An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/jessechale/halehound-cyd

ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit

bluetooth cc1101 cheap-yellow-display cyd esp32 esp32-diy hacking nrf24l01 offensive-security pentest security security-tools subghz wifi

Last synced: 12 Mar 2026

https://github.com/smed79/easylist-hosts

Unified EasyList hosts blacklist for use with DNS and domain blocking tools as pi-hole for the purpose of blocking bad domains used for serving ads, tracking, mining, malware and other nasty content.

adblock adblock-plus adguard blacklist blocklist dns dnsforge domains easylist easyprivacy hosts hosts-file malware nextdns personaldnsfilter phishing pi-hole privacy security ublock

Last synced: 24 Oct 2025

https://github.com/ynori7/hulksmash

A very easy-to-use library for building a custom brute-force requester for QA purposes

bruteforce qa qatools security security-tools

Last synced: 23 Jan 2026

https://github.com/bisonai/flutter-machine-learning-security

Protect your Machine Learning model in your Flutter application.

edge-machine-learning encoder-decoder mobile-ai security xor-cipher

Last synced: 18 Oct 2025

https://github.com/tn3w/ipblocklist

Aggregated IP/ASN threat intel. ~20 MB mmap DB + ~5 MB netset blocklist.

ip-address ip-blocklist ip-lookup python security threat-intelligence

Last synced: 04 Jun 2026

https://github.com/actalog/mongodump

🍃 GitHub Action for creating a binary export of a database's contents

actions backup database github-actions mongodb mongodump security

Last synced: 27 Feb 2026

https://github.com/blank-query/lazyVPN-for-Omarchy

LazyVPN is an Omarchy VPN manager for WireGuard connections. It replaces manual systemd-networkd configuration with a fast, keyboard-driven TUI featuring killswitch, auto-recovery, and Waybar integration.

linux mullvad-vpn omarchy omarchy-linux privacy protonvpn security tui vpn vpn-manager wireguard wireguard-ui wireguard-vpn

Last synced: 07 Feb 2026

https://github.com/ddrimus/http-threat-blocklist

A daily-updated blocklist of IP addresses involved in malicious HTTP attacks that bypassed multiple security layers. Ideal for protecting web servers against probing, exploits, and bot traffic.

blocklist cybersecurity firewall malware security threat-intelligence

Last synced: 31 Jan 2026

https://github.com/protokol/guardian

Transaction Based Permission Management (Users and Group) OnChain

ark blockchain configurable permissions security user-management

Last synced: 19 Oct 2025

https://github.com/beenuar/shieldapp-android

All-in-one Android security suite — deepfake detection, antivirus, Tor VPN, breach monitoring, phishing scanner, and 50+ security tools. On-device, no API keys, open source.

android android-app android-security antivirus breach-detection cybersecurity deepfake-detection jetpack-compose kotlin malware-detection material-design network-security open-source phishing-detection privacy security tensorflow-lite threat-intelligence tor vpn

Last synced: 11 May 2026

https://github.com/edsoncelio/ctf-guide

Information guide about CTF: https://edsoncelio.github.io/ctf-guide/

computer-engineering criptography pentest security

Last synced: 06 Feb 2026

https://github.com/0xjonaseb11/dn404_marketplace.3.0

A DN404 Marketplace built on ERC404 token standard inspired by Pandora coin

auditing dn404 erc404 ethereum marketplaces nfts security smartcontracts solidity tokens

Last synced: 21 Apr 2026

https://github.com/gowww/secure

🔑 Security utilities, CSP, HPKP, HSTS and other security wins

csp go golang good-practices hpkp hsts http https policy secure security ssl

Last synced: 01 Mar 2026

https://github.com/0xhunterr/hack_map

A Collection of InfoSec Mind Maps

ejpt-notes ejpt-study mindmap security

Last synced: 14 Feb 2026

https://github.com/iris-eval/mcp-server

The agent eval standard for MCP — score output quality, catch safety failures, enforce cost budgets

agent-evaluation ai-agent claude eval evaluation llm mcp mcp-server model-context-protocol observability security tracing

Last synced: 07 May 2026

https://github.com/katosh/agent_sandbox

Sandbox AI agents on HPC systems with slurm.

ai-agents bubblewrap firejail hpc landlock sandbox security slurm

Last synced: 05 May 2026

https://github.com/skx/mod_blacklist

A simple Apache module to blacklist remote hosts.

apache2 blacklist c firewall security

Last synced: 16 Mar 2026

https://github.com/robertdebock/ansible-role-cve_2024_3094

Check xz vulnerability (cve_2024_3094) on your system.

