An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/joxit/dns-server

Block ads and malwares at DNS level with your private DNS Server

dns dns-over-https dns-over-tls dns-server privacy rust rust-lang security security-tools

Last synced: 14 May 2026

https://github.com/fiware/tutorials.xacml-access-rules

:closed_book: FIWARE 405: Ruleset Based Permissions

access-control authzforce fiware pdp security tutorial xacml xacml-policies

Last synced: 30 Apr 2025

https://github.com/opcod3r/godan

Shodan tool subdomains with rotation keys.. 🎩

bugbounty bugbounty-tool golang pentest recon security shodan subdomains

Last synced: 18 Jun 2025

https://github.com/toolisticon/kalilinux

Prepared Kali Docker Image with kalilinux-full preinstalled

express kali kali-linux security

Last synced: 28 Oct 2025

https://github.com/mfreeman451/trivy-streamlit

A streamlit-based app for trivy scanner results 🔒

k8s scanner security streamlit-application trivy

Last synced: 23 Oct 2025

https://github.com/mohab-sameh/anomaly-based-ids-workbench

The ultimate workbench for research & development of AI-powered anomaly-based Intrusion Detection Systems (IDS)

deep-learning intrusion-detection intrusion-detection-system machine-learning security

Last synced: 08 Sep 2025

https://github.com/emilkrebs/watchlock

WatchLock: Lock your phone using your watch

android kotlin kotlin-android security wearos

Last synced: 26 Mar 2025

https://github.com/xxczaki/ing-autofill

[Works in 2024] Make password managers autofill work on the ING bank's website.

1password autofill bitwarden browser-extension chrome chrome-extension ing ing-bank masked-password password-manager security

Last synced: 11 Apr 2025

https://github.com/fdekeers/iot-firewall

Dynamic IoT firewall, based on nftables

firewall iot nftables security

Last synced: 19 Mar 2025

https://github.com/el-abdel/abelkeycloakbeareronlyadapterbundle

[Symfony Bundle]: Keycloak security adapter for bearer-only clients

api authentication hacktoberfest keycloak oauth security symfony symfony-bundle

Last synced: 30 Apr 2025

https://github.com/anderseknert/opa-sign-verify

Demo of OPA bundle signature creation and verification

bundle-signing bundle-verification bundles opa open-policy-agent security

Last synced: 07 Sep 2025

https://github.com/JerryLinLinLin/Huorong-HIPS-Rule-Schema

The project includes two json schemas of Huorong Host-based Intrusion Prevention System (HIPS) custom rule files (json). They can be used to validate Huorong HIPS rules and speed up editing.

anti-malware antivirus antivirus-software hips huorong security security-tools

Last synced: 11 Jul 2025

https://github.com/thetallprogrammer/password-manager

Falkenberg's Password Manager is a secure, offline tool for managing and storing passwords locally. With strong encryption and customizable password generation, it ensures your data remains private and protected.

cpp cyber-security cybersecurity data-encryption gui-application local-storage offline-password-manager password-generator password-generator-cpp password-management password-manager password-security privacy qt qtcreator security software-security

Last synced: 29 Oct 2025

https://github.com/abdullahkhawer/find-and-report-secrets-in-code

Security solution to find secrets in a git repository and report about them. It uses Gitleaks and some custom scripts to generate a JSON report for secrets found with only relevant information along with commit ids and commit authors. It can be used to update an Atlassian Confluence page and send an alert on Slack based on the findings.

atlassian-confluence bash confluence docker git github github-actions gitlab gitlab-ci gitleaks json linux macos python python3 secrets secrets-detection security shell slack

Last synced: 29 Oct 2025

https://github.com/chizhg/secureim

A secure Instant Message System.

python security socket

Last synced: 04 Apr 2025

https://github.com/hashgraph-online/hol-codex-plugin-scanner-action

Legacy compatibility GitHub Action slug for AI Plugin Scanner

codex github-action marketplace scanner security

Last synced: 17 Jun 2026

https://github.com/tegridydev/multi-agent-secops-llm

This project is a multi-agent security framework that utilizes multiple LLM models to analyze and generate comprehensive security briefs.

ai llm local localllm ollama secops security

Last synced: 11 Jul 2025

https://github.com/makenowjust-labs/memo-regex

ReDoS-less Regex Implementation Using Memoization

redos regex regexp security

Last synced: 10 Apr 2025

https://github.com/turbot/steampipe-mod-oci-compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS across all of your Oracle Cloud Infrastructure accounts using Powerpipe and Steampipe.

