An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/llllllxy/tiny-security

一个基于token验证的Java Web权限控制框架,支持redis、jdbc和单机session多种存储方式,前后端分离项目、不分离项目均可使用,功能完善、使用简单、文档清晰,易于扩展。

authorization java security session-management springboot token

Last synced: 21 Jul 2025

https://github.com/webmd-health-services/carbon.cryptography

Cross-platform PowerShell module that makes encrypting and decrypting strings (using standard cryptographic algorithms) and managing certificates easy.

aes-crypto aes-encryption certificates cryptography dpapi powershell powershell-core powershell-module rsa-cryptography rsa-encryption securestring security x509 x509certificates

Last synced: 15 Oct 2025

https://github.com/checkpointsw/sourceguard-action

SourceGuard is designed to leverage Check Point's varied prevention technologies and services, providing source-code security and visibility. With a simple, cross-platform CLI tool users can customize exclusions and control an ignore list with easy integration into any pipeline.

code-quality compliance oss security source-code

Last synced: 08 Mar 2026

https://github.com/yoozzeek/actix-csrf-middleware

CSRF protection middleware for Actix Web. Supports double submit cookie and synchronizer token patterns (with actix-session).

actix actix-web csrf csrf-protection middleware rust security web

Last synced: 30 May 2026

https://github.com/aguslr/bluerock

A Fedora Silverblue image that has been hardened for extra security

fedora fedora-silverblue oci ostree security

Last synced: 01 Sep 2025

https://github.com/readyyyk/chapy

Messaging service with anonymous access and decentralized data storage. To join chat chat just enter a valid link with the chat id

chapy chat chatting confidence hacktoberfest material-ui reactjs security websocket

Last synced: 04 Oct 2025

https://github.com/atao/shodan2db

🔌 Shodan export to SQLite database and generate an HTML report.

analysis converter cve export osint python-class python3 report reporting security shodan shodan-python sqlite vulnerability

Last synced: 10 Jun 2025

https://github.com/sgofferj/sipblocklist

List of IP addresses which attacked my SIP IP PBX in the last 30 days

blocklist blocklist-data firewall-rules security

Last synced: 09 Mar 2026

https://github.com/plabick/actions-secret-decoder

Decode secrets extracted with the GitHub Secret Extractor action

github-actions secrets security

Last synced: 31 Jul 2025

https://github.com/grantseltzer/prism

Container based binary analysis tool

binary-analysis containers prism security snapshot

Last synced: 15 Feb 2026

https://github.com/devops-ia/helm-openbas

Helm chart for Open Breach and Attack Simulation Platform

charts cyber cybersecurity helm intelligence kubernetes openbas osint security threat-intelligence

Last synced: 19 Apr 2025

https://github.com/bloclabshq/auth-pack

Comprehensive Python authentication package bridging Web2 and Web3 for Django REST Framework

authentication django drf ethereum jwt kdf oauth passkeys python rest-api security totp web3 webauthn

Last synced: 24 Apr 2026

https://github.com/ph-7/honeypots

:honeybee: Examples of Honeypots to create the fake admin panels :honey_pot: This honeypot can help to understand and improve the security problems of your website or web app. There is an example of fake admin area for standalone and another honeypot fake admin login page for Joomla! CMS

admin fake fake-admin-panel honeypot honeypot-fake-admin joomla security

Last synced: 13 May 2025

https://github.com/the-viper-one/invoke-vncauth

PowerShell script to enumerate for and identify VNC servers that do not require authentication. Supports Active Directory target acquisition and CIDR notations.

hacking powershell security vnc

Last synced: 16 Mar 2026

https://github.com/oracle-quickstart/terraform-oci-networking

Terraform module to Quickstart deploy network resources on OCI and to be reused by other projects

firewall networking oci oracle-cloud-infrastructure remote-peering security terraform terraform-module terraform-modules vcn virtual-cloud-network

