An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/sircryptic/poc

Proof-of-Concept Exploits Based On Known CVE's

cve cybersecurity educational proof-of-concept security

Last synced: 14 Apr 2025

https://github.com/umutcamliyurt/i2p-browser

A web browser for accessing I2P network anonymously and securely

anonymity i2p-browser privacy security web-browser

Last synced: 14 May 2025

https://github.com/inexio/cve-alert-manager

Collect security alerts from different sources and provide a normalized API to query

cve golang security security-vulnerability

Last synced: 09 Mar 2026

https://github.com/tigera-solutions/azure-hub-spoke-aks-egress-gateways

[Azure AKS Blueprint] Learn how to deploy Azure Hub-Spoke VNETs with AKS and Calico Egress Gateways

aks azure calico egress egress-gateway microsoft-azure security tigera

Last synced: 17 Aug 2025

https://github.com/lovasoa/pyformat-challenge

Python format string vulnerability exploitation challenge

challenge format format-string-attack python security

Last synced: 24 Mar 2025

https://github.com/hivemq/hivemq-deny-wildcard-extension

HiveMQ extension for denying subscriptions to the root wildcard

extension hivemq hivemq-extension mqtt security subscription wildcard

Last synced: 08 Mar 2026

https://github.com/BiasedRiot/Glanadh

Service to automatically remove Metadata from your files.

cloud-computing exif exif-data mat2 metadata monitoring privacy privacy-tools security security-tools shell systemd

Last synced: 12 Jul 2025

https://github.com/itemic/rotacsufbo

did u know the name of the repo is obfuscator backwards?

android android-security javaparser mobile-security obfuscate obfuscation obufscator proguard security

Last synced: 26 Jun 2025

https://github.com/mrcl0wnlab/new-ip-tor

This module that makes it easy to reboot IP Tor network

hacking python security security-tools tor

Last synced: 18 Jul 2025

https://github.com/pawamoy/django-cerberus-ac

Django Cerberus Access Control, extended permission system.

access control django ontology permissions role-based-access-control security

Last synced: 05 Jul 2025

https://github.com/kahalewai/agbac

AGent Based Access Control (AGBAC) is is an open, vendor-neutral security specification that defines how AI agents securely perform actions on behalf of humans using existing IAM technologies

access-control agent agentic agents ai ai-agent artificial-intelligence auth-n auth-z authentication authorization dual-subject enterprise iam innovation llm security technology zero-trust

Last synced: 29 May 2026

https://github.com/mprpic/cvelint

CLI tool to validate CVE v5 JSON records.

cve linter security

Last synced: 12 Apr 2025

https://github.com/grapheneos-archive/device_google_coral-kernel

Pixel 4 and 4 XL kernel prebuilts.

android grapheneos privacy security

Last synced: 13 Aug 2025

https://github.com/humblelad/neuro

Netlas automation to scan for vulnerabilities using nuclei templates.

netlas security security-automation

Last synced: 10 May 2025

https://github.com/neospl0it/discord-rat

A powerful Discord RAT for remote control & monitoring. Capture screenshots, grab passwords, evade detection.

discord discord-bot discord-rat grabber-password grabber-token python rat remote-access-trojan remoteaccesstrojan security

Last synced: 22 Apr 2025

https://github.com/m1guelpf/laravel-ssl

A Laravel package to enforce HTTPS

enforce laravel package security ssl

Last synced: 13 May 2025

https://github.com/zaryab2000/smart-contracts_audit_reports

A collection of my publicly available smart contract security audit reports and details about my audit procedures. 🔐

security security-audit smart-contracts solidity web3

Last synced: 30 Jul 2025

https://github.com/osirislab/fork-sentry

GitHub Action for detecting and alerting on suspicious forks of your repository

github-actions security

Last synced: 18 Jul 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/kyoshidajp/dep-doctor

Diagnose whether your software dependency libraries are maintained.

dart dependencies elixir erlang golang javascript php python ruby rust security swift

Last synced: 09 Jul 2025

https://github.com/billyJoePiano/TenaPull

TenaPull is a configurable Java application which fetches and processes the data from one or more Nessus APIs, and converts it into JSON ouputs that are usable by Splunk

java nessus security splunk

Last synced: 11 Jul 2025

https://github.com/qaware/cloudid-showcase

Cloud Native Identity Management Showcase.

cloud-native java jsa kubernetes security spiffe spire vault

Last synced: 08 Apr 2025

https://github.com/sondosaabed/sql-injection-attack-detection

Introduction to generative adversial network

ai conditional-gan security

Last synced: 09 Apr 2025

https://github.com/vartzy/nodejs-owasp-api-security

NodeJS API Guide with addressing top 10 OWASP security risk on API development.

