An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/lombiq/orchard-login-as-anybody

Orchard module for site owners to be able to log in as any user.

orchard orchard-cms orchard-core orchard-module security

Last synced: 17 Aug 2025

https://github.com/dimosr/monitorito

A browser extension for visualisation and monitoring of browser HTTP traffic

browser graph plugin security visualisation

Last synced: 21 Apr 2025

https://github.com/hotaydev/enygmah

The only tool your project needs to guarantee security and quality. Open-source and free.

analysis application-security automated-testing dependency-analysis secops security security-audit security-automation security-tools

Last synced: 15 May 2025

https://github.com/teh9/laravel-tg-2fa

A simple implementation of a two-factor authentication via Telegram for Laravel

2fa auth authentication laravel login php security telegram two-factor

Last synced: 22 Aug 2025

https://github.com/hugobatista/tailhoogram

Send Tailscale webhook events to Telegram using Cloudflare Workers

audit cloudflare cloudflare-workers events security tailnet tailscale telegram webhook

Last synced: 26 May 2026

https://github.com/bocaletto-luca/bug-github-farms-points

Auto Farms Points BUG in Github Author: Bocaletto Luca Hi there! I’m Luca (@bocaletto-luca), and I’ve put together this repo to demonstrate a surprising “feature” (or vulnerability?) in GitHub’s contribution model. With a single workflow file, you can automatically farm commits, issues, PRs, wiki edits, releases and comments every hour—artificially

bocaletto-luca bug farms github github-bug hack hacking points security yaml

Last synced: 27 Apr 2026

https://github.com/bonedaddy/postables-solidity-modules

Collection of reusable contracts and libraries I use in contracts I write.

blockchain contracts cryptocurrency ethereum libraries modules openzeppelin safemath security solidity upgradeable utilities

Last synced: 12 May 2025

https://github.com/jmcph4/fuzzbang

Python 3 package providing basic fuzzing support

fuzz fuzz-testing fuzzer fuzzing python security vulnerability-detection

Last synced: 07 Apr 2025

https://github.com/rideu/ndot

DNS over DoT relay. Designed for DHCP-configurable routers that supports custom DNS servers.

csharp dns dns-over-tls rfc1035 rfc7858 security security-tools

Last synced: 15 Jul 2025

https://github.com/panther-labs/stix2

Pure go implementation of stix2

golang security

Last synced: 12 Aug 2025

https://github.com/node-opcua/node-opcua-crypto

node-opcua certificate tools & encryption/signature support

certificate encryption opcua security

Last synced: 20 Feb 2026

https://github.com/chriszarate/know-your-deps

Picks a random dependency from your project and splains it to you.

npm security vulnerabilities

Last synced: 20 Aug 2025

https://github.com/ibreakthecloud/redactrus

Go package for redacting sensitive info in Logrus logs.

golang hacktoberfest logging logrus redact security

Last synced: 23 Mar 2025

https://github.com/boxyhq/jackson-cerbos

This is an example application that demonstrates how to use Cerbos with SAML Jackson

access-control authorization cerbos policy saml-authentication security

Last synced: 01 Aug 2025

https://github.com/kaansk/go-euvd

Comprehensive and zero dependency Go client for the ENISA EU Vulnerability Database (EUVD) API. Instantly access real-time vulnerability data, security advisories, CVSS scores, and more.

api-client cvss enisa epss european-union euvd go golang incident-response open-source oss security threat-intelligence vulnerability vulnerabilitymanagement

Last synced: 16 Jul 2025

https://github.com/kardelruveyda/aspnet-security

We write code for hours during the day. So how many of these codes are safe? I found training on security from Udemy. And I started watching. Thank you Fatih Çakıroğlu

csharp dotnet-core security

Last synced: 13 Apr 2025

https://github.com/lirantal/security-report

Report a security vulnerability

nodejs npm npx security

Last synced: 21 Apr 2025

https://github.com/nilportugues/php-uuid

Use this class to encapsulate the latest and more secure Uuid versions

composer php php7 secure security uuid uuid-generator uuid4 uuid5

Last synced: 14 Jul 2025

https://github.com/divineomega/laravel-password-security-audit

🔏 Artisan command to audit the security of your users' passwords

laravel laravel-package password php security security-audit users

Last synced: 24 Aug 2025

https://github.com/jpts/coredns-enum

Discover K8s Services & Pods through DNS Records in CoreDNS

coredns enumeration kubernetes networking security

Last synced: 12 May 2025

https://github.com/yhs0602/logbluetoothapi

Logs android bluetooth api calls of apps using xposed framework, to learn how to avoid java.lang.IOException: connect() failed; socket might closed or timeout; read ret: -1

benchmarking reverse-engineering security security-tools xposed-framework

Last synced: 24 Jul 2025

https://github.com/rabbit-company/passwordgenerator-js

Password generator implemented in JavaScript (ES6).