ansible cve20243094 linux molecule playbook security system tox

Last synced: 23 Oct 2025

https://github.com/mondoohq/terraform-provider-mondoo

Terraform Mondoo provider

security terraform

Last synced: 02 Apr 2026

https://github.com/heycupola/relic

Manage and share secrets. Encrypted on your device, never exposed to anyone else.

cli encrypted gdpr-compliant project-management secret-manager secrets security tui typescript zero-knowledge

Last synced: 01 Apr 2026

https://github.com/kumuluz/kumuluzee-security

KumuluzEE Security extension for easy integration with OAuth2/OpenID identity and access management providers.

cloud-native java javaee kumuluzee microservices oauth2 openid-connect security

Last synced: 17 Oct 2025

https://github.com/netlify/plugin-csp-nonce

Build plugin to use a nonce for the script-src directive of your site's Content Security Policy.

csp netlify security

Last synced: 26 Oct 2025

https://github.com/dimosr/monitorito

A browser extension for visualisation and monitoring of browser HTTP traffic

browser graph plugin security visualisation

Last synced: 21 Apr 2025

https://github.com/bonedaddy/postables-solidity-modules

Collection of reusable contracts and libraries I use in contracts I write.

blockchain contracts cryptocurrency ethereum libraries modules openzeppelin safemath security solidity upgradeable utilities

Last synced: 12 May 2025

https://github.com/mchmarny/sds-demo

Software Delivery Shield demo illustrating end-to-end solution for secure software supply chain

demo devops gcp sds security supply-chain

Last synced: 05 Aug 2025

https://github.com/ridge-development/ridge

Create your own personal AI assistant with full control, host it yourself, access insights from both your documents and the web, and automate tasks effortlessly. Design tailored AI agents, dive deep into research, and set up scheduled workflows.

agents autonomous llm nodejs npm pipeline python python3 repository security tasks yaml yarn

Last synced: 16 May 2025

https://github.com/theamazingpt/passman

A dmenu frontend for password-store (Pass: The Standard Unix Password Manager)

bash dmenu linux manager pass password password-store security unix

Last synced: 10 Mar 2026

https://github.com/Tjoosten/Security-Checklists

Security checklists and advisories that can be used on projects.

documentation security

Last synced: 20 Nov 2025

https://github.com/ketsapiwiq/siem-infra

Vulnerability detection, OSquery, fully-fledged Wazuh ELK stack with Linux and Windows Wazuh + osquery enrollment via Ansible.

ansible elasticsearch kibana osquery security siem vulnerability-detection wazuh

Last synced: 23 Apr 2025

https://github.com/kubeshop/monokle-action

Run this GitHub action to validate your Kubernetes resources with the Monokle SARIF validator.

devsecops github-actions kubernetes sarif sarif-report scanner security validation

Last synced: 07 Apr 2025

https://github.com/authzforce/fiware

FIWARE Generic Enabler for PDP/PAP support functions using an access control schema based on the XACML standard

authzforce fiware pdp security xacml

Last synced: 02 Jan 2026

https://github.com/bongochong/waspscanner

A Basic Scanner for Vulnerabilities Related to HiddenWasp Malware on GNU/Linux

anti-malware bash hidden-wasp hiddenwasp script security shellscript

Last synced: 08 Apr 2025

https://github.com/ibreakthecloud/redactrus

Go package for redacting sensitive info in Logrus logs.

golang hacktoberfest logging logrus redact security

Last synced: 23 Mar 2025

https://github.com/Peco602/dvwassl

SSL-enabled Damn Vulnerable Web App (DVWA)

docker dvwa ethical-hacking security ssl

Last synced: 21 Mar 2025

https://github.com/atbashee/atbash-octopus

Atbash Octopus version; declarative permission based Java EE Security

declarative java javaee javafx microprofile octopus permissions security

Last synced: 06 Jul 2025

https://github.com/rusty-ferris-club/redact-engine

Protect confidentiality with dynamic redaction by replacing sensitive data.

redact redaction security sensetive-data

Last synced: 19 Aug 2025

https://github.com/yijianguanzhu/icloud-simple-service

springcloud 示例项目 整合spring cloud gateway、jwt、spring reactive security、hystrix断路器、ribbon负载均衡、sentinel、spring cloud feign、nacos注册中心和配置中心、knife4j swagger、分布式链路追踪sleuth

feign gateway hystrix jwt knife4j nacos ribbon security sentinel sleuth springcloud swagger webflux-security

Last synced: 27 Apr 2025

https://github.com/elliotwutingfeng/aegis-backup-decryptor

CLI tool to decrypt backup files exported from the Aegis Authenticator app. This application is neither affiliated with Beem Development nor Aegis Authenticator.