cheatsheet cybersecurity cybersecurity-education cybersecurity-tool owasp rest-api security

Last synced: 11 Apr 2025

https://github.com/pixielabs/whisper-key

Send & receive secure messages in the browser.

cryptography messaging security

Last synced: 20 Jun 2025

https://github.com/leopechnicki/im_robot

Reverse-CAPTCHA for AI agents — verify bots, not humans. Multi-framework (React, Vue, Svelte, Web Components). Zero dependencies. TypeScript.

ai-agent authentication bot-verification captcha react reverse-captcha security svelte typescript vue web-components zero-dependencies

Last synced: 22 May 2026

https://github.com/drawing-captcha/drawing-captcha-app

Drawing Captcha is an innovative software that enhances security and promotes brand awareness by requiring users to complete interactive drawing tasks to pass the verification process. (Website comes soon)

captcha drawing js nodejs open-source security solving

Last synced: 25 Jul 2025

https://github.com/dsha256/token-go

JWT & PASETO Implementation of the Token Based Authentication

go golang jwt-tokens paseto-tokens security token-based-authentication

Last synced: 26 Jun 2025

https://github.com/andreacioni/keelink

Keepass2Android QR Plug-In Utility

android encryption keepass keepass2android-qr-plug plugin security

Last synced: 21 Mar 2025

https://github.com/nathanjepson/wdac-framework

Easily create, deploy, and edit Windows Defender Application Control (WDAC) policies. Allows for careful review of app information before trusting WDAC rules. Manage your policies with WinRM (remote PowerShell) and SQLite.

application-control applicationcontrol defender enterprise-security operation-system-security powershell powershell-script security sqlite sqlite-database wdac windows windows-defender windows-defender-application-control windowsdefender winrm zero-trust

Last synced: 21 Jun 2025

https://github.com/infineon/ek-based-onboarding-optiga-tpm

Guide for Setting Up and Operating Device Onboarding with OPTIGA™ TPM Endorsement Key (EK)

raspberry-pi security tpm2

Last synced: 11 Jul 2025

https://github.com/mrheinen/lophiid

A distributed honeypot for monitoring large scale web attacks

grpc-go honeypot intrusion-detection security threat-detection threat-hunting threat-intelligence

Last synced: 23 Jun 2025

https://github.com/dhanushnehru/pdf-xss-checker

pdf-xss-checker is a Node.js tool designed to scan PDF files for potential Cross-Site Scripting (XSS) vulnerabilities. It analyzes embedded scripts, forms and suspicious content to help identify security risks in PDFs before they're distributed or displayed in browsers.

pdf pdf-document scanner security security-audit securitytools vulnerability xss xss-attacks xss-detection xss-filter xss-scanner xss-vulnerability

Last synced: 19 Jun 2025

https://github.com/marcelo-davanco/quality-scanner

Quality Scanner — SonarQube + NestJS/TypeScript analysis toolkit with Docker, 8-step scanner, quality gate, and Next.js dashboard

code-analysis code-quality docker eslint nestjs security sonarqube spectral trivy typescript

Last synced: 20 Feb 2026

https://github.com/krishealty/worm

Worm is an Android post exploitation Framework to gain remote access of any Android device by exploiting Android Debug Bridge.

cybersecurity hacking hacking-tools information-gathering kali-linux osint-framework osint-tool penetration-testing pentesting python python3 security vulnerability vulnerability-scanners

Last synced: 14 Apr 2025

https://github.com/snehmehta/smartotp

making otp smarter

flask innovation otp python security webapp

Last synced: 14 Aug 2025

https://github.com/dolmen-go/mylogin

Utilities for reading and writing MySQL' ~/.mylogin.cnf (encrypted MySQL client credentials storage)

credentials encryption golang-library mylogin mysql mysql-client security

Last synced: 12 Jun 2025

https://github.com/contributte/event-dispatcher-extra

:recycle: Nette-based Symfony events for application, presenter, form, latte, templates, security and many others.

application contributte event-dispatcher event-emitter events mvc nette nette-framework security

Last synced: 19 Jul 2025

https://github.com/badr-1/steganography-cryptography

Console App That Uses Cryptography And Steganography To Embed/Extract Secret Message In/From an Image

encryption kotlin lsb-steganography security xor-encryption

Last synced: 13 Apr 2025

https://github.com/ayushn21/bridgetown-content-security-policy

A Bridgetown plugin to add a Content Security Policy in a meta tag

bridgetown bridgetown-plugin content-security-policy security

Last synced: 14 Apr 2025

https://github.com/aligent/magento2-bypass-2fa

Magento module allowing two-factor authentication (2FA) to be bypassed for development purposes.

