An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/nckslvrmn/whisper

Simple service for one time secret (and file) sharing

aes-gcm-256 container cryptography docker encryption golang scrypt secret-management security

Last synced: 16 Mar 2026

https://github.com/stormsinbrewing/savvy-devsecops

GitHub native DevSecOps CI/CD best practices include automated security testing, code analysis, and policy enforcement using GitHub Actions, coupled with secure IaC and container security measures. This entails managing secrets, enforcing access control, and implementing incident response and monitoring, all while fostering continuous learning.

aws build codeql dependab devops devsecops docker github github-actions kubernetes nodejs renovate sast security

Last synced: 01 Jun 2026

https://github.com/0xjjpa/deniable-website

👀 deniable.website / An usage example of Web Cryptography API

cryptography security web

Last synced: 23 Feb 2026

https://github.com/elongl/ac

A game I researched, got arbitrary code execution on the game server.

code-execution exploitation security vulnerability

Last synced: 17 Oct 2025

https://github.com/arduino/arduino-cvd-policy

Coordinated Vulnerability Disclosure Policy

cvd-policy responsible-disclosure security

Last synced: 19 Oct 2025

https://github.com/radlab-dev-group/llm-router

LLM Router is a service that can be deployed on‑premises or in the cloud. It adds a layer between any application and the LLM provider. In real time it controls traffic, distributes a load among providers of a specific LLM, and enables analysis of outgoing requests from a security perspective (masking, anonymization, prohibited content).

automation cloud genai llm llm-balancing llm-gateway llm-gateway-system llm-router llm-router-models llm-router-plugins load-balancing local-llm local-llm-integration model-management on-prem pii prometheus rest-api security

Last synced: 14 May 2026

https://github.com/conijnio/aws-security-posture

Keep a historic overview of your compliance scores per workload

compliance security

Last synced: 05 Mar 2026

https://github.com/mauricelambert/entropyanalysis

This package analyzes file entropy (shannon entropy) for forensic and malware analysis.

cybersecurity disk-analysis entropy entropy-analysis file-analysis forensic malware-analysis security

Last synced: 04 Jun 2026

https://github.com/4thel00z/oneliners

Magic offsec/utility oneliners to make your red teaming/CTF/h4x0r life easier! 🤓

bash offsec oneline oneliner oneliners security sysadmin

Last synced: 30 Apr 2026

https://github.com/neocky/it-security-for-humans

:guard: IT Security Guidelines for Humans written in an understandable language with examples

cybersecurity it-security security security-tools system-administration zero-trust zero-trust-network

Last synced: 01 Mar 2026

https://github.com/appsechq/skill-scanner-test

Skill Scanner - An automated security scanning pipeline for AI agent SKILL.md and Agent plugins in popular public skills directories.

appsec security security-tools skills

Last synced: 04 Jun 2026

https://github.com/escoffier-labs/solos-cookbook

How one engineer runs a 24/7 multi-agent AI stack on bare metal. Opinionated. Dogfooded. Broken-and-fixed in production. Tested in service.

ai-agent best-practices devops hardening linux openclaw runbook security

Last synced: 11 Jun 2026

https://github.com/mablanco/docker-fgds

Docker image for Fast Google Dorks Scan (FGDS), a script to enumerate web-sites using Google dorks

docker osint pentesting security

Last synced: 02 Jun 2026

https://github.com/mablanco/docker-loki

Docker image for Loki, a Simple IOC Scanner

docker malware-detection security

Last synced: 02 Jun 2026

https://github.com/esc4icescesc/dmap

Distributed mapping of internet infrastructure

analytics collaboration rust rust-lang scanner security security-tools

Last synced: 04 Mar 2026

https://github.com/EricR/solanalyzer

SolAnalyzer is a static analyzer for the Solidity programming language, with a focus on finding security bugs.

ethereum security solidity static-analysis

Last synced: 21 Oct 2025

https://github.com/raj-tyagi/nmap-ip-scanner-gui

This repository hosts Python code for an advanced IP scanning tool with a user-friendly graphical interface. Built using the nmap library, it provides efficient network scanning options including Ping Scan, Quick Scan, and Intense Scan, making it ideal for network administrators and cybersecurity professionals.

ip-address nmap python security tkinter

Last synced: 02 Mar 2026

https://github.com/indspl0it/blue-tap

Blue-Tap is a comprehensive Bluetooth and BLE penetration testing toolkit designed specifically for security assessments of automotive In-Vehicle Infotainment (IVI) systems. It provides a complete attack lifecycle — from passive device discovery through active exploitation, data extraction, and automated report generation.

