An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/jonhadfield/subtocheck

subdomain takeover checker

go golang scanner security subdomain takeover

Last synced: 15 Jul 2025

https://github.com/timkuijsten/node-mongo-escape

Escape variables to prevent NoSQL injection in MongoDB

mongodb security

Last synced: 01 Aug 2025

https://github.com/maandree/correctpony

Passphrase generator based on http://xkcd.com/936/

correcthorsebatterystaple password-generator security

Last synced: 24 Feb 2025

https://github.com/hivemq/hivemq-deny-wildcard-extension

HiveMQ extension for denying subscriptions to the root wildcard

extension hivemq hivemq-extension mqtt security subscription wildcard

Last synced: 08 Mar 2026

https://github.com/johnshajiang/blog

The original technicial articles

curl hpack http2 java jetty nss openssl security tls tls13

Last synced: 04 May 2025

https://github.com/davidmoremad/awspice

Awspice is a wrapper tool of Boto3 library to list inventory and manage your AWS infrastructure The objective of the wrapper is to abstract the use of AWS, being able to dig through all the data of our account

aws boto3 cloud region security wrapper

Last synced: 12 Apr 2025

https://github.com/jenkinsci/pam-auth-plugin

Jenkins plugin to support authentication using PAM on Unix-like systems.

authentication jenkins-plugin pam security

Last synced: 22 Jun 2025

https://github.com/andreas-brunner/astro-mail-obfuscation

Protect email addresses, phone numbers and other sensitive data from bots scraping the source code of your Astro app.

astro astro-component astro-integration bot-protection email-obfuscation email-protection email-security encoding obfuscation security spam-protection utility utils withastro

Last synced: 14 Mar 2025

https://github.com/ivision-research/inzure

Azure security configuration automation tool and library

automation azure security vulnerability-detection

Last synced: 23 Jul 2025

https://github.com/robertdebock/ansible-role-ca

Install and configure a certificate authority on your system.

ansible authority ca certificate molecule openssl playbook security tox

Last synced: 09 Mar 2026

https://github.com/craigmayhew/usbcleanser

Scripts to turn a debian based OS into an automated USB wiper

python raspberrypi security thumb-drive usb-drive

Last synced: 25 Oct 2025

https://github.com/ebkalderon/bastille

Process sandboxing library written in Rust

cross-platform namespace rust sandbox security

Last synced: 23 Apr 2025

https://github.com/pawamoy/django-cerberus-ac

Django Cerberus Access Control, extended permission system.

access control django ontology permissions role-based-access-control security

Last synced: 05 Jul 2025

https://github.com/littlenewton/ucas_exploit_practice

中国科学院大学,《漏洞利用与攻防实践》,霍玮

security ucas

Last synced: 27 Jul 2025

https://github.com/drawing-captcha/drawing-captcha-app

Drawing Captcha is an innovative software that enhances security and promotes brand awareness by requiring users to complete interactive drawing tasks to pass the verification process. (Website comes soon)

captcha drawing js nodejs open-source security solving

Last synced: 25 Jul 2025

https://github.com/csfelix/csharp-rsa-algorithm

👥 Your message is saved, Your message is secure, Your message is encripted!! 👥 (🔑 KeyWords: C#, C Sharp, RSA Algorithm 🔑)

cipher csharp rsa security

Last synced: 29 Oct 2025

https://github.com/grapheneos/tls-pinning

Utilities for setting up TLS key pinning for Android app network security configuration. We pin the keys of trusted roots and backup keys in order to avoid needing to rotate the pinned keys. Backup keys are never intended to be used unless the roots stop being available and then only need to be used until the pins expire or get updated.

https privacy security tls

Last synced: 13 Apr 2025

https://github.com/djinn-soul/cytoscnpy

Fast Python static analysis powered by Rust. Detects dead code, security issues (including taint analysis), and code quality metrics like complexity, Halstead, maintainability, and nesting depth.

code-quality dead-code-detection python python-linter quality secret-detection security vscode-extension