generator password security strength

Last synced: 13 Jul 2025

https://github.com/tigera-solutions/cc-aks-zero-trust-workshop

In this AKS-focused security workshop, you will work with Calico and Microsoft Azure experts to learn how to implement zero-trust security for workloads to reduce the attack surface of applications running on AKS. This 90-minute hands-on lab comes with your own Calico Cloud environment and a sample app environment.

aks azure cc regismartins security workshop

Last synced: 10 Aug 2025

https://github.com/soufantech/arx

Arx is an access control library for Node.js apps, strongly focused on efficiency, type safety and overall composability.

access-control authorisation permissions policy security

Last synced: 12 Apr 2025

https://github.com/sjinks/yubico-otp

PHP 7/8-friendly alternative to the official php-yubico client

2fa authentication otp php security yubico yubico-otp

Last synced: 10 Apr 2025

https://github.com/authress/authress-sdk.py

The Python Authress SDK provides authorization as a service with fully compatible REST apis.

authorization authorization-backend authorization-framework authorization-middleware authorization-server authorizationservice authress python security

Last synced: 13 May 2025

https://github.com/jonzeolla/lab-wifisecurity

A lab illustrating how some basic wifi hacking tools work.

information-security infosec lab security wifi-security

Last synced: 13 May 2025

https://github.com/hackardox/openv

openv a tool to automatically load secrets from .env files using 1password CLI under the hood

1password secrets security

Last synced: 29 Aug 2025

https://github.com/muqsit/2fa

[In-dev] Two-factor authentication for your PocketMine-MP (PMMP) server. Currently there are no documentations or doc comments.

2fa mfa pmmp pocketmine-mp security

Last synced: 05 Aug 2025

https://github.com/grapheneos-archive/device_google_crosshatch

Pixel 3 and Pixel 3 XL device sources.

android grapheneos security

Last synced: 04 Oct 2025

https://github.com/petemcw/ansible-role-hardening

Ansible role for basic server hardening

ansible ansible-role security

Last synced: 14 Apr 2025

https://github.com/sindecker/pentest-playbook

The Penetration Testing Playbook — Beginner to Intermediate Field Guide. 359 pages, 731 code examples, 37+ compliance frameworks. Read free on GitHub.

active-directory beginner bug-bounty burp-suite ctf cybersecurity ethical-hacking hacking infosec oscp oscp-prep owasp penetration-testing pentest red-team security security-tools web-security

Last synced: 18 Apr 2026

https://github.com/mooxphp/user-device

[READ-ONLY] Manage and let users manage Known Devices in Filament to enhance security

devices filament laravel security user

Last synced: 20 Feb 2026

https://github.com/theamazingpt/passman

A dmenu frontend for password-store (Pass: The Standard Unix Password Manager)

bash dmenu linux manager pass password password-store security unix

Last synced: 10 Mar 2026

https://github.com/ebrasha/abdal-security-headers

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp

Last synced: 26 Jan 2026

https://github.com/yijianguanzhu/icloud-simple-service

springcloud 示例项目 整合spring cloud gateway、jwt、spring reactive security、hystrix断路器、ribbon负载均衡、sentinel、spring cloud feign、nacos注册中心和配置中心、knife4j swagger、分布式链路追踪sleuth

feign gateway hystrix jwt knife4j nacos ribbon security sentinel sleuth springcloud swagger webflux-security

Last synced: 27 Apr 2025

https://github.com/solomonkassa/nginx-automation

🚀 NGINX Automation Framework A comprehensive, enterprise-grade NGINX automation framework designed for high-availability, security-focused, and scalable web infrastructure deployment.

ansible ci-cd doker kubernetes nginx nginx-docker prometheus script security shell-script

Last synced: 03 Apr 2026

https://github.com/jef/gh-audit-org-keys

🔑 Provides list of public SSH keys of an organization

github-api john-the-ripper openssl security ssh

Last synced: 03 Apr 2026

https://github.com/certwatch-app/cw-agent

SSL/TLS certificate monitoring agent for Kubernetes and on-prem infrastructure. Scan certificates, detect expiration, validate chains, and sync to CertWatch cloud.

certificate cli cloud-native devops golang kubernetes monitoring security sre ssl tls

