An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/localden/mcp-auth-servers

🔒 Reference MCP servers that demo how authentication works with the current Model Context Protocol spec.

authentication authorization mcp model-context-protocol security

Last synced: 10 Apr 2025

https://github.com/akotov-dev/sstp-connector

Simple SSTP (Secure Socket Tunneling Protocol) VPN connector

anonimity anticensorship gui mageia-linux security sstp vpn-client

Last synced: 23 Jan 2026

https://github.com/bvdcode/cotton

Files. Snapshots. Search. Stream. Restore. One container. Two faces: simple up top, full control under the hood. Built with .NET / C# because performance and sanity matter.

cloud crypto dotnet security self-hosted storage

Last synced: 28 May 2026

https://github.com/dina-heidar/saml2-authentication

A dotnet tool used to authenticate and logout using SAML2. It implements SAML Web SSO (HTTPGet, HTTPPost, Artifact), Logout (HTTPGet, HTTPost) profile message flows and bindings.

aspnetcore authentication dotnet identity netcore netstandard saml2 security slo sso

Last synced: 14 Jan 2026

https://github.com/clagentic/clagentic-lite

A personal coding harness with serious gates. POSIX shell, two SQLite files, no server.

ai-tooling claude-code code-review developer-tools posix-shell security

Last synced: 02 Jun 2026

https://github.com/furritos/flask-simple-crypt

Flask extension based on simple-crypt that allows simple, secure encryption and decryption for Python.

cryptography decryption encryption flask python security symmetric symmetric-cryptography

Last synced: 24 Oct 2025

https://github.com/isaacpeel/solesonic-mcp-server

An enterprise-grade MCP server with built-in federated identity support for SSO across providers and secure, scalable access management.

ai identity java mcp mcp-security mcp-server mcp-tools security spring-boot-ai

Last synced: 01 Mar 2026

https://github.com/open-turo/actions-security

GitHub Actions for security checks

action ci gha github security

Last synced: 16 Jan 2026

https://github.com/bouke/clibsodium

Swift overlay for libsodium

encryption libsodium security

Last synced: 13 May 2026

https://github.com/turbot/steampipe-mod-terraform-oci-compliance

Run compliance and security controls to detect Terraform OCI resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

compliance hacktoberfest oci oracle-cloud oracle-cloud-infrastructure powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 12 Feb 2026

https://github.com/alexw00/secured-env

Utility script to source environment variables from 1Password.

1password environment environment-variables op security

Last synced: 13 Feb 2026

https://github.com/micchickenburger/cryptotools

A versatile cryptographic tool for data hashing, encryption, decryption, digital signing, password security, and secure random number generation, entirely in the browser.

aes argon2 bcrypt crypto cryptography cryptography-tools cybersecurity digest encryption encryption-decryption hashing pake pki rsa security security-tools sha

Last synced: 13 Feb 2026

https://github.com/jaegertracing/security-audits

Jaeger security audits

cncf security

Last synced: 02 Mar 2026

https://github.com/kyrcha/secure-mern-app

A secure web application using the MERN stack

express-js heroku mongodb mongoose nodejs reactjs security

Last synced: 28 Feb 2026

https://github.com/wravoc/harden-ghostbsd

Implements a broad, cohesive group of hardening settings for GhostBSD. Any directive can be set, re-set, for administering, tuning, and jails. Zenbleed workaround, Downfall info.

bsd cybersecurity downfall ghostbsd hardening security security-automation security-tools vulnerability-assessment vulnerability-detection zenbleed

Last synced: 10 Feb 2026

https://github.com/turbot/flowpipe-mod-opsgenie

Opsgenie pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Opsgenie to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code opsgenie opsgenie-api orchestration pipelines security workflow workflow-automation workflow-engine

Last synced: 30 Jan 2026

https://github.com/localzet/lwt

Localzet LWT is a library for working with Localzet Web Tokens, which are based on JWT (JSON Web Tokens). It provides functionality for creating, verifying, and handling tokens using modern technologies and standards.

library security

Last synced: 09 Feb 2026

https://github.com/turbot/flowpipe-mod-teams

Microsoft Teams pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Microsoft Teams to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code microsoft-teams orchestration pipelines security teams workflow workflow-automation workflow-engine