Last synced: 13 Apr 2025

https://github.com/0x48piraj/barely-windows

Barely Windows is a user-friendly web-based GUI editor that enhances your Windows experience. Easily remove pre-installed apps, disable telemetry, and eliminate Bing from search. Boost gaming performance with FPS optimization. Compatible with Windows 10 and 11, it helps you declutter and optimize your system in just a few clicks.

bloatware-removal debloat debloater fps gaming open-source performance privacy security tweaks webapp windows windows-10 windows-11 windows-debloat

Last synced: 15 Apr 2025

https://github.com/algosup/2023-2024-project-4-sportshield-team-7

🛡️🔐 This is our take on the SportShield project, aiming to help better secure sports gear all around the world!

arduino bluetooth-low-energy c embedded gps iot motion-sensor security

Last synced: 22 Jul 2025

https://github.com/europa502/digitaldocumentsigners

This repo contains pkcs 11 and pkcs 12 java digital signers

applet digitalsignature java javascript pdf-generation pkcs11 pkcs12 security

Last synced: 14 Jul 2025

https://github.com/jonzeolla/lab-securitydataanalysis

An introductory lab to Security Data Analysis (using Apache Metron (incubating)).

apache-metron data-analysis lab metron security

Last synced: 03 Jul 2025

https://github.com/Popsiclestick/falco-filebeat-daemonset

Easily deployable daemonset which moves logs from falco with filebeat.

containers daemonset falco filebeat kubernetes security

Last synced: 12 May 2025

https://github.com/computer-lab/ctf

Computer Lab CTF

ctf hacking security wargame

Last synced: 11 Mar 2025

https://github.com/biffalo/bettersecdefaults

An interactive powershell script for Azure/Entra. Creates a set of conditional access policies that will provide improved security over Microsoft's "Security Defaults". This script is primarily for less mature orgs that are perhaps still using Microsofts "Security Defaults" or only have very basic conditional access policies in place.

azure conditional-access entra-id identity-management powershell security

Last synced: 10 Apr 2025

https://github.com/austinheap/wordpress-security-txt

A plugin for serving `security.txt` in WordPress 4.9+, based on configuration settings. https://securitytext.org/

beta php php7 php70 php71 php72 security security-txt wordpress wordpress-plugin wordpress49 wordpress5

Last synced: 03 Oct 2025

https://github.com/iitis/autopolicy

Autopolicy proof of concept

ddos firewall iot security

Last synced: 19 Apr 2025

https://github.com/azure/vscode-osconfig

This extension provides a rich authoring experience for Azure Device OS Configuration documents.

azure azure-iot azure-osconfig desired-state-configuration edge-security security vscode vscode-extension

Last synced: 04 Sep 2025

https://github.com/jaayperez/keysoft

Crypto Js secure, dynamic password creator application that uses cryptographic algorithms with Node.js, Express 4, and Heroku cloud deployment.

crypto cryptographic-algorithms expressjs generator heroku nodejs password password-generator random-password security tool tools

Last synced: 23 Mar 2025

https://github.com/sjinks/php-disable-eval

Disable eval() and create_function() in PHP

eval php php-extension security

Last synced: 10 Apr 2025

https://github.com/kabragaurav/whaling-phishing

A demo of whaling attack in computer networks

cns networks phishing security whaling

Last synced: 02 Jan 2026

https://github.com/lirantal/serverless-goof-azure

Oreilly's Serverless security example application - serverless-goof todo app

owasp security serverless snyk

Last synced: 23 Apr 2025

https://github.com/dcoles/gitlab-cargo-audit

Use cargo-audit to generate a GitLab Dependency report

gitlab gitlab-ci rust security

Last synced: 21 Mar 2025

https://github.com/d4rklynk/simpleprivacy.fr

Voici mon site web. Il est dédié à regagner sa vie privée sur Internet, compréhensible pour les personnes qui n'ont pas de connaissances en informatique.

hugo privacy security

Last synced: 24 Apr 2025

https://github.com/sjinks/tiny-ssh-honeypot

Single-threaded event-driven low-interaction SSH honeypot based on libassh

honeypot security ssh ssh-honeypot

Last synced: 17 Sep 2025

https://github.com/zapalm/auto-indexer

PHP auto indexer: the tool against directory traversal security vulnerability. It recursively adds a index.php file in all given directories.

