soul/cytoscnpy

Fast Python static analysis powered by Rust. Detects dead code, security issues (including taint analysis), and code quality metrics like complexity, Halstead, maintainability, and nesting depth.

code-quality dead-code-detection python python-linter quality secret-detection security vscode-extension

Last synced: 18 Apr 2026

https://github.com/open-sspm/open-sspm

Open-SSPM is a small “who has access to what” service. It syncs identities from Okta (IdP) and permissions from connected apps (GitHub, Datadog, AWS Identity Center). Demo: admin@admin.com / admin

security sspm

Last synced: 18 Apr 2026

https://github.com/italomaia/uri-faker

See how fonts can be used to create fake URIs

fonts html jquery pentest phishing security semantic-ui uri usability

Last synced: 28 Oct 2025

https://github.com/r3dhulk/bad-usb

bad usb also known as rubber ducky is a usb device to hack your target when you are in device's physical access

attack hacking security security-tools usb

Last synced: 13 Jun 2026

https://github.com/fearlesssolutions/engineering-practice-domains

A mono-repo for the Engineering Practice Domains of Development, Data, Infrastructure, Testing, and Platforms

data data-engineering data-science database-design devops drupal end-to-end-testing engineering infrastructure machine-learning salesforce security testing web-development

Last synced: 26 Oct 2025

https://github.com/labex-labs/comptia-linux-plus-training-labs

Learn Linux system administration through hands-on labs, covering command-line, file management, user administration, security, networking, and maintenance. Perfect for CompTIA Linux+ certification prep.

bash certification command-line comptia course hands-on hands-on-labs labex labs linux linux-administration linux-commands lpic networking practice-labs programming security shell-scripting sysadmin system-maintenance

Last synced: 17 Jun 2026

https://github.com/mostafahussein/kubernetes-sec-alert

Track Kubernetes CVEs by native GitHub notifications!

cve devops github-actions golang k8s kubernetes security

Last synced: 28 Oct 2025

https://github.com/crodjer/biip

Strip out PII before Sending Data

cli pii privacy prompt-engineering prompt-toolkit rust security

Last synced: 25 Apr 2026

https://github.com/vpereira/brucutu

Brute force tool for SSH, IMAP, HTTP, FTP, POP3 and others

brute-force go golang security security-audit

Last synced: 14 Feb 2026

https://github.com/nour-karoui/encrypt-storage

NPM package that encrypts Local/Session Storage (available for TS & JS)

angular client-side encryption javascript localstorage reactjs security sessionstorage storage typescript

Last synced: 27 Oct 2025

https://github.com/mrcloudsec/mitre-aws-checks

Script for analyzing the compliance of your AWS account based on the adversary techniques on the MITRE ATT&CK Iaas Matrix.

aws mitre security security-scanner security-tools

Last synced: 24 Oct 2025

https://github.com/execveat/flawed

Static analysis engine for Python web-applications

security security-tools static-analysis taint-analysis

Last synced: 22 Jun 2026

https://github.com/kardespro/nosqlmap

NoSQLMap CLI Tool is a command-line interface (CLI) tool designed to test for NoSQL injection vulnerabilities using Node.js, TypeScript, and Axios. It supports both HTTP and HTTPS requests and works with all HTTP methods.

exploit mongodb mongodb-database mongoose nosqlmap pentesting scan-tool security security-tools sqlmap

Last synced: 24 Oct 2025

https://github.com/stratosphereips/security-datasets-for-testing

A set of security datasets for testing of tools and algorithms

cybersecurity dataset infosec infosectools netflow network-security security testing

Last synced: 22 Jan 2026

https://github.com/pelock/total-commander-ftp-password-recovery-tool

Total Commander FTP Password Recovery Tool allows you to decrypt the FTP account password information for all Total Commander versions with the FTP plug-in.

assembler assembler-x86 assembly decoder decoder-utility decoding ftp password password-recovery php security total-commander

Last synced: 30 Oct 2025

https://github.com/lambdapioneer/sloth

Key stretching and deniable encryption using Secure Elements on Android and iOS

android cryptography ios password-hashing security sloth

Last synced: 11 Oct 2025

https://github.com/z-m-huang/vcp

Vibe Coding Protocal - Security-first protocol for AI-generated code, multiple standards with real-time enforcement and multi-AI pipeline orchestration

ai-coding claude-code claude-skills security security-audit vibe-coding

Last synced: 18 Apr 2026

https://github.com/hexway/hive-burp-extension

About Hive Burp Suite Extension

pentest pentest-tool security security-tools

Last synced: 26 Feb 2026

https://github.com/riquedev/django-login-history2

It's easy to use, plug-in django app that once included, stores logins history (with device data, like IP, user-agent, location etc.) of all users

authenticate django ip location login security session

Last synced: 17 Mar 2026

https://github.com/projectachilles/projectachilles

Continuous security testing and cyber-risk quantification for every organization

breach-a cyber-ri docker golang mitre purple-team security self-hosted typescript

Last synced: 03 Apr 2026

https://github.com/dionyziz/hackme

The website describing my bounty hunt game.

bounty security

Last synced: 24 Jan 2026

https://github.com/egorsmkv/npm-audit-to-report

A simple Go program that converts `security-audit.json` to `security-audit.md` so you can use it in CI pipeline.

ci cve go npm security yarn

Last synced: 25 Oct 2025

https://github.com/slvdev/weasel

Solidity static analyzer you can talk to. MCP integration for Claude Code, Cursor, and Windsurf.

auditing ethereum mcp rust security smart-contracts solidity static-analysis

Last synced: 19 Jan 2026

https://github.com/mofneko/jbinspector

iOS JailBreak Detector Unity Compatible.

ios-library security unity3d-plugin

Last synced: 24 Oct 2025

https://github.com/ubernostrum/django-flashpolicies

Flash cross-domain policies for Django.

django flash python security

Last synced: 26 Oct 2025

https://github.com/celenityy/dove

Dove is a suite of configurations & advanced modifications for Mozilla Thunderbird, designed to put the user first - with a focus on privacy, security, freedom, & usability.

anti-tracking email gecko hardened hardening mozilla privacy private secure security settings thunderbird tracking user-js userjs

Last synced: 25 Feb 2026

https://github.com/sebastienrousseau/password-generator-pro

A fast, simple and powerful open-source cross platform utility tool for generating strong, unique and random passwords 🦀

cross-platform cross-platform-app passphrase-generator password-generator password-generator-pro rust security tauri tauri-app

Last synced: 21 Aug 2025

https://github.com/rix4uni/techfinder

A high-performance technology detection tool built with Go, leveraging the projectdiscovery wappalyzergo library to identify web technologies and frameworks.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools technology threat-intelligence

Last synced: 19 Jun 2026

https://github.com/DevanshRaghav75/bugbounty-dorks

Google dorks for bug bounty hunting

bugbounty google-dorks security

Last synced: 10 Mar 2025