Last synced: 18 Apr 2026

https://github.com/z-m-huang/vcp

Vibe Coding Protocal - Security-first protocol for AI-generated code, multiple standards with real-time enforcement and multi-AI pipeline orchestration

ai-coding claude-code claude-skills security security-audit vibe-coding

Last synced: 18 Apr 2026

https://github.com/felixfriedrich/dnsmonitor

Monitor domain names for DNS changes

dns golang security

Last synced: 14 Jan 2026

https://github.com/brittonhayes/notion-stix

Integrate Threat Intelligence into your Notion workspace with notion-stix 🛡️

golang mitre mitre-attack notion security stix stix2 threat-intelligence

Last synced: 08 Oct 2025

https://github.com/trag1c/ixia

Connecting secrets' security with random's versatility

cryptography python random security

Last synced: 31 Oct 2025

https://github.com/go-to-k/image-scanner-with-trivy

The AWS CDK Construct library to allow you to scan a container image during CDK deployment layer with Trivy.

aws aws-cdk aws-cdk-construct cdk container security trivy

Last synced: 27 Feb 2026

https://github.com/saptaks/saikoro

Diceware GUI: An easy way for non-tech people to get diceware passphrases

diceware gui-application passphrase security

Last synced: 24 Apr 2025

https://github.com/rulanugrh/linux-server-security

Basic Implementation about Security of Server and Application Server

linux-cheatsheet linux-server-security linux-shell security server-security

Last synced: 12 Apr 2025

https://github.com/didinj/grails4-spring-security-login-example

Grails 4 Tutorial: Spring Security Core Login Example

authentication core example grails grails4 login plugin security spring tutorial

Last synced: 24 Apr 2025

https://github.com/jonhadfield/ipscout

Host threat aggregator for network administrators and security analysts.

cli ip ip-reputation netsec netsec-tools network security

Last synced: 07 Feb 2026

https://github.com/drizzlerisk/armyworm

Armyworm是一款用于研究和测试的Internet Explorer密码输入控件粘虫防护能力的测试程序

activex armyworm bank ocx pentest security trojan

Last synced: 16 May 2025

https://github.com/boschresearch/pq-wolfssl

Integration of selected post-quantum schemes into the embedded TLS library wolfSSL as part of our paper "Mixed Certificate Chains for the Transition to Post-Quantum Authentication in TLS 1.3"

cryptography pqc security tls

Last synced: 07 Oct 2025

https://github.com/panagiotisdrakatos/universal-encryption-channel

Cross-platform socket API for Windows Universall Apps and Java

cross-platform encryption key-exchanges security

Last synced: 16 Aug 2025

https://github.com/italomaia/uri-faker

See how fonts can be used to create fake URIs

fonts html jquery pentest phishing security semantic-ui uri usability

Last synced: 28 Oct 2025

https://github.com/djx-y-z/libsignal_dart

Wrapper for libsignal, implementing the Signal Protocol for end-to-end encryption. Features Double Ratchet, X3DH, Sealed Sender, Group Messaging (SenderKey), and Kyber post-quantum key exchange. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows). AGPL-3.0 Licensed.

cross-platform cryptography dart double-ratchet encryption end-to-end-encryption flutter flutter-rust-bridge frb libsignal messaging privacy rust sealed-sender security signal-protocol x3dh

Last synced: 01 May 2026

https://github.com/dents/torche

Torrent file checker - verifies files in a directory against a torrent file in the same directory

datahoarder datahoarding file file-validation hash security sha1 storage torrent torrent-files torrents

Last synced: 11 Mar 2026

https://github.com/fossable/autovet

Automated security testing for open source libraries and applications.

security security-tools supply-chain

Last synced: 25 Apr 2025

https://github.com/robertdebock/ansible-role-auto_update

Install and configure automatic package updates on your system.

ansible autoupdate molecule playbook security system tox

Last synced: 24 Apr 2025

https://github.com/lovasoa/pyformat-challenge

Python format string vulnerability exploitation challenge

challenge format format-string-attack python security

Last synced: 24 Mar 2025

https://github.com/fearlesssolutions/engineering-practice-domains

A mono-repo for the Engineering Practice Domains of Development, Data, Infrastructure, Testing, and Platforms

data data-engineering data-science database-design devops drupal end-to-end-testing engineering infrastructure machine-learning salesforce security testing web-development