cli-utility directory-traversal-vulnerability hacktoberfest php-library security vulnerability

Last synced: 24 Apr 2025

https://github.com/sysdiglabs/dockerfile-benchmarker

CIS Docker Benchmark for dockerfiles

cis docker dockerfile image security

Last synced: 09 Aug 2025

https://github.com/andrea11/openv

openv a tool to automatically load secrets from .env files using 1password CLI under the hood

1password secrets security

Last synced: 08 Aug 2025

https://github.com/justincpresley/ndn-hydra

ndn-hydra: A Python-coded NDN distributed repository with five focused attributes: resiliency, scalability, usability, efficiency, and security.

data-centric distributed distributed-database distributed-systems files filesystem hydra information-centric-network named-data-networking ndn-hydra network networking noc python python3 repository resilience resiliency security

Last synced: 16 Jan 2026

https://github.com/geeklearningio/bouncer

Highly Configurable Authorization Model

acl aspnet-core authorization dotnet dotnet-core security

Last synced: 28 Apr 2025

https://github.com/damienbod/wpfazureadsharepointonlinegraphapi

WPF Azure AD signin with Sharepoint Online API call using Graph API

azure azuread graph graph-api identity msal security sharepoint sharepoint-online wpf

Last synced: 03 Aug 2025

https://github.com/nwestfall/netsparkerscanrunner

Quickly and easily a Netsparker Scan using your Netsparker Cloud Account

netsparker node scan security

Last synced: 14 Apr 2025

https://github.com/kghandour/kgpassgen

Generate passwords using different algorithms. https://kghandour.github.io/KGPassGen

password-generator security

Last synced: 14 Apr 2025

https://github.com/johnshajiang/pyssldemo

Simple demonstrations on Python ssl module

certificate python security ssl tls

Last synced: 02 Jul 2025

https://github.com/root-tanishq/pscrap

multi processed parameter scrapper

bugbounty hacking pentesting python scrapping security web

Last synced: 14 Apr 2025

https://github.com/greycloudss/sabaton

Sabaton is a WIP offline password cracker and wordlist engine in C. It generates exhaustive keyspaces and evaluates them against mainstream hash functions via a simple API. Built for air-gapped environments and high-throughput use, with a roadmap including CLI, multithreading, streaming mode, and GPU acceleration.

armourer c cracking cryptography security

Last synced: 07 Oct 2025

https://github.com/reconmap/php-command-output-parsers

Parsers for many security command outputs in the form of a PHP library

commands hacktoberfest nessus nmap parser qualys security tools

Last synced: 11 Jun 2025

https://github.com/rhayes2/cryptboard

Image Steganography made Simple

android encryption security steganography

Last synced: 22 Apr 2025

https://github.com/douganger/flask-ipfilter

A simple Flask extension to limit access to a site to certain IP addresses.

flask heroku python3 security

Last synced: 12 Apr 2025

https://github.com/naemazam/advance-password-strength-checker

Create a password strength checker with javascript to check how strong and secure your password is.

html-css-javascript jsvascript naemazam password password-cracker password-safety password-strength security

Last synced: 19 Mar 2026

https://github.com/airlock/microgateway-running-example

Running example of Airlock Microgateway, a Kubernetes-native WAAP (Web Application and API Protection) solution

airock devops ergon gateway-api k8s kubernetes microgateway oidc openapi security waap waf

Last synced: 22 Apr 2025

https://github.com/flaviostutz/sipwall

Analyses SIP network traffic and blocks hosts that are suspicious in iptables. Can block IPs by country or by SIP responses

allowed-countries asterisk ban block iptables security sip sip-firewall sip-responses