Last synced: 28 Feb 2026

https://github.com/jpcertcc/yamagoya

Yet Another Memory Analyzer for malware detection and Guarding Operations with YARA and SIGMA

security sigma threat-hunting yara

Last synced: 02 Mar 2026

https://github.com/javiorfo/go-microservice-mongo

Go, MongoDB, Tracing, Auditory, Swagger and Keycloak

api-rest fiber go golang keycloak mongodb security web

Last synced: 24 Jan 2026

https://github.com/paratron/next-server-session

Functions to handle serverside session data and csrf tokens

csrf-tokens nextjs react security serverside-sessions session-lifetime

Last synced: 26 Feb 2026

https://github.com/unicef/holistic-assessments-for-ict4d

Guidance that provides a methodology for ICT4D practitioners to assess software from the security an privacy point of view.

assessment audit digital-impact evaluation guidance ict4d methodology security t4d technology-for-development unicef

Last synced: 03 Mar 2026

https://github.com/kw-soft/threatintelligence

RSS feed aggregator that collects security-related news and advisories from multiple sources and posts them to designated Discord channels via webhooks

discord feed forensics malware-analysis malware-research python security security-tools threat-hunting threat-intelligence

Last synced: 01 Mar 2026

https://github.com/thetallprogrammer/password-generator

Falkenberg's Password Generator is a secure and customizable tool designed to generate strong passwords with ease. Adjust complexity and length, exclude specific symbols, and copy your password with one click. This standalone generator is part of a larger password manager project currently in development.

cpp desktop-app desktop-application password-generator password-generator-cpp privacy qt security tool tools user-interface

Last synced: 24 Jan 2026

https://github.com/brandonfl/discord-virustotal-bot

Discord bot using VirusTotal API to check if the content of messages sent by discord users is safe

discord discord-bot security virustotal

Last synced: 17 Apr 2026

https://github.com/bluet/express-pwnd-pw

Express.js security middleware for checking user password safety with Have I Been Pwned (HIBP) API

express express-middleware expressjs hacktoberfest hibp middleware node nodejs password password-safety security

Last synced: 14 Feb 2026

https://github.com/samuelquinones/password-generator

Generate secure, hard to guess passwords with the click of a button!

cra create-react-app password progressive-web-app pwa react react-hook-form reactjs security tailwindcss typescript

Last synced: 15 Apr 2026

https://github.com/divinemonk/hackers_n_devs

Collective resources for HACKERS and DEVELOPERS

dev developer github github-repos hackers repo security

Last synced: 09 Oct 2025

https://github.com/numberly/windows-defender-textfile-exporter

Windows defender textfile exporter to use with windows_exporter

prometheus security windows windows-exporter windowsdefender

Last synced: 16 May 2025

https://github.com/kaiiyer/emailrep

This is a go library for interacting with the EmailRep service

api email emailrep golang json-api security

Last synced: 16 Jan 2026

https://github.com/hamidurrahman1/news-portal

A RESTful Webservice built with Spring Boot, Spring Security, Spring AOP, and H2. This is also for learning and practicing purposes only.

h2-database rest-api security spring-aop spring-boot spring-security

Last synced: 10 Aug 2025

https://github.com/olav-st/oram-visualizer

Web application to visualize Oblivious RAM (ORAM) algorithms.

javascript oblivious-ram oram privacy security visualization webapp

Last synced: 07 Aug 2025

https://github.com/stenstromen/gotlsaflare

Go binary for updating TLSA DANE record on cloudflare from x509 Certificate

automation certificate cloudflare dane dns go security tlsa x509

Last synced: 20 Aug 2025

https://github.com/sjinks/ww-hide-wplogin

A WordPress plugin to hide wp-login.php and use a custom URL for logging in.

login plugin security wordpress wordpress-plugin

Last synced: 15 Oct 2025

https://github.com/seisollc/ubuntu-sandbox

A very simple linux-based sandbox

experiments sandbox security seiso ubuntu ubuntu-sandbox

Last synced: 20 Aug 2025

https://github.com/praqma/sdelements-plugin

Jenkins plugin for SD Elements risk assessment tool by Security Compass

jenkins-ci jenkins-plugin plugin security

Last synced: 10 Apr 2025

https://github.com/bewakerai/bewaker

Guardrails for agentic coding

ai githooks guardrails merkle security vscode

Last synced: 21 Feb 2026

https://github.com/influxdata/sedg

Tools for tracking security issues flexibly in version control

cve-tracking cve-triage security vulnerability-tracking

Last synced: 03 Feb 2026

https://github.com/t94j0/mwnn

IRC, but with privacy - Also a way to help me learn Go

gpg irc messenger security

Last synced: 04 Nov 2025

https://github.com/debricked/vs-code-extension

A Visual Studio Code extension that integrates the Debricked CLI to provide security vulnerability scanning and license compliance directly within the editor.