Last synced: 26 Oct 2025

https://github.com/oops-org-php/mod_execdir

mod_execdir: jailed system function. Run only the shell command in the specified directory

jail php8 security shell-injection

Last synced: 26 Apr 2025

https://github.com/outbit/pivportal

Secure Linux access using a PIV (HSPD-12), CAC, SmartCard, or x509 Client Certificate remotely without a physical card reader.

cac hspd-12 hspd12 linux-client pam-module piv pkcs11 security smartcard

Last synced: 24 Apr 2025

https://github.com/ribafs/laravel-acl

ACL to laravel 9 applications

access acl laravel package security

Last synced: 03 Sep 2025

https://github.com/theteleporter/xuneix

A link rotator for enhanced admin panel security. Dynamic URLs, expiring tokens, customizable rotation. Easy setup with Shadcn UI & Tailwind CSS. Integrates with Vercel KV.

authentication link-rotator nextjs open-source security shadcn-ui

Last synced: 24 Mar 2025

https://github.com/pelock/radio-code-calculator-php

Radio Code Calculator is an online service along with Web API & SDK for generating car radio unlock codes for popular vehicle brands.

anti-theft car car-hacking navigation php radio radio-code radio-codes security unlock vehicle

Last synced: 13 Jun 2025

https://github.com/wan0net/awesome-abac

List of Applications that enable or natively support Attribute Based Access Control

abac access-control attribute-based-access-control authorization awesome-list cybersecurity security zero-trust

Last synced: 03 May 2026

https://github.com/demon1a/bounties-uwu

Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne

bugbounty hackerone javascript security tools

Last synced: 14 Oct 2025

https://github.com/itinerisltd/itineris-disable-xml-rpc

Disable WordPress XML-RPC via actions and filters

security wordpress wordpress-plugin xml-rpc

Last synced: 20 Aug 2025

https://github.com/geniuszly/CVE-2022-46080

it is script that enables Telnet on routers by sending a specially crafted request. The script allows users to specify the router's URL, Telnet port, and password. It validates the inputs and logs the process, providing feedback on whether the exploit was successful.

buffer-overflow cve cve-2022-46080 cybersecurity ethical-hacking exploit exploit-development linux nexxt nexxt-router penetration-testing poc rce rce-exploit router security telnet vulnerability vulnerability-research

Last synced: 07 May 2025

https://github.com/flutterguard/flutterguard-cli

Know and see everything an attacker can extract and get from your published Flutter app

android apk cli dart exploit flutter opensource reverse-engineering security static-analysis

Last synced: 13 Jan 2026

https://github.com/burakozcn01/certstream-server-rust

High-performance Certificate Transparency (CT) monitoring tool written in Rust. Real-time stream of newly issued SSL/TLS certificates from CT logs. Rust implementation of certstream-server with improved performance and memory efficiency.

certificate-transparency certstream ct-logs rust security threat-intelligence websocket x509

Last synced: 22 Feb 2026

https://github.com/epappas/llmtrace

Zero-code LLM security & observability proxy. Real-time prompt injection detection, PII scanning, and cost control for OpenAI-compatible APIs. Built in Rust.

agentic ai-agents ai-infrastructure ai-security aiops chatgpt llm-inference llm-monitoring llm-security llm-security-compliance-prompt-injection llmops mlops observability openai pii-detection prompt-injection proxy rust security

Last synced: 19 Feb 2026

https://github.com/jaybrown/application-launch-monitor-alm-

Extend macOS Gatekeeper functionality by verifying applications at every launch

anti-malware anti-virus antimalware antivirus codesign gatekeeper macos malware privacy security

Last synced: 03 Mar 2026

https://github.com/saadbazaz/crackhead

A simple, smart & distributed password-cracking algorithm

algorithm password-cracker security

Last synced: 13 Jun 2025

https://github.com/rohaquinlop/immunipy

A Python SCA tool that acts as a watchdog, keeping an eye out for security vulnerabilities and reporting them promptly, written in Rust.

cli python python-library sca security vulnerability-detection vulnerability-scanners

Last synced: 17 Oct 2025

https://github.com/catalyst/patch-friend

Which of my hosts are affected by a security advisory?

debian python security security-advisories ubuntu

Last synced: 27 Apr 2025

https://github.com/dukebarman/android-bulletins-harvester

a simple utility for parsing Android security bulletins

android go security security-tools

Last synced: 14 Jan 2026

https://github.com/ezshine/carefullyopenurl

A Chrome extension that helps users browse the web more safely by adding confirmation steps before opening any links.