development magento2 security

Last synced: 11 Apr 2025

https://github.com/nwtgck/aes128gcm-stream-npm

🛡128-bit AES-GCM Encryption Stream for Web Browsers

aes-gcm browser encryption javascript security stream streams-api

Last synced: 01 Apr 2025

https://github.com/buession/buession-security

Buession 安全框架,整合了 spring security、shiro、pac4j;封装了极验等行为验证产品 SDK。

desensitization geetest java mcrypt pac4j security shiro spring

Last synced: 14 Apr 2025

https://github.com/xtonousou/cis-bench-centos8

CIS Benchmark v1.0.0 - Level 1 Server - CentOS 8 automation

assessment bash benchmark centos centos8 cis cis-benchmark hardening linux security

Last synced: 30 Oct 2025

https://github.com/bytehide/cli

Dotnetsafer CLI is a console tool that allows you to protect your .NET developments, integrates different products and services to keep your code safe.

analyzer dotnet netcore obfuscation owasp protection security security-tools vulnerability

Last synced: 27 Jun 2025

https://github.com/dlion/go-ofile

Use this tool to search for a specific file type in a given domain.

dork go golang security

Last synced: 03 Jul 2025

https://github.com/padok-team/security-vault-credential-broker

Code to deploy a PoC of an implementation of Vault as a credential broker for Boundary, with a PostgreSQL database as target.

boundary security vault

Last synced: 26 Dec 2025

https://github.com/fvinas/tf_aws_lambda_ip_whitelist

An AWS Lambda-based mechanism to allow temporary IP whitelisting via security groups

aws-ec2 aws-lambda aws-security-group infrastructure lambda-functions security terraform-module whitelist

Last synced: 14 Apr 2025

https://github.com/bitforger/thegreatersuspender

Fork of popular extension The Great Suspender made more privacy respecting.

chrome chrome-extension javascript privacy security suspender thegreatsuspender

Last synced: 07 May 2025

https://github.com/melroyb/psbettercap

Control multiple Bettercap nodes through REST API

bettercap cluster hack linux powershell powershell-script security security-audit wifi windows

Last synced: 18 Apr 2026

https://github.com/ghostofgoes/ui-prccdc

Scripts, Guides, Tools, and what-not for the University of Idaho PRCCDC team.

ccdc hardening prccdc python scripts security uidaho vyos

Last synced: 22 Apr 2025

https://github.com/pelock/jobfuscator-python

JObfuscator is a source code obfuscator for the Java language. Protect Java source code & algorithms from hacking, cracking, reverse engineering, decompilation & technology theft.

decompiler decompiler-java java mangle mangler obfuscate obfuscate-code obfuscate-strings obfuscated obfuscated-code obfuscation obfuscator security source-code

Last synced: 13 Jul 2025

https://github.com/barandev/firebase-authentication-template

A template repository for implementing Firebase Authentication with Flask and JavaScript. This template provides a basic setup for integrating Firebase Authentication into web applications using Flask as the backend framework. It includes functionalities for user signup, signin, signout, and session management.

firebase firebase-auth firebase-webapp flask html-css-javascript javascript modal-design password-hashing python responsive-design security session-management signin-signup template user-management userauthentication web-template webdevelopment

Last synced: 19 Feb 2026

https://github.com/heartsucker/rust-secure-session

Signed, encrypted session cookies for Iron

cryptography http iron rust security session

Last synced: 13 May 2025

https://github.com/eftec/securityonemysql

It is a library

mysql php php7 security

Last synced: 07 Mar 2026

https://github.com/bonedaddy/web3-super-user

deployment, and configuration guidelines for self-hosting web3 services in a secure manner.

ethereum-staking security self-hosting web3

Last synced: 08 May 2025

https://github.com/ryoppippi/bun-socket-scanner

A Bun security scanner that integrates with Socket.dev for package vulnerability detection

bun security socket

Last synced: 11 Sep 2025

https://github.com/authress/authress-sdk.cs

The Authress SDK for C# provides authorization as a service with fully compatible REST apis.

authentication authorization authorization-backend authorization-framework authorization-middleware authorization-server authress nuget security

Last synced: 13 May 2025

https://github.com/bandarlabs/cveingest

Convert CVEs into LLMs friendly input with multi level crawling

audio cve llm security

Last synced: 03 Jul 2025

https://github.com/fractaslabs/silverstripe-security-layouts

SilverStripe module for fancier security layouts (login, logout, lost password etc.)

security silverstripe silverstripe-4 silverstripe-module silverstripe-theme

Last synced: 15 Jan 2026

https://github.com/louib/challenge-response

Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust.

authentication challenge-response encryption hmac hmac-sha1 nitrokey onlykey otp security yubico yubikey

Last synced: 24 Mar 2025

https://github.com/mdeous/dnscheck

Subdomain takeover assessment tool.

dns security subdomain-takeover

Last synced: 11 Apr 2026

https://github.com/imagemlt/nodelcx

nodejs编写的tcp内网穿透脚本

forward-proxy lcx security security-tools

Last synced: 13 Apr 2025

https://github.com/maybethisisru/eleventy-plugin-safe-external-links

Stop XSS attacks by preventing access to origin window for links that open in a new tab/window.