auditing compliance dependency license productivity risk-mitigation scan security vulnerability-scanners

Last synced: 27 Jul 2025

https://github.com/sebescudie/vl.virustotal

A not-complete-at-all implementation of the VirusTotal V3 API for vvvv

malware security virustotal vl vvvv

Last synced: 30 Oct 2025

https://github.com/aayushiahlawat/shield-chat-android-app

Shield Chat is an Android messaging application developed using Java and Firebase technologies

android android-application authentication chatting-app firebase java security

Last synced: 08 May 2026

https://github.com/pgilad/security-keys-ftw

My list of congrats and call-outs for services supporting (or not) security keys

2fa security security-key yubikey

Last synced: 11 Jan 2026

https://github.com/contributte/oauth2-server

🔒 OAuth2 server for Nette Framework

contributte nette outh2 security

Last synced: 13 Aug 2025

https://github.com/timokoessler/easy-waf-data

This repository provides ip data for the Web Application Firewall EasyWAF.

javascript nodejs security typescript waf web-application-firewall

Last synced: 29 Oct 2025

https://github.com/statcan/aaw-security-proposal

Proposal for the implementation of Protected B workloads in the Advanced Analytics Workspace

aaw daaas kubernetes security

Last synced: 01 Aug 2025

https://github.com/lazorfuzz/eye-of-providence

A web app made with react, redux, redux-saga, and bundled with webpack. Served on Express and stores data with neDB. Displays a grid list of cams found with the Shodan API.

api express iot nedb react redux redux-saga security shodan

Last synced: 08 Apr 2026

https://github.com/dedene/claw-wrap

A secure credential proxy for CLI tools. Executes tools with secrets on behalf of sandboxed processes - credentials never enter the sandbox.

cli openclaw proxy security

Last synced: 21 Feb 2026

https://github.com/jonzeolla/lab-smartcontractsecurity

A lab that focuses on smart contract security

ethereum lab security smart-contract

Last synced: 18 Oct 2025

https://github.com/kicksecure/apparmor-profile-thunderbird

AppArmor profile for Thunderbird - https://www.kicksecure.com/wiki/AppArmor - for better security (hardening).

apparmor debian security thunderbird

Last synced: 19 Apr 2025

https://github.com/deratheone/motion_detection_system

An Arduino-based security system that detects motion using an ultrasonic sensor and triggers a buzzer and RGB LED alarm. Supports day, night, and always-on modes with auto arming/disarming using an LDR, and mode selection via touch sensor. Ideal for home security and demos.

arduino motion motion-sensor security sensors

Last synced: 13 Jul 2025

https://github.com/telefonicaid/fiware-keystone-spassword

Keystone SPASSWORD is an OpenStack Keystone extension that enables some extra security checks over user passwords, as force the usage of strong passwords, expiration time for a password, number of bad login attempts before user account became temporarily blocked, a recover procedure password, second factor authentication (2FA), etc.

keystone ldap openstack-keystone-extension security

Last synced: 19 Apr 2025

https://github.com/pushkar-anand/folder-encrypter

Encrypts your Folders

encryption security

Last synced: 09 Sep 2025

https://github.com/bocaletto-luca/fileintegritychecker

FileIntegrityChecker Author: Bocaletto Luca FileIntegrityChecker is a Linux application written in Python with a Tkinter GUI that monitors critical files or entire directories by calculating and comparing their SHA256 hashes. By detecting any unauthorized modifications, it helps maintain file integrity and alerts you to changes. The project comes..

admin-tool bocaletto-luca english file-integrity-check file-integrity-checker gui italian linux monitor-critical-files multilanguages opensource python security security-tool sha256 tkinter

Last synced: 03 Aug 2025

https://github.com/psnappz/shadowguard

Fast & Reliable API Security Engine

api-security firewall security

Last synced: 15 Apr 2025

https://github.com/tweedge/ntlk

This package prevents a shockingly common typo for NLTK, preventing typosquatting. Update: this package was banned from PyPI - neat! ;)

nltk pypi security typo

Last synced: 03 Aug 2025

https://github.com/adhit-r/aran

Aran API Sentinel: Your AI-Powered API Security & Governance Platform

ai api cybersecurity ml security

Last synced: 09 Apr 2026

https://github.com/fadhilthomas/nuclei-reporter

run summary report of nuclei findings

dast golang security

Last synced: 10 Mar 2026

https://github.com/vstanchev/wafty

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads

go golang libinjection security waf

Last synced: 12 Jan 2026

https://github.com/ayemunhossain/secure-session-based-jwt-authentication

🔒 Introducing an authentication project crafted with Node.js, featuring session-based JWT token authentication and fortified with CSRF protection. Elevate your security measures while enjoying the seamless user experience provided by this robust solution.