ble bluetooth fuzzing ivi pentesting security vulnerability-research

Last synced: 17 Apr 2026

https://github.com/bootstrapsp/miu

Developing with Hyperledger Indy made easy.

blockchain-technology golang grpc-python hyperledger-indy iot-application security

Last synced: 04 Apr 2026

https://github.com/bad-antics/n01d-machine

🔒 n01d Machine - Secure Cross-Platform Virtual Machine Manager with Sandboxing, Tor, VPN & Network Isolation

privacy qemu rust sandbox security tauri tor virtualization vm vpn

Last synced: 08 Feb 2026

https://github.com/martinpankraz/sap-hacker-in-a-day

Content supporting the DSAG workshop "SAP hacker in a day" 3rd December 2024

azure entra-id hands-on-lab identity mfa-bypass red-teaming sap sap-hack security

Last synced: 19 Apr 2026

https://github.com/mrcrunchybeans/youth-secure-checkin

A secure, flexible check-in/check-out system for youth organizations including Trail Life, scouting groups, churches, schools, and community programs. Features family management, event tracking, QR code checkout, label printing, and comprehensive security controls.

check-in-out ministry security

Last synced: 12 Feb 2026

https://github.com/marc-shade/fraud-detection-mcp

Advanced fraud detection MCP server with behavioral biometrics, real-time anomaly detection, and explainable AI for comprehensive fraud prevention

anthropic behavioral-biometrics claude fraud-detection fraud-prevention fraudulent-transactions mcp model-context-protocol security

Last synced: 05 Apr 2026

https://github.com/rockballslab/vps-secure

🛡️ Sécurise ton VPS en 15 min - honeypot, pare-feu, IPS, integrity monitoring. Une commande. Zéro compétence requise. 🚀⚡

aide auditd bash cis-benchmark crowdsec devops docker endlessh hardening homelab linux rkhunter security selfhosted server-security stig sysadmin ubuntu vps vps-hardening

Last synced: 11 May 2026

https://github.com/fabianferno/the-riot-protocol

It offers device authentication, data encryption, decentralized key generation, and blockchain-based authentication for secure and reliable communication between devices and users.

arduino blockchain cryptography data gateway iot security solidity university-project

Last synced: 18 Jan 2026

https://github.com/craftycram/richtigpferd

password generator using German words to create secure passwords

generator password security

Last synced: 05 Feb 2026

https://github.com/byxor/passflip

Lightweight password manager that doesn't store anything

password-manager python3 security

Last synced: 24 Oct 2025

https://github.com/darkstarbdx/cryptid2

Cryptid2 🐍💻 is a Python tool for educational HTTP/UDP flood attacks. It tests server/network resilience, aiding ethical hackers in security assessments. Customizable threads, attack durations, and targets make it ideal for controlled tests. Compatible with Linux/Termux.

ddos ethical-hacking security security-tools

Last synced: 30 Oct 2025

https://github.com/chitinhq/shellforge

🔥 Forge local AI agents. Governed. Private. Unstoppable. — Ollama + AgentGuard + OpenShell + DefenseClaw

agentguard agentic-ai ai-agents apple-silicon defenseclaw governance local-llm ollama openshell security

Last synced: 19 Apr 2026

https://github.com/vladlen-codes/llm-security-toolkit

Python library that sits between your app and the LLM client, adding security checks around every model call.

ai ai-security llm-inference security

Last synced: 04 Apr 2026

https://github.com/keywaysh/cli

Keyway CLI - Sync secrets with your team and infra

cli devtools secrets-management security

Last synced: 17 Mar 2026

https://github.com/kumarvna/terraform-azurerm-security-center

Terraform module to create Azure Security Center resources for Azure Landing Zones

azure azure-security azure-security-center security terraform terraform-module

Last synced: 24 Oct 2025

https://github.com/fabianfrz/icaprb-server

An implementation of the ICAP server part in pure Ruby

content-adaptation icap icap-server proxy ruby security server

Last synced: 26 Oct 2025

https://github.com/nemisolv/spring-ecommerce-microservices

This repository showcases Spring Boot microservices for eCommerce, each handling tasks like user authentication/authorization, product management, and order processing within a cohesive distributed architecture, ensuring scalability and efficiency.

distributed-system-architecture ecommerce java load-balancing microservices scalability security spring-cloud-gateway springboot springboot-microservices

Last synced: 28 Feb 2026

https://github.com/msdousti/owasp-java

A seriously flawed Java project for teaching "OWASP Top 10 - 2017" concepts.