Last synced: 23 Apr 2025

https://github.com/moolen/secco

:shield: auto-generate seccomp profiles for Kubernetes

ebpf kubernetes seccomp security

Last synced: 04 Feb 2026

https://github.com/turbot/flowpipe-mod-github

GitHub pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect GitHub to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod github github-api hacktoberfest integrations low-code orchestration pipelines security workflow workflow-automation workflow-engine

Last synced: 22 Apr 2025

https://github.com/travisty-/pscloudbleed

Cross references sites with a list of domains possibly affected by the 2017 "CloudBleed" HTTPS traffic leak.

cloudbleed cloudflare https powershell security

Last synced: 22 Jun 2025

https://github.com/pandarudra/ecrypto

Secure folder encryption with modern cryptography (XChaCha20-Poly1305 + Argon2id)

cli clitool decryption ecrypto encryption go golang security

Last synced: 21 Jan 2026

https://github.com/levicook/arch-valops

🏗️ Infrastructure-as-Code toolkit for secure Arch Network validator operations with hybrid development architecture and comprehensive monitoring dashboard

arch-network blockchain devops infrastructure-as-code monitoring security validator

Last synced: 11 Oct 2025

https://github.com/dryewo/fahrscheine-bitte

Clojure library for checking OAuth2 access tokens

access-token api clojure compojure oauth2 security swagger1st

Last synced: 22 Apr 2025

https://github.com/marc2332/securityapp-ui-idea

A UI idea for a security/cleaner app

design idea kotlin security ui

Last synced: 02 May 2026

https://github.com/retr0kr0dy/malloc-bomb

Presenting the latest Linux bomb exploit: not a fork but a malloc-based threat. Delve into the intricacies of this novel vulnerability.

coding cybersecurity denial-of-service dos exploit forkbomb hacking infosec linux malloc pentesting security system-exploitation vulnerability

Last synced: 18 Jun 2026

https://github.com/marcbperez/c-programming-security

C programming examples that cover basic operations and security exploits.

c docker gradle security

Last synced: 29 Apr 2026

https://github.com/bootstrapsp/miu

Developing with Hyperledger Indy made easy.

blockchain-technology golang grpc-python hyperledger-indy iot-application security

Last synced: 04 Apr 2026

https://github.com/4thel00z/oneliners

Magic offsec/utility oneliners to make your red teaming/CTF/h4x0r life easier! 🤓

bash offsec oneline oneliner oneliners security sysadmin

Last synced: 30 Apr 2026

https://github.com/discourse/ruby-landlock

Landlock bindings for Ruby

landlock linux sandbox security

Last synced: 25 Jun 2026

https://github.com/cyb3rko/matrix-guardian

A friendly, lightweight Matrix bot for protecting the people

docker go golang guardian matrix security

Last synced: 17 Apr 2026

https://github.com/aminfazlmondo/axios-error-redact

Library to redact sensitive information from Axios errors

axios error-handling hacktoberfest interceptor javascript nodejs projen redact security sensitive

Last synced: 26 Jun 2026

https://github.com/indspl0it/blue-tap

Blue-Tap is a comprehensive Bluetooth and BLE penetration testing toolkit designed specifically for security assessments of automotive In-Vehicle Infotainment (IVI) systems. It provides a complete attack lifecycle — from passive device discovery through active exploitation, data extraction, and automated report generation.

ble bluetooth fuzzing ivi pentesting security vulnerability-research

Last synced: 17 Apr 2026

https://github.com/petritbahtiri123/leakguard

Local-only Chrome extension that detects and redacts secrets before prompts are sent to AI chat tools.

ai browser-extension chatgpt chrome-extension dlp infosec privacy redaction security

Last synced: 10 May 2026

https://github.com/jojiiofficial/triplink

Listens for incoming port scans and reports the IPs to the ScanBanServer

cronjob filter ipset iptables security security-automation security-tools triplink

Last synced: 12 May 2026

https://github.com/martinpankraz/sap-hacker-in-a-day

Content supporting the DSAG workshop "SAP hacker in a day" 3rd December 2024

azure entra-id hands-on-lab identity mfa-bypass red-teaming sap sap-hack security