cis cis-benchmark compliance hacktoberfest oci oracle-cloud oracle-cloud-infrastructure powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 06 Mar 2026

https://github.com/declan94/secret-share

A secret sharing tool based on Shamir's Secret Sharing algorithm implemented with pure Golang

golang secure secure-sharing security security-tools

Last synced: 17 Jan 2026

https://github.com/volkansah/ransy-edu

This JavaScript code provides a simplified example of a ransomware attack and its underlying techniques. It is intended for educational and ethical hacking purposes only, and should not be used for any illegal or unethical activities. It is important to always abide by the law and use technology responsibly and ethically to promote positive outcome

cybersecurity-education example-code malware offensive-security ransomeware-javascript ransomware ransomware-detection ransomware-prevention ransomware-source-code ransomware-summary redteam-tools security security-tools

Last synced: 02 Sep 2025

https://github.com/f5devcentral/f5-agility-labs-ddos

F5 Agility Labs for Distributed Denial of Service Protection Use Cases

ddos-protection documentation f5-afm f5-agility-labs f5-asm f5-ltm security training-labs

Last synced: 11 Apr 2025

https://github.com/vizzdoom/infosec-coffee

Infosec Coffee is a deliberately vulnerable web application to better understand interesting security flaws.

css html5 infosec javascript learning-by-doing mysql php7 python python3 race-conditions security security-testing security-vulnerability vulnerability vulnerable-web-application

Last synced: 11 Apr 2025

https://github.com/aghae/ejwt

Express JSON Web Token

express json json-web-token-express jwt security token

Last synced: 11 Jan 2026

https://github.com/aerabi/hackdockerfest

Docker best practices created by the community

docker hacktoberfest security

Last synced: 10 Apr 2025

https://github.com/likhon-developer/die

A secure PowerShell script designed to automate wallet address replacement using Base64 encoding. Developed by Rekt Developers to streamline wallet management with enhanced security.

automation crypto-tools cryptocurrency hacktoberfest powershell security wallet

Last synced: 05 May 2025

https://github.com/hsluoyz/spikefuzzui

A network protocol fuzzing test software with UI on Windows

fuzz-testing fuzzing security visual-studio windows

Last synced: 08 Sep 2025

https://github.com/illdefined/sensitive

Simple Rust memory allocator for sensitive information

memory-allocator security

Last synced: 13 Apr 2025

https://github.com/sami-bre/botnet

A botnet, hacking tool allowing a hacker to control multiple zombie computers from a central command script

botnet flask hacking python security sqlite3 terminal-based zombies

Last synced: 10 Apr 2025

https://github.com/acutaia/goeasy-serengeti

Secure trusted collection and exchange of position Information proxy

cloud fastapi goeasy position-information proxy python satellite security

Last synced: 09 Apr 2025

https://github.com/grapheneos-archive/device_google_bonito-sepolicy

Pixel 3a and Pixel 3a XL SELinux policy extensions.

android grapheneos security

Last synced: 11 Jan 2026

https://github.com/lakshan-madushanka/secure-bird

Secure your secrets using E2EE and get a link to share.

confidential encryption-decryption link security share

Last synced: 10 Apr 2025

https://github.com/cerbos/demo-python

Demo of using Cerbos with Python to check access to a holiday request system.

access-control cerbos policy python security

Last synced: 12 Apr 2025

https://github.com/kevcui/password-meter

:lock_with_ink_pen: A password meter evaluates the strength of passwords

password password-meter password-safety password-strength security security-tools

Last synced: 12 Apr 2025

https://github.com/turbot/flowpipe-mod-azure

Azure pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Azure to the people, systems and data that matters.

automation azure azure-cli cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines security workflow workflow-automation workflow-engine

Last synced: 22 Jun 2025

https://github.com/ralish/certuiexts

A library which extends Windows cryptography support for displaying additional OIDs and associated certificate extensions

certificates security windows x509

Last synced: 07 May 2026

https://github.com/aminfazlmondo/axios-error-redact

Library to redact sensitive information from Axios errors

axios error-handling hacktoberfest interceptor javascript nodejs projen redact security sensitive

Last synced: 26 Jun 2026

https://github.com/marcbperez/c-programming-security

C programming examples that cover basic operations and security exploits.

c docker gradle security

Last synced: 29 Apr 2026

https://github.com/escoffier-labs/solos-cookbook

How one engineer runs a 24/7 multi-agent AI stack on bare metal. Opinionated. Dogfooded. Broken-and-fixed in production. Tested in service.