2fa aes aes-gcm android backup cryptography cybersecurity decryption encrypt encrypted encryption linux macos openssl otp privacy scrypt security totp windows

Last synced: 29 Apr 2025

https://github.com/panther-labs/stix2

Pure go implementation of stix2

golang security

Last synced: 12 Aug 2025

https://github.com/kaansk/go-euvd

Comprehensive and zero dependency Go client for the ENISA EU Vulnerability Database (EUVD) API. Instantly access real-time vulnerability data, security advisories, CVSS scores, and more.

api-client cvss enisa epss european-union euvd go golang incident-response open-source oss security threat-intelligence vulnerability vulnerabilitymanagement

Last synced: 16 Jul 2025

https://github.com/hxsecurity/dongtai-core

Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.

applicationsecuritymonitoring devsecops django dongtai dongtai-iast security

Last synced: 26 Apr 2025

https://github.com/shinesolutions/aem-test-suite

AEM infrastructure test suite covering acceptance, recovery, security guideline testing scenarios

acceptance aem aem-opencloud performance recovery security testing

Last synced: 06 Mar 2026

https://github.com/fodinabor/esposecsignauth

Module for EspoCRM that uses SecSign for Two-Factor Authentication.

2fa espocrm security

Last synced: 01 Aug 2025

https://github.com/born05/craft-enforcepassword

Craft plugin for incrementally enforced new and secure passwords.

craftcms craftcms-plugin security

Last synced: 10 Apr 2025

https://github.com/jarelllama/emerging-threats

Block malware on your network with your DNS sinkhole using threat intelligence extracted from Emerging Threats rulesets.

adblock-list adguard adguard-blocklist adguard-home blacklist blocklist dns filterlist malware phishing phishing-sites pihole pihole-blocklists security

Last synced: 29 Sep 2025

https://github.com/bocaletto-luca/systemauditdashboard

SystemAuditDashboard is a centralized Linux system monitoring dashboard implemented in Python using Tkinter. It provides a real-time overview of key system information including: Kernel Version Operating System Details Logged-in User Number of Active Processes Number of Open Ports Load Average (1 min, 5 min, 15 min) Available Memory (in MB)...

admin-tool bocaletto-luca gui linux python security security-tool system-audit system-audit-dashboard system-tool tkinter

Last synced: 17 Sep 2025

https://github.com/jul10l1r4/identificador-cve-2018-11759

This exploit for CVE 2018-11759, vulnerability in apache mod_jk, module for load-balancer

apache2 cve cve-2018-11759 load-balancer module protection safe security security-testing

Last synced: 16 May 2025

https://github.com/jwhitt3r/SIEMEz

A open-source Django Security Incident and Event Management System

django incident-response python python3 security siem

Last synced: 12 Jul 2025

https://github.com/njokuscript/blowfishjs

A Typescript/Javascript library for interacting with the Blowfish APIs

javascript security solana web3

Last synced: 19 Apr 2025

https://github.com/darxisr/cryline-v3.0

Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes only. The author is't responsible for your actions.

aes-encryption assembly cplusplus dotnet encryption malware programming ransomware security source-code windows

Last synced: 16 Aug 2025

https://github.com/shaialon/express-csp-generator

Content Security Policy Generator, Powered by RapidSec

csp security

Last synced: 03 Sep 2025

https://github.com/jwilk/fuzzing

Jakub's fuzzing goodies

fuzzing security

Last synced: 12 Apr 2025

https://github.com/akshatvg/secure-hashed-authentication

blake2b & md5 based registration and login in PHP to show a secure hashed password.

algorithm authentication blake2b blake2b-hash-algorithm cyber-security hashing login md5 networks nis php project register security

Last synced: 31 Jul 2025

https://github.com/aegisjsproject/core

A fast, secure, modern, light-weight, and simple JS library for creating web components and more!

aegis component-library constructable-stylesheets css custom-elements dom html html-templates sanitizer-api security web-components

Last synced: 16 Jan 2026

https://github.com/k3rnel-dev/katanaframework

Katana-Framework это фреймворк для энтузиастов по тестированию на проникновение на данный момент еще находится в разработке.

framework hack hacking malware metasploit pentest pentesting post-exploitation security

Last synced: 28 Jun 2025

https://github.com/hackardox/openv

openv a tool to automatically load secrets from .env files using 1password CLI under the hood

1password secrets security

Last synced: 29 Aug 2025

https://github.com/soumyadip007/ga4gh-prototype-and-microservice-api-gsoc-proposal

Implement “Reference registry and contig alias search” for Global Alliance for Genomics and Health.