Last synced: 13 Jan 2026

https://github.com/panther-labs/pysigma-backend-panther

pySigma Panther Backend

python security

Last synced: 12 Aug 2025

https://github.com/jreisinger/waf-tester

Test Web Application Firewalls (WAFs)

cli ftw security testing tool waf

Last synced: 31 Jan 2026

https://github.com/picobaz/pyformblaster

PyFormBlaster: A sleek Python web form fuzzer for ethical security audits. Blast forms with random and malicious inputs to uncover XSS, SQL Injection, and more. Features auto-field detection, CSV logging, and modular config. Test responsibly!

cybersecurity ethical-hacking form-fuzzer fuzzing penetration-testing python security web-security

Last synced: 09 Oct 2025

https://github.com/lambda2/breezer

🔒 Lock your Gemfile dependencies to safe versions

ci gemfile ruby security

Last synced: 18 Jan 2026

https://github.com/goblgobl/authen

Add 2FA to an existing authentication flow

authentication go microservice security self-hosted

Last synced: 16 Jan 2026

https://github.com/geniuszly/CVE-2022-45701

it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.

arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research

Last synced: 07 May 2025

https://github.com/getarcis/arcis

Inside-the-app security middleware for Node.js, Python, and Go. 20+ attack vectors. One install, three languages, MIT.

bot-detection cli django express fastapi middleware nodejs npm owasp prompt-injection pypi python rate-limiting sast security sql-injection ssrf supply-chain-security web-security xss

Last synced: 06 Jun 2026

https://github.com/hqarroum/open-sniffer

:nose: A POSIX utility used to read and dissect network packets.

security sniffer

Last synced: 19 Apr 2025

https://github.com/miller79/spring-security-demo

Demonstrates how to use Spring Security with common production patterns.

java oauth2 security spring spring-boot spring-framework spring-security

Last synced: 01 Jul 2025

https://github.com/5GSEC/security-intents

Repository to hold security intents in standard template format.

5g blueprints intents k8s kubernetes o-ran security

Last synced: 16 Jun 2026

https://github.com/robertdebock/ansible-role-cve_2024_3094

Check xz vulnerability (cve_2024_3094) on your system.

ansible cve20243094 linux molecule playbook security system tox

Last synced: 23 Oct 2025

https://github.com/ddrimus/http-threat-blocklist

A daily-updated blocklist of IP addresses involved in malicious HTTP attacks that bypassed multiple security layers. Ideal for protecting web servers against probing, exploits, and bot traffic.

blocklist cybersecurity firewall malware security threat-intelligence

Last synced: 31 Jan 2026

https://github.com/fijimunkii/usb-canary

Shell script to monitor usb devices while your computer is locked. Get notified when someone plugs in or removes a usb device

alert detection linux monitoring notify osx security shell sms usb

Last synced: 04 Oct 2025

https://github.com/0xedward/fisherman

a fisherman catches phishes - a tool to look up reputation of email addresses

email infosec phishing python security security-tools threat-intelligence

Last synced: 04 Oct 2025

https://github.com/zufardhiyaulhaq/asdf-trivy

Trivy plugin for the asdf version manager

asdf asdf-plugin security security-tools trivy

Last synced: 12 Apr 2025

https://github.com/akshatvg/secure-hashed-authentication

blake2b & md5 based registration and login in PHP to show a secure hashed password.

algorithm authentication blake2b blake2b-hash-algorithm cyber-security hashing login md5 networks nis php project register security

Last synced: 31 Jul 2025

https://github.com/atbashee/atbash-octopus

Atbash Octopus version; declarative permission based Java EE Security

declarative java javaee javafx microprofile octopus permissions security

Last synced: 06 Jul 2025

https://github.com/gowww/secure

🔑 Security utilities, CSP, HPKP, HSTS and other security wins

csp go golang good-practices hpkp hsts http https policy secure security ssl

Last synced: 01 Mar 2026

https://github.com/heycupola/relic

Manage and share secrets. Encrypted on your device, never exposed to anyone else.

cli encrypted gdpr-compliant project-management secret-manager secrets security tui typescript zero-knowledge

Last synced: 01 Apr 2026

https://github.com/aegisjsproject/core

A fast, secure, modern, light-weight, and simple JS library for creating web components and more!

aegis component-library constructable-stylesheets css custom-elements dom html html-templates sanitizer-api security web-components

Last synced: 16 Jan 2026

https://github.com/autodidaddict/grpctls_sample

Sample illustrating mutual TLS and streaming gRPC using Elixir

elixir elixir-lang grpc grpc-stream mutual-tls otp security tls

Last synced: 21 Apr 2025

https://github.com/tse-wei-chen/hs-sql-agent

A high-performance C# SQL Agent MCP that eliminates LLM hallucinations and security risks. Instead of letting the AI write raw SQL, it extracts parameters to generate deterministic, injection-free queries across 6 major databases—complete with a visual Admin UI and enterprise guardrails.

