An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/samdphillips/racket-keyring

Racket Keyring Library

password racket security

Last synced: 11 Apr 2025

https://github.com/sjinks/roundcube_recaptcha

Adds reCAPTCHA to the RoundCube login form

captcha login recaptcha roundcube-plugin security

Last synced: 07 Mar 2026

https://github.com/noplanman/wp-otp

OTP for WordPress (:exclamation: moved to https://git.feneas.org/noplanman/wp-otp)

authentication otp security totp two-factor-authentication wordpress wordpress-plugin

Last synced: 11 Apr 2025

https://github.com/datosh/pinned-actions

How many GitHub repositories actually pin by hash?

github-actions security supply-chain-security

Last synced: 07 May 2025

https://github.com/pforemski/eip-generator

A new IPv6 address generator for Entropy/IP

entropy ip6 security

Last synced: 14 Jan 2026

https://github.com/virb3/winsock-dump-proxy

A proxy DLL for Windows to dump Windows Socket connections

dll dump proxy reverse-engineering security windows winsock

Last synced: 24 Jun 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/kevcui/totp

:1234: Yet another minimal TOTP generator in 5 lines of Bash

2fa bash bash-script cryptography hotp security totp totp-generator

Last synced: 15 Oct 2025

https://github.com/jorianwoltjer/subsolver

CLI tool to Solve Substitution Ciphers using a wordlist

cli crypto security solver substitution-cipher wordlist

Last synced: 13 Jun 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/shenfe/function-sandbox

📦 Make a "sandbox" for a function.

function-sandbox security

Last synced: 07 Oct 2025

https://github.com/luckman212/cscheck

outputs codesigning info for macOS binaries

macos security

Last synced: 18 Oct 2025

https://github.com/shuffle/shuffle-security

Security Platform Implementation on Shuffle Core. Built to be edited. Build your dream security platform

automation cloud platform security

Last synced: 31 May 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/kiliczsh/nosql-injection

The Power of Secure Coding Practices: Safeguarding MongoDB Against Exploitation

mongodb nosql-injection security

Last synced: 10 Apr 2025

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/pyperanger/gorootcheck

Standalone rootcheck by OSSEC wrtitten in Go ( rootkit detection )

cortex golang linux misp ossec rootkit security

Last synced: 20 Jan 2026

https://github.com/ladjs/mongoose-common-plugin

Common plugin for Mongoose with standard schema fields and localization support

common created helper i10n i18n id locale locales localization localized locals mongoose plugin plugins security timestamp updated virtual virtuals

Last synced: 15 Apr 2025

https://github.com/brannondorsey/attacker-personas

🏴‍☠️ Use attacker personas to improve your threat modeling and cybersecurity practices

advice cybersecurity infosec security threat-modeling

Last synced: 18 Feb 2026

https://github.com/robertdebock/ansible-role-forensics

Install and configure forensics on your system.

ansible forensics molecule playbook security system tox

Last synced: 19 Sep 2025

https://github.com/sub1to/ctninja

Compile-time string encryption and import obfuscation for Windows PE32(+) binaries

compile compile-time cplusplus encryption imports joaat joaat64 ninja obfuscation pe32 pe32plus peb peb-walking security stealth string time windows xorstr

Last synced: 19 Apr 2025

https://github.com/IchHabRecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 31 Mar 2025

https://github.com/dotanuki-labs/android-oss-cves-research

An analysis on open-source Android apps intended to learn if they are harmed by vulnerable dependencies 🔒

cli gradle python security supply-chain-analytics

Last synced: 12 Apr 2025

https://github.com/ariary/hack-weak-strcmp-code

A description of a basic hack over a C files using strcmp function

hack reverse-engineering security

Last synced: 02 Jul 2025

https://github.com/graniet/gofuzz

A Request fuzzer written in Go

api fuzzer fuzzing hacking rest security

Last synced: 11 Apr 2025

https://github.com/elastic/llm-detection-proxy

A proxy tool for detecting and logging LLM queries to Elasticsearch.

elastic enrichment flask kibana llm proxy security

Last synced: 13 Jul 2025

https://github.com/rix4uni/unew

A tool combined of 2 commands features in 1 sort and tee for adding new lines to files, skipping duplicates

bug-bounty bugbounty bugbountytips duplicates hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 15 Apr 2025

https://github.com/turbot/steampipe-mod-github-compliance

Run individual controls or full compliance benchmarks for across all of your GitHub resources using Powerpipe and Steampipe.

cis cis-benchmark compliance github hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/lorenzodifuccia/watchmyback

An easy-to-use defense tool against "Shoulder Surfing" attacks, which allows you to immediately lock the screen of your computer if someone is behind you or if you move away from the computer without locking it.

face-detection mediapipe security shoulder-surfing tobii-aware tobii-eye-tracker

Last synced: 04 Aug 2025

https://github.com/port19x/deadsniper

A fast, specialized dead-link checker

broken-links dead-links github-actions security seo seo-optimization

Last synced: 01 Apr 2025

https://github.com/teamdefronix/defroxpot

DefroxPot is a honeypot project designed to detect, monitor, and analyze malicious activity in a controlled environment. This project aims to provide cybersecurity enthusiasts and professionals with a powerful tool to study attack patterns, improve defensive strategies, and enhance security awareness.