11ty eleventy external-links links security

Last synced: 12 Apr 2025

https://github.com/bisonai/flutter-machine-learning-security

Protect your Machine Learning model in your Flutter application.

edge-machine-learning encoder-decoder mobile-ai security xor-cipher

Last synced: 18 Oct 2025

https://github.com/always-further/runseal

Sealed execution environment for GitHub Actions.

actions isolation sandbox security supply-chain-security

Last synced: 05 Jun 2026

https://github.com/rocklambros/any2md

Convert PDF, DOCX, HTML, and TXT files — or web pages by URL — to clean, LLM-optimized Markdown with YAML frontmatter.

cli converter docx html llm markdown pdf python security txt

Last synced: 26 Apr 2026

https://github.com/soos-io/soos-dast

SOOS DAST Scanning - Register for a Free Trial at https://app.soos.io/register

dast penetration-testing security soos web-security

Last synced: 24 Feb 2026

https://github.com/radoslaw-sz/guardio

The most flexible control plane for AI Agent systems

ai ai-agent ai-agents control-plane framework guard mcp security

Last synced: 01 Apr 2026

https://github.com/dk26/strict-path-rs

Handle paths from external or unknown sources securely. Defends against 19+ real-world CVEs including symlinks, Windows 8.3 short names, and encoding tricks and exploits.

directory-traversal file-security filesystem-security path-traversal-prevention path-validation rust rust-crate security type-safety web-security

Last synced: 22 Apr 2026

https://github.com/prompt-armor/prompt-armor

Open-source prompt injection detector — 5 layers, 91.7% F1, ~27ms, offline, Apache 2.0

ai-safety anomaly-detection cli faiss jailbreak llm llm-security mcp nlp offline onnx prompt-injection prompt-security python security

Last synced: 03 Jun 2026

https://github.com/99999g/ak47

AK47 是一款跨平台的漏洞利用与安全评估工具 | AK47 is a cross-platform vulnerability exploitation and security assessment tool

expr mcp pentest redteam security skills wails

Last synced: 10 Apr 2026

https://github.com/bmedicke/reed

notes about 🔍 Reverse Engineering and 🔥 Exploit Development

debugging exploit-development reverse-engineering security

Last synced: 09 Oct 2025

https://github.com/amadeusitgroup/starter-kit-for-internal-hacking-event

A kit to organize internal hacking events, improving product security and spreading security knowledge.

event fun security

Last synced: 13 Feb 2026

https://github.com/epappas/llmtrace

Zero-code LLM security & observability proxy. Real-time prompt injection detection, PII scanning, and cost control for OpenAI-compatible APIs. Built in Rust.

agentic ai-agents ai-infrastructure ai-security aiops chatgpt llm-inference llm-monitoring llm-security llm-security-compliance-prompt-injection llmops mlops observability openai pii-detection prompt-injection proxy rust security

Last synced: 19 Feb 2026

https://github.com/tink-crypto/tink-cc-awskms

AWS-KMS extension for Tink C++

aws-kms cpp crypto cryptography security

Last synced: 27 Jan 2026

https://github.com/neuralegion/sectester-js

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

appsec brightsec e2e pentesting qa security test testing typescript

Last synced: 17 Mar 2026

https://github.com/ynori7/hulksmash

A very easy-to-use library for building a custom brute-force requester for QA purposes

bruteforce qa qatools security security-tools

Last synced: 23 Jan 2026

https://github.com/alex2276564/telegramnotifier

PrestaShop module that sends customizable Telegram notifications for new orders, admin logins, and new customer registrations. Supports multiple chat recipients, message templates, and automatic update checks.

api automation ecommerce module notifications php prestashop security telegram

Last synced: 14 Oct 2025

https://github.com/stijncaerts/doss

Development of Secure Software: course summary

security

Last synced: 22 Feb 2026

https://github.com/anchore/s3c-workshops

Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.

containers devsecops fedramp k8s sbom security supply-chain-security vulnerability-scanners

Last synced: 09 Oct 2025

https://github.com/visualbean/hibp.net

A simple .NET wrapper for the HIBP (Have I been pwned?) Api

csharp haveibeenpwned hibp netcore nuget security

Last synced: 10 Oct 2025