css intellij-idea java javascript jsp maven mysql owasp-top-10 payara-server security servlet web

Last synced: 07 Oct 2025

https://github.com/v-checha/openiframe

Build Iframe. Ignore X-Frame-Options, Content-Security-Policy, X-Content-Type-Options, X-Xss-Protection etc.

content-security-policy iframe iframe-api protection security security-policy x-content-security-policy x-content-type-options x-frame-options

Last synced: 13 Oct 2025

https://github.com/bootique/bootique-shiro

Provides Apache Shiro integration with Bootique.

bootique java security shiro

Last synced: 19 Oct 2025

https://github.com/retr0kr0dy/malloc-bomb

Presenting the latest Linux bomb exploit: not a fork but a malloc-based threat. Delve into the intricacies of this novel vulnerability.

coding cybersecurity denial-of-service dos exploit forkbomb hacking infosec linux malloc pentesting security system-exploitation vulnerability

Last synced: 18 Jun 2026

https://github.com/basis-theory-labs/vgs-migration-guide

Migration Guide to move from Very Good Security to Basis Theory

guide migration security tokenization

Last synced: 04 Mar 2026

https://github.com/aegisjsproject/component

Base component using `@shgysk8zer0/aegis` & `@shgysk8zer0/aegis-styles`

aegis constructable-stylesheets custom-elements sanitizer-api security web-components

Last synced: 23 Oct 2025

https://github.com/shaneutt/podtunnel

Secure Tunnels For Kubernetes Pods

kubernetes networking security

Last synced: 16 Mar 2026

https://github.com/tink-crypto/tink-java-awskms

Extension to Tink Java that provides AWS-KMS integration

aws-kms crypto cryptography java security

Last synced: 27 Jan 2026

https://github.com/hammackj/kekkan

Kekkan is a parser for NIST Version 2 CVE and CPE XML files.

nvd2 ruby security xml-parser

Last synced: 17 Mar 2026

https://github.com/authress/authress-sdk.rs

The Authress SDK for Rust provides authorization as a service with fully compatible REST apis.

api authentication authentication-middleware authorization authorization-framework authorization-server credentials keys security user-identity user-management

Last synced: 13 May 2025

https://github.com/rootsami/ratkiez

A CLI tool to rat on all AWS keys with creation date, last used date, and attached policies.

aws awscli keys scan security

Last synced: 01 Aug 2025

https://github.com/thomasleveil/doco-maltrail

docker-compose project for running maltrail

docker-compose maltrail malware network-monitoring security

Last synced: 01 Aug 2025

https://github.com/JerryLinLinLin/Huorong-HIPS-Rule-Schema

The project includes two json schemas of Huorong Host-based Intrusion Prevention System (HIPS) custom rule files (json). They can be used to validate Huorong HIPS rules and speed up editing.

anti-malware antivirus antivirus-software hips huorong security security-tools

Last synced: 11 Jul 2025

https://github.com/rhayes2/cryptboard

Image Steganography made Simple

android encryption security steganography

Last synced: 22 Apr 2025

https://github.com/andrea11/openv

openv a tool to automatically load secrets from .env files using 1password CLI under the hood

1password secrets security

Last synced: 08 Aug 2025

https://github.com/eaceto/flutter_local_authentication

A flutter plugin that allows access to Local Authentication / Biometrics on iOS, macOS, Linux and Android (Windows Hello is a work in progress).

android biometric biometric-authentication biometric-identification dart fingerprint flutter ios local-authentication macos password plugin security

Last synced: 22 Aug 2025

https://github.com/LeKlex/Attack-simulation-infrastructure

A small and simple network infrastructure with automated attacks on a VM server documented by tshark

bruteforce forensic hacking network nmap nmap-scripts port-scanner reverse-shell security shell-script sql-injection telnet tshark ubuntu vagrant virtualbox

Last synced: 12 Jul 2025

https://github.com/hahwul/buildpack-zap-daemon

zap(zed attack proxy) daemon mode buildpack of heroku

bugbounty hacking heroku-buildpack security zap

Last synced: 19 Apr 2025

https://github.com/bloclabshq/auth-pack

Comprehensive Python authentication package bridging Web2 and Web3 for Django REST Framework

authentication django drf ethereum jwt kdf oauth passkeys python rest-api security totp web3 webauthn

Last synced: 24 Apr 2026

https://github.com/gqzdev/spring-boot-start

🍀🍀🍀逐步入门Spring Boot的使用,😊集成各种应用模块组件

activemq docker dubbo elasticsearch mybatis mybatis-plus rabbitmq redis schedule security spring-boot websocket zookeeper