ai-agent best-practices devops hardening linux openclaw runbook security

Last synced: 11 Jun 2026

https://github.com/4thel00z/oneliners

Magic offsec/utility oneliners to make your red teaming/CTF/h4x0r life easier! 🤓

bash offsec oneline oneliner oneliners security sysadmin

Last synced: 30 Apr 2026

https://github.com/jojiiofficial/triplink

Listens for incoming port scans and reports the IPs to the ScanBanServer

cronjob filter ipset iptables security security-automation security-tools triplink

Last synced: 12 May 2026

https://github.com/marhcouto/feup-fsi-logbooks

:mortar_board: Logbook solutions for SEED Labs and CTFs - FSI -> L.EIC - FEUP

crypto ctf feup-fsi feup-leic feup-meic fsi leic-fsi meic-fsi security seed-labs

Last synced: 04 Jan 2026

https://github.com/devolvdev/devolv-actions

GitHub Action wrapper for Devolv — modular DevOps CLI for IAM drift detection, validation, and security.

aws cloud-automation compliance drift-detection github-actions iam-devsecops infrastructure policy-validation security

Last synced: 14 Jul 2025

https://github.com/nigelhorne/sniff2ban

Dynamically change firewall

ban-hosts firewall security

Last synced: 08 May 2025

https://github.com/chrisamanse/Codegen

An open source one-time password generator for iOS.

authentication authenticator cryptography generator hmac ios one-time-passwords qrcode security swift

Last synced: 22 Jul 2025

https://github.com/jojiiofficial/scanbanserver

The server for the triplink-system to collect hackers and webscanner across the internet

blocking database filter ipsec security security-automation triplink

Last synced: 04 Mar 2025

https://github.com/Popsiclestick/falco-filebeat-daemonset

Easily deployable daemonset which moves logs from falco with filebeat.

containers daemonset falco filebeat kubernetes security

Last synced: 12 May 2025

https://github.com/0x48piraj/barely-windows

Barely Windows is a user-friendly web-based GUI editor that enhances your Windows experience. Easily remove pre-installed apps, disable telemetry, and eliminate Bing from search. Boost gaming performance with FPS optimization. Compatible with Windows 10 and 11, it helps you declutter and optimize your system in just a few clicks.

bloatware-removal debloat debloater fps gaming open-source performance privacy security tweaks webapp windows windows-10 windows-11 windows-debloat

Last synced: 15 Apr 2025

https://github.com/anchore/engine-operator

Helm based anchore engine operator

kubernetes-operator operator operator-hub security

Last synced: 24 Feb 2025

https://github.com/checkmarx/ast-eclipse-plugin

The CxAST Eclipse plugin enables you to import results from a CxAST scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

checkmarx checkmarx-ast eclipse-plugin security

Last synced: 08 Apr 2026

https://github.com/maandree/passcheck

Passphrase strength evaluator

password-checker security

Last synced: 24 Feb 2025

https://github.com/douganger/flask-ipfilter

A simple Flask extension to limit access to a site to certain IP addresses.

flask heroku python3 security

Last synced: 12 Apr 2025

https://github.com/coding-hui/iam

IAM - Identity and access management system, cloud native friendly, multiple authentication methods

cloud gin golang iam oauth2 security

Last synced: 12 Apr 2025

https://github.com/linkdd/secure-user-data

Infrastructure to store, manage and access user data in a very secure manner.

data-privacy data-protection microservice python3 security user-data

Last synced: 15 Sep 2025

https://github.com/sjinks/tiny-ssh-honeypot

Single-threaded event-driven low-interaction SSH honeypot based on libassh

honeypot security ssh ssh-honeypot

Last synced: 17 Sep 2025

https://github.com/didinj/springboot-security-mongodb-example

Spring Boot, Security, MVC, Data and MongoDB Login Example

data example login mongodb mvc security springboot

Last synced: 30 Jul 2025

https://github.com/Kin69/Athena

Athena is a modern, comprehensive firewall solution that supports both root and VPN modes, offering DNS blocklists, Material Design UI, and native performance. Unlike older alternatives, Athena provides advanced features like app lock, real-time packet monitoring, and malicious site protection, all while maintaining a user-friendly interface.

android dns dynamic-colo firewall foss kotlin kotlin-android material mvvm network opensource packets privacy protection root secure security vpn

Last synced: 03 Aug 2025

https://github.com/damienbod/wpfazureadsharepointonlinegraphapi

WPF Azure AD signin with Sharepoint Online API call using Graph API

azure azuread graph graph-api identity msal security sharepoint sharepoint-online wpf

Last synced: 03 Aug 2025

https://github.com/authzed/workshops

The repository for self-guided SpiceDB workshops

ai authorization permissions security spicedb

Last synced: 10 Aug 2025

https://github.com/austinheap/wordpress-security-txt

A plugin for serving `security.txt` in WordPress 4.9+, based on configuration settings. https://securitytext.org/

beta php php7 php70 php71 php72 security security-txt wordpress wordpress-plugin wordpress49 wordpress5

Last synced: 03 Oct 2025

https://github.com/5gsec/security-intents

Repository to hold security intents in standard template format.