accuracy admin-panel ai-safety ai-safety-design anti-hallucination firebird mcp mcp-server mcp-servers mysql nl2sql oracle postgres postgresql security sql-agent sql-server sqlite

Last synced: 30 May 2026

https://github.com/onzack/kube-defcon

A tool to visualize network policy information from the Kubernetes Master API

docker kubernetes network-policy security visualization

Last synced: 26 Oct 2025

https://github.com/happyhackingspace/privacy-policy-analyzer

A command-line tool that automatically fetches, analyzes, and scores website privacy policies using AI to highlight strengths, risks, and recommendations.

privacy security

Last synced: 13 Oct 2025

https://github.com/ekino/hibernate-crypto-types

Provides new hibernate column types to encrypt your column data before being stored in your database

encryption gradle hibernate jpa secrets security

Last synced: 06 Oct 2025

https://github.com/lambdapioneer/rollercoaster

MixNet Simulator with Rollercoaster Implementation 🎢

loopix mixnet security usenix-security-2021

Last synced: 11 Oct 2025

https://github.com/actalog/mongodump

🍃 GitHub Action for creating a binary export of a database's contents

actions backup database github-actions mongodb mongodump security

Last synced: 27 Feb 2026

https://github.com/xkcoding/magic-starter-secure-demo

magic-starter-secure 极简的权限控制框架的 demo

demo jwt magic-starter security spring-boot-2 spring-boot-starter xkcoding

Last synced: 09 Mar 2026

https://github.com/mellow-hype/keysniffer-poc

Simple PoC Linux keysniffer showing impact of a lack of GUI-isolation in X display server.

infosec keysniffer linux proof-of-concept security

Last synced: 09 Jul 2025

https://github.com/grottopress/samba

Single Sign On authentication for Lucky framework

authentication crystal lucky-framework oauth2 security sso

Last synced: 22 Apr 2025

https://github.com/rulilg/litic

JS library to perform technical SEO and best practices analysis to your projects.

accessibility best-practices security seo technical-seo web-development

Last synced: 13 Oct 2025

https://github.com/z3ntl3/ddos-denier

DDOS-Denier is a tool designed to evaluate incoming server attacks based on CPU load and automatically take countermeasures. Intended for Cloudflare websites.

api bot cloudflare ddos security

Last synced: 16 Aug 2025

https://github.com/mchackorg/gonts

Network Time Security in Go

go network ntp nts protocol security

Last synced: 16 Jan 2026

https://github.com/kolteq/validating-admission-policies-pss

Kubernetes Pod Security Standards implemented using Kubernetes Validating Admission Policies. Support of Enforce Baseline and Restricted profiles natively with configurable policy exclusions.

compliance kubeapt kubernetes pod-security pod-security-admission security validating-admission-policy

Last synced: 04 Feb 2026

https://github.com/hxsecurity/dongtai-core

Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.

applicationsecuritymonitoring devsecops django dongtai dongtai-iast security

Last synced: 26 Apr 2025

https://github.com/shinesolutions/aem-test-suite

AEM infrastructure test suite covering acceptance, recovery, security guideline testing scenarios

acceptance aem aem-opencloud performance recovery security testing

Last synced: 06 Mar 2026

https://github.com/cwshugg/gurthang

[Masters Thesis] A connection-multiplexing web server fuzzing harness for AFL++.

afl aflplusplus fuzzing networking security systems-programming

Last synced: 19 Apr 2025

https://github.com/alanvivona/microservices

Go Rest API with Google Auth + Nginx reverse proxy + Mysql

docker gdrive golang microservices mysql nginx security

Last synced: 03 Aug 2025

https://github.com/hahwul/buildpack-zap-daemon

zap(zed attack proxy) daemon mode buildpack of heroku

bugbounty hacking heroku-buildpack security zap

Last synced: 19 Apr 2025

https://github.com/guardicode/centra-py-client

A Python client for Guardicore Centra API access.

firewall python security segmentation

Last synced: 16 Jan 2026

https://github.com/tink-crypto/tink-java-awskms

Extension to Tink Java that provides AWS-KMS integration

aws-kms crypto cryptography java security

Last synced: 27 Jan 2026

https://github.com/bsm/httpx

Useful and opinionated helpers for building secure HTTP services

chi golang http internal security

Last synced: 28 Feb 2026

https://github.com/devops-ia/helm-openbas

Helm chart for Open Breach and Attack Simulation Platform

charts cyber cybersecurity helm intelligence kubernetes openbas osint security threat-intelligence

Last synced: 19 Apr 2025