chrome-extension security

Last synced: 01 Sep 2025

https://github.com/mdeous/dnscheck

Subdomain takeover assessment tool.

dns security subdomain-takeover

Last synced: 11 Apr 2026

https://github.com/patricktulskie/dfang

Defang IOCs, written in rust

defang ioc refang security security-tools

Last synced: 28 Apr 2025

https://github.com/cristalhq/ipfilterware

Go HTTP middleware to filter clients by IP address

filtering firewall go golang http ip ipv4 ipv6 middleware security

Last synced: 08 Apr 2025

https://github.com/bonifield/splunk_on_security_onion

Splunk configs for Security Onion

bro forwarder onion security splunk sysmon zeek

Last synced: 14 Jun 2025

https://github.com/neuralegion/sectester-js

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

appsec brightsec e2e pentesting qa security test testing typescript

Last synced: 17 Mar 2026

https://github.com/logchange/eir

🐛🗡️👩‍⚕️ eir is a tool to report system vulnerabilities 👩‍⚕️🗡️🐛

docker gitlab graalvm java micronaut report security security-tools vulnerabilities

Last synced: 05 Jul 2025

https://github.com/jessechale/halehound-cyd

ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit

bluetooth cc1101 cheap-yellow-display cyd esp32 esp32-diy hacking nrf24l01 offensive-security pentest security security-tools subghz wifi

Last synced: 12 Mar 2026

https://github.com/always-further/runseal

Sealed execution environment for GitHub Actions.

actions isolation sandbox security supply-chain-security

Last synced: 05 Jun 2026

https://github.com/radoslaw-sz/guardio

The most flexible control plane for AI Agent systems

ai ai-agent ai-agents control-plane framework guard mcp security

Last synced: 01 Apr 2026

https://github.com/alphasoc/graylog-alphasoc

A content pack to render AlphaSOC alerts within Graylog

graylog-content-pack intrusion-detection malware-analysis monitoring security

Last synced: 01 Mar 2026

https://github.com/ryanbalfanz/rtspios

A Raspberry Pi distribution that turns your Pi in to an RTSP server (e.g. security camera)

camera custompios cvlc raspberry-pi-camera raspberrypi raspicam raspivid rtsp rtsp-server security vlc

Last synced: 24 Apr 2025

https://github.com/apache/santuario-cpp

Mirror of Apache Santuario C++

c java library santuario security xml

Last synced: 10 Jan 2026

https://github.com/rix4uni/linkinspector

linkinspector is a fast command-line tool for inspecting URLs and retrieving HTTP status codes, content lengths, and content types. It supports filtering and matching responses, and can process URLs from stdin or files.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 17 Feb 2026

https://github.com/dumbjs/foronce

The OTP Library

crypto node otp security totp

Last synced: 06 Mar 2026

https://github.com/trvswgnr/crab-snitch

Get an alert on macOS if an application accesses your microphone or webcam.

macos personal security

Last synced: 08 Sep 2025

https://github.com/sheepreaper/yk-csr-generator

YubiKey CSR Generator: A robust CLI tool that enables users to produce Certificate Signing Requests (CSRs) leveraging YubiKey devices. Comes with enhanced attributes configuration, broad hash algorithm support, and versatile output options. Aimed at providing a seamless, secure, and efficient experience for CSR creation.

authentication certificate cli-tool csharp csr digital-signature dotnet encryption hardware-token open-source piv pki security yubikey

Last synced: 20 Mar 2025

https://github.com/getdatakick/blackholebots

Free module for prestashop and thirtybees platforms that will automagically ban bots that don't follow robots.txt instructions

blacklist module prestashop prestashop-free-module prestashop-module robot security thirtybees

Last synced: 18 Mar 2025

https://github.com/aw-junaid/golang-web-security

Secure Golang web app with best practices: authentication, authorization, input validation, CSRF protection, and secure headers. Example code for secure development.

golang penetration-testing security websecurity

Last synced: 14 Apr 2025

https://github.com/mwolff44/pi-secured-setup

Secure setup and permission hardening extension for the Pi coding agent.

coding-agent hardening permissions pi pi-extension policy security skill-verification

Last synced: 06 Jul 2026