5g blueprints intents k8s kubernetes o-ran security

Last synced: 14 Aug 2025

https://github.com/gunjan5/shift-left-security

Shift Left ⬅️ (Preventive) Security 🔐 for Containers/Kubernetes 📦

ci ci-cd cloud containers devops kubernetes security security-tools

Last synced: 17 Aug 2025

https://github.com/jonzeolla/lab-internetofinsecurity

An introductory lab to IOT device security.

information-security infosec iot iot-security lab security

Last synced: 09 Mar 2026

https://github.com/filiprokita/cracksha256

This Python program, called CRACKSHA256, is a simple SHA256 hash cracker that takes a SHA256 hash and a wordlist as inputs. It attempts to crack the hash by iterating over each word in the wordlist, encoding it, and hashing it using SHA256. If successful, it prints the word that was used to generate the hash.

bruteforce cracking hack hacking hacking-tool password-crack password-cracker password-cracking-and-hash-cracking password-decryption password-decryptor password-hash programming python security sha256

Last synced: 29 Aug 2025

https://github.com/devexpress-examples/connect-winforms-grid-to-backend-using-middletier-server

Connects the DevExpress WinForms Data Grid to a backend using a Middle Tier Server (EF Core without OData).

aspnetcore authorization devexpress dotnet ef efcore grid rbac security webapi winforms xaf

Last synced: 30 Aug 2025

https://github.com/aguslr/bluerock

A Fedora Silverblue image that has been hardened for extra security

fedora fedora-silverblue oci ostree security

Last synced: 01 Sep 2025

https://github.com/multiform-validator/typescript-javascript

Javascript / Typescript library made for validation, various form fields, such as: email, telephone, password, cpf, cnpj, credit card, magic numbers for image mimetype validation and much more.

javascript javascript-library library multiform-validator npm security security-tools typescript typescript-library validate-js validation validation-library validator

Last synced: 22 Jan 2026

https://github.com/alanvivona/microservices

Go Rest API with Google Auth + Nginx reverse proxy + Mysql

docker gdrive golang microservices mysql nginx security

Last synced: 03 Aug 2025

https://github.com/jaayperez/keysoft

Crypto Js secure, dynamic password creator application that uses cryptographic algorithms with Node.js, Express 4, and Heroku cloud deployment.

crypto cryptographic-algorithms expressjs generator heroku nodejs password password-generator random-password security tool tools

Last synced: 23 Mar 2025

https://github.com/jcsec-security/smart-contract-audits

List of some of the published smart contract audits in which I have participated in the past.

audit security smart-contracts

Last synced: 07 Apr 2025

https://github.com/hhimanshu/google-oauth2-jwt-secure-api

Demonstrates how to write secure Web Applications using Google Oauth2 on client side and securing protected resources with JWT based token

full-stack google jwt oauth2 security spring-boot webapp

Last synced: 02 May 2025

https://github.com/vdlp/oc-hashids-plugin

Allows developers to use secure hashed ID's in October CMS powered websites.

hashids hashing laravel october-cms octobercms octobercms-plugin php security

Last synced: 12 Apr 2025

https://github.com/raveensr/secura-pi-cam

A surveillance security system written in python which uses a Raspberry Pi with motion detector and it sends mobile notifications to telegram app

raspberry-pi security telegram-bot wifi

Last synced: 19 Apr 2025

https://github.com/joshuadeguzman/xtrength

A password strength meter for Android

android jitpack kotlin passwords security

Last synced: 13 Apr 2025

https://github.com/ropwareJB/jwtfuzz

Library for fuzzing & attacking JSON Web Tokens (JWTs). Bindings for other languages included.

bug-bounty bug-bounty-tools bugbounty fuzz fuzzing hacking hacking-tool jwt jwt-token pentesting pentesting-tools security

Last synced: 10 Mar 2025

https://github.com/644/avg-audit

Arch Linux Audit Tool - checks for vulnerable packages installed against security.archlinux.org

advisory arch-linux archlinux audit cve security

Last synced: 10 Mar 2025