ayemunhossain csrf-protection jwt jwt-token jwt-vs-session security session session-management token

Last synced: 24 Mar 2025

https://github.com/rodrigooler/rrmd

Rust + Rocket + MongoDB + Docker

api docker fast http mongo mongodb rocket rust security type

Last synced: 08 Apr 2026

https://github.com/irfaardy/encrypt-file-laravel

🛡️A Simple Laravel Encrypt uploaded file plugin

aes256 encrypt encrypt-file laravel php7 secure security storage upload upload-file

Last synced: 27 Oct 2025

https://github.com/meinto/anonymous-api-auth-provider

Prevent unauthorised access of public endpoints by for example bots or bad clients.

auth authorization public-api security session-token

Last synced: 29 Mar 2025

https://github.com/umutcamliyurt/i2proxy

A web browser extension for accessing I2P network anonymously

anonymity firefox-addon i2p i2p-browser i2p-browsing javascript privacy security

Last synced: 14 May 2025

https://github.com/giosil/saml-idp

Boilerplate for SAML Identity Provider implementation.

authentication java javaee saml saml-authentication saml-identity-provider saml-idp saml2 security

Last synced: 05 Nov 2025

https://github.com/brave-experiments/defi-privacy-measurements

Code and data supporting our research projects on security and privacy issues in DeFi sites.

blockchain defi erc20 ethereum privacy security

Last synced: 07 Apr 2025

https://github.com/trendmicro/v1-cloud-community

About Collection of Trend Micro Open Source Community Projects related to Trend Vision One

automation demo security trendmicro trendvisionone visionone

Last synced: 15 Apr 2025

https://github.com/szgabsz91/oauth2-authorization-proxy-server-spring-boot

Library for easily securing REST API endpoints in a Spring Boot applications using the reactive Spring WebFlux stack

facebook google oauth2 security spring-boot

Last synced: 20 Feb 2026

https://github.com/ractstudio/essential-wp-tools

Essential WP Tools is an all-in-one solution for optimizing, securing, and enhancing your WordPress website. With a comprehensive suite of features, this plugin empowers website owners to streamline their site management, boost performance, and fortify security effortlessly. Project website: https://ewpt.ractstudio.com/

ad adsense essential essential-wp-tools ewpt perfromance security seo share tools wordpress wordpress-plugin wp

Last synced: 29 May 2026

https://github.com/visible/noro

one-time secret sharing for env vars

cli encryption env env-vars one-time one-time-secret secrets security sharing

Last synced: 29 Jan 2026

https://github.com/protosec-research/tree-of-ast

Tree-of-AST: Python Security Analysis framework inspired by ToT (Tree-of-Thoughts) of Deliberate Code analysing states using ToT-based ways.

ai gpt-4 ml python security security-audit security-tools source-to-sink static-code-analysis tree-of-thoughts

Last synced: 04 Sep 2025

https://github.com/mitre/apache-tomcat-7-cis-baseline

(WIP) (ALPHA) InSpec Profile for the CIS Apache Tomcat v7 Benchmark

inspec inspec-profile mitre-corporation mitre-inspec mitre-saf security tomcat tomcat7

Last synced: 21 Apr 2025

https://github.com/ladjs/mongoose-omit-common-fields

Array of common fields to emit for Mongoose toObject/toJSON (helpful for security)

common fields helper koa lad mongo mongodb mongoose omit security select

Last synced: 15 Apr 2025

https://github.com/marcjulian/pyoram

Crypto tool written in python which stores files on a cloud storage and disguises the access of the files

cloud-storage oram privacy python security

Last synced: 31 Mar 2025

https://github.com/nicksherron/elasticstack-swarm

Elasticsearch, Kibana, Logstash and Suricata on GCE, EC2 or Virutualbox with GreyNoise log enrichment.

docker-machine docker-swarm elasticsearch-cluster greyniose greynoise-intelligence kibana logstash security suricata

Last synced: 04 Oct 2025

https://github.com/kicksecure/apparmor-profile-hexchat

AppArmor profile for HexChat IRC - https://www.kicksecure.com/wiki/AppArmor - for better security (hardening).

apparmor hexchat irc profile security

Last synced: 10 Mar 2025