elasticsearch gsoc hibernate jpa jwt maven microservicers mysql restapi restful-webservices security spring springboot

Last synced: 27 Jul 2025

https://github.com/jonzeolla/lab-wifisecurity

A lab illustrating how some basic wifi hacking tools work.

information-security infosec lab security wifi-security

Last synced: 13 May 2025

https://github.com/muayyad-alsadi/oneway

a tool to drop privileges for docker entry-points

containers docker init-system jail privileges security

Last synced: 18 May 2026

https://github.com/marcreichel/password-exposed-rule

Laravel Validation rule to check that a password hasn't been exposed

data-breach haveibeenpwned laravel laravel-framework laravel-package password security validation

Last synced: 13 Jan 2026

https://github.com/skyzyx/engineering-for-site-reliability

Overall map of topics to cover for my “Engineering for Site Reliability” blog series.

ci-cd cicd devops docker security site-reliability site-reliability-engineering sre terraform

Last synced: 25 Mar 2025

https://github.com/chriszarate/know-your-deps

Picks a random dependency from your project and splains it to you.

npm security vulnerabilities

Last synced: 20 Aug 2025

https://github.com/narrowspark/automatic-security-audit

[READ ONLY] :warning: A composer plugin that checks if your application has known security vulnerabilities.

audit automatic composer composer-plugin narrowspark-automatic security security-advisories

Last synced: 13 Jan 2026

https://github.com/rideu/ndot

DNS over DoT relay. Designed for DHCP-configurable routers that supports custom DNS servers.

csharp dns dns-over-tls rfc1035 rfc7858 security security-tools

Last synced: 15 Jul 2025

https://github.com/geniuszly/CVE-2022-45701

it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.

arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research

Last synced: 07 May 2025

https://github.com/t94j0/polymorphic_compression_malware

Warning, this is malware. Don't do something stupid with it

hacking malware security

Last synced: 07 Mar 2026

https://github.com/mjorgegulab/nestjs-cryptography

Secure NestJS cryptography module 🔐

cryptography javascript nest nestjs node security typescript

Last synced: 27 Jul 2025

https://github.com/reconmap/mobile-client

React-native based mobile client for Reconmap

android infosec mobile pentesting react-native security vulnerabilities

Last synced: 10 Sep 2025

https://github.com/ztalbot2000/zerofile

Simple command line tool that fill a file with binary zeroes, then removes it.

clean clear data disk erase fill reset security wipe zero

Last synced: 26 Aug 2025

https://github.com/Nearata/flarum-ext-twofactor

A Flarum extension. Allow your users to enable two factor authentication.

flarum flarum-extension security two-factor

Last synced: 28 Mar 2025

https://github.com/sea-n/nctu-109b-comp-sec

109 Spring - Computer Security Capstone

homework nctu security

Last synced: 24 Apr 2025

https://github.com/patricktulskie/concuss

Throw a bunch of headers at a web app and see what sticks

malformed-headers pentest ruby security security-auto security-tools testing webapp-security

Last synced: 28 Apr 2025

https://github.com/jenkinsci/defensics-plugin

Defensics plugin for Jenkins

security test

Last synced: 19 Jun 2025

https://github.com/jmcph4/fuzzbang

Python 3 package providing basic fuzzing support

fuzz fuzz-testing fuzzer fuzzing python security vulnerability-detection

Last synced: 07 Apr 2025

https://github.com/robertdebock/ansible-role-investigate

Install and configure investigation tools on your system.

ansible investigate molecule playbook security tox

Last synced: 24 Apr 2025

https://github.com/louis3797/xss-shield

A powerful middleware for securing your express.js applications against cross-site scripting (XSS) attacks

express-middleware middleware node security typescript xss xss-attacks xss-filter xss-sanitizer xss-shield

Last synced: 07 Apr 2025

https://github.com/sindecker/pentest-playbook

The Penetration Testing Playbook — Beginner to Intermediate Field Guide. 359 pages, 731 code examples, 37+ compliance frameworks. Read free on GitHub.

active-directory beginner bug-bounty burp-suite ctf cybersecurity ethical-hacking hacking infosec oscp oscp-prep owasp penetration-testing pentest red-team security security-tools web-security

Last synced: 18 Apr 2026

https://github.com/autodidaddict/grpctls_sample

Sample illustrating mutual TLS and streaming gRPC using Elixir

elixir elixir-lang grpc grpc-stream mutual-tls otp security tls

Last synced: 21 Apr 2025

https://github.com/pythonhacker/varuh

Password manager for the command line for Unix like operating systems

command-line command-line-tool encryption golang linux password-manager security security-tools shell unix-like

Last synced: 19 Mar 2025