Last synced: 19 Apr 2026

https://github.com/escoffier-labs/solos-cookbook

How one engineer runs a 24/7 multi-agent AI stack on bare metal. Opinionated. Dogfooded. Broken-and-fixed in production. Tested in service.

ai-agent best-practices devops hardening linux openclaw runbook security

Last synced: 11 Jun 2026

https://github.com/ralish/certuiexts

A library which extends Windows cryptography support for displaying additional OIDs and associated certificate extensions

certificates security windows x509

Last synced: 07 May 2026

https://github.com/surelle-ha/vindicter

Vindicter is a local-first security workspace for scanning projects, tracking vulnerability findings, and exporting security review reports. The desktop app stores project state in each project folder, reads the local codebase, and uses the Codex CLI for read-only security analysis.

security

Last synced: 16 Jun 2026

https://github.com/nemisolv/spring-ecommerce-microservices

This repository showcases Spring Boot microservices for eCommerce, each handling tasks like user authentication/authorization, product management, and order processing within a cohesive distributed architecture, ensuring scalability and efficiency.

distributed-system-architecture ecommerce java load-balancing microservices scalability security spring-cloud-gateway springboot springboot-microservices

Last synced: 28 Feb 2026

https://github.com/celenityy/better-vanadium

My recommendations for the ultimate configuration of the Vanadium web browser to maximize privacy, security, and usability. :)

ads android android-application anti-fingerprinting anti-tracking aosp aosp-android chromium chromium-browser divested grapheneos hardened hardening mulch privacy privacy-protection security security-hardening tracking vanadium

Last synced: 04 Aug 2025

https://github.com/robertdebock/ansible-role-spamassassin

Install and configure spamassassin on your system.

ansible installer molecule package playbook security spamassassin tox

Last synced: 24 Apr 2025

https://github.com/tigera-solutions/azure-virtual-wan-calico-networking

[Azure Blueprint] Learn how to deploy Azure Managed Hub-Spoke using Virtual WAN and Calico Networking

aks azure egress-filtering egress-gateway security

Last synced: 13 Apr 2025

https://github.com/severityc/discord-2fa-receiver

This script receives Discord 2FA codes and outputs it via terminal. It refreshes the available codes for people to use for their Discord account.

2024 2fa 2fa-bypass 2fa-client-python 2fa-codes 2fa-receiver 2fabypass 2factor beta codes cybersecurity discord discord-2fa discord-script online-safety python safety security topt

Last synced: 09 Apr 2025

https://github.com/felixdes/java-dop-example

Simple example of fine access implemented with new Java DOP paradigm

dop gradle java security spring-boot

Last synced: 06 Jul 2025

https://github.com/erbsland-dev/fast-file-encryption

Fast, secure, and minimal file encryption for large files using RSA and AES.

asymetric-cryptography decryption encryption large-files security signature verification

Last synced: 14 Jan 2026

https://github.com/e-zk/page

password manager using age for encryption

age encryption go password-manager secrets security

Last synced: 14 Jan 2026

https://github.com/gensecaihq/kubekavach

Developer-first K8s security scanner with instant pod replay. Debug prod issues locally in seconds. AI-powered explanations. CERT-IN compliant for Indian orgs.

cert-in container cybersecurity india kubernetes kubernetes-cluster security

Last synced: 09 Oct 2025

https://github.com/wikid82/charon

A lightweight, user-friendly web interface for managing Caddy as a reverse proxy. It simplifies SSL management and host routing for self-hosters who want the power of Caddy without the manual configuration.

caddy crowdsec docker docker-compose homelab proxy-manager reverse-proxy security self-hosted sso tailscale waf web-ui

Last synced: 02 May 2026

https://github.com/practicalparticle/sandblox

**EXPERIMENTAL SOFTWARE** SandBlox: A secure blockchain development platform using pre-built components called Blox & Particle's State Abstraction. Build dApps quickly and safely with React & TypeScript.

account-abstraction blockchain security smart-contracts web3

Last synced: 10 Oct 2025