cybersecurity defronix defroxpot django flask hacker hacking hacking-tool honeypot python python-hacking-tools python3 security

Last synced: 05 May 2025

https://github.com/withsecurelabs/shadowhammer

Tools related to 'shadowhammer' attack, https://securelist.com/operation-shadowhammer/89992

countercept malware security

Last synced: 25 Jun 2025

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/ralish/keepass

Source code mirror of KeePass v2.x releases

keepass mirror password-manager security

Last synced: 10 Jun 2025

https://github.com/techjacker/diffence

Checks a git diff for offensive content

diff git-diff passwords secrets security

Last synced: 02 Sep 2025

https://github.com/plazmaz/twitter-bots-list

A list of accounts that auto-retweet or like certain keywords

auto-retweet bots fun funny honeypot infosec keyword security tricks troll twitter twitter-bot

Last synced: 01 Mar 2026

https://github.com/theden/macos-blackhole

Script to set up pi-hole style blocking on your MacBook

ad-blocker pi-hole privacy security shell unified-hosts

Last synced: 09 Jul 2025

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/atulkamble/aviatrix

Aviatrix ACE (Aviatrix Certified Engineer) Multi-Cloud Networking Associate Exam Notes

atul-kamble atulkamble aviatrix aviatrix-ace aviatrix-certified-engineer aviatrixace multi-cloud-networking security

Last synced: 04 Mar 2025

https://github.com/mini-ware/file-locker

Keep your files obfuscated by locking them with XOR encryption

cli encryption hacking linux password security shell xor

Last synced: 03 Oct 2025

https://github.com/serverfarmer/compliance

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

compliance gdpr hipaa linux pci-dss security server-management

Last synced: 12 Jul 2025

https://github.com/qbrusa/Windows-Security-Event-ID-Helper

This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).

audit eventid events logging security windows

Last synced: 08 May 2025

https://github.com/rehypejs/camomile

Node.js HTTP image proxy to route images through SSL

camo camomile image node proxy rehype security ssl unified

Last synced: 01 Jul 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/johnnykv/curiosum

Pcap recording of Heralding sessions

honeypot pcap security

Last synced: 13 Apr 2025

https://github.com/avantasia/inventedattack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 09 Jul 2025

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/ichhabrecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 09 Mar 2026

https://github.com/sondosaabed/intro-to-information-security

Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.

access-control buffer-overflow-attack course database-security firewalls information-security intrusion-detection-system malicious-software modern-malware os-security security udacity

Last synced: 20 Feb 2026

https://github.com/dev-hwang/flutter_security_checker

This plugin provides the ability to verify rooting and integrity on Android and iOS platforms.

android flutter ios root-checker security

Last synced: 21 Mar 2025

https://github.com/iowacomputergurus/dnntelerikidentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 19 Apr 2025

https://github.com/xinux-org/configs

⚙️ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025

https://github.com/jmhobbs/wordpress-scanner

CLI to scan plugin directories, and an HTTP server to scan zips from Wordpress.org

experimental security wordpress

Last synced: 14 Apr 2025

https://github.com/adrien2p/accumulator

:rocket: Send a load of requests with nodejs using cluster and with/without Tor for anonymisation :see_no_evil:

ddos ddos-attacks ddos-tool load-testing nodejs onion security tor

Last synced: 08 May 2025

https://github.com/bocaletto-luca/browser-temporary-files-delete

Browser Temporary Files Delete is a Python application that helps users remove temporary files from web browsers. It allows users to select the browsers to scan and clean up unnecessary temporary files. The software dynamically detects the cache paths of common web browsers, enabling users to perform cleanup operations with ease.

automation cache cleanup optimization privacy python security utility web-browser

Last synced: 18 Oct 2025

https://github.com/eddiechu/Ransomware-meets-loop

What if the ransomware meets an endless subfolder

infosec ransomware security

Last synced: 28 Mar 2025

https://github.com/aenondynamics/x509-tool

:wrench: Single-File-Utility to create X509 Certificates/PKI Structure for your OpenVPN Server or any TLS based communication.

authentication certificate cli communication openssl openvpn pki-structure security ssl-certificates tls verify-certificates webserver x509

Last synced: 19 Jun 2025

https://github.com/asos/snyker

An opinionated, heavy-handed wrapper around Snyk.

cli security snyk snyk-cli vulnerabilities vulnerable-paths

Last synced: 09 Mar 2026

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT

chainstack chatgpt dlp security

Last synced: 13 Apr 2025

https://github.com/turbot/steampipe-mod-alicloud-compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS across all of your Alibaba Cloud accounts using Powerpipe and Steampipe.

alibaba-cloud alibabacloud alicloud cis cis-benchmark compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/trilemma-dev/required

Parser and evaluator for Apple's Code Signing Requirement Language

codesign csreq macos secrequirement security

Last synced: 21 Oct 2025

https://github.com/ma27/ma27apikeyauthenticationbundle

Symfony Bundle which provides an approach to authenticate users with API tokens.

doctrine security symfony symfony-bundle

Last synced: 12 Jun 2025