Last synced: 08 May 2025

https://github.com/coding-hui/iam

IAM - Identity and access management system, cloud native friendly, multiple authentication methods

cloud gin golang iam oauth2 security

Last synced: 12 Apr 2025

https://github.com/clj-holmes/clj-holmes-action

Action to execute clj-holmes in Clojure/Clojurescript projects.

clojure code-scanning sast security

Last synced: 03 Jul 2026

https://github.com/armeggaddon/py2cy

A package to convert Python code to Cython for Security and Obfuscation

anti-reverse-engineering cython cythonize encryption obfuscation secure-code security software-protection

Last synced: 09 Apr 2026

https://github.com/nigelhorne/sniff2ban

Dynamically change firewall

ban-hosts firewall security

Last synced: 08 May 2025

https://github.com/guardrailsio/docker-security-checker

Dockerized version of security-checker

devsecops php security security-tools

Last synced: 19 Apr 2025

https://github.com/chrisamanse/Codegen

An open source one-time password generator for iOS.

authentication authenticator cryptography generator hmac ios one-time-passwords qrcode security swift

Last synced: 22 Jul 2025

https://github.com/dcoles/gitlab-cargo-audit

Use cargo-audit to generate a GitLab Dependency report

gitlab gitlab-ci rust security

Last synced: 21 Mar 2025

https://github.com/reconmap/command-line-tools

Reconmap CLI and agent command line tools

cli golang hacking hacktoberfest pentesting security

Last synced: 28 Apr 2025

https://github.com/austinheap/wordpress-security-txt

A plugin for serving `security.txt` in WordPress 4.9+, based on configuration settings. https://securitytext.org/

beta php php7 php70 php71 php72 security security-txt wordpress wordpress-plugin wordpress49 wordpress5

Last synced: 03 Oct 2025

https://github.com/jonzeolla/lab-securitydataanalysis

An introductory lab to Security Data Analysis (using Apache Metron (incubating)).

apache-metron data-analysis lab metron security

Last synced: 03 Jul 2025

https://github.com/e3prom/kryptoxin

A security-oriented payload encryption tool written in Python.

aes cryptography encryption encryptor penetration-testing pentesting programming red-team security

Last synced: 13 May 2025

https://github.com/monke443/CVE-2023-40028

Arbitrary file read in Ghost-CMS allows an attacker to upload a malicious ZIP file with a symlink.

cve cve-2023-40028 exploit ghost-cms github pentesting security vulnerability

Last synced: 30 Aug 2025

https://github.com/travisty-/pscloudbleed

Cross references sites with a list of domains possibly affected by the 2017 "CloudBleed" HTTPS traffic leak.

cloudbleed cloudflare https powershell security

Last synced: 22 Jun 2025

https://github.com/cpulvermacher/secret-scanner

Browser extension to scan web pages for API keys or passwords

browser-extension chrome-extension firefox-extension secret security security-tools web-development

Last synced: 17 May 2026

https://github.com/douganger/flask-ipfilter

A simple Flask extension to limit access to a site to certain IP addresses.

flask heroku python3 security

Last synced: 12 Apr 2025

https://github.com/vdlp/oc-hashids-plugin

Allows developers to use secure hashed ID's in October CMS powered websites.

hashids hashing laravel october-cms octobercms octobercms-plugin php security

Last synced: 12 Apr 2025

https://github.com/dryewo/fahrscheine-bitte

Clojure library for checking OAuth2 access tokens

access-token api clojure compojure oauth2 security swagger1st

Last synced: 22 Apr 2025

https://github.com/doucol/clyde

Project Calico Observability Tools

calico k8s kubernetes networking observability projectcalico security tigera

Last synced: 02 Feb 2026

https://github.com/grantseltzer/prism

Container based binary analysis tool

binary-analysis containers prism security snapshot

Last synced: 15 Feb 2026

https://github.com/netflix-skunkworks/swag-functions

Lambda functions for SWAG management

security

Last synced: 28 Jul 2025

https://github.com/circl/odfcleaner

Python module to cleanup ODF files.

cleanup-odf-files odf odfcleaner security

Last synced: 07 Mar 2026

https://github.com/kghandour/kgpassgen

Generate passwords using different algorithms. https://kghandour.github.io/KGPassGen

password-generator security

Last synced: 14 Apr 2025

https://github.com/j4n-e4t/deletr

Delete your online accounts with one click!

account-management hacktoberfest help-wanted privacy security

Last synced: 17 Jul 2025