Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/goncalor/cve-ark
All published CVE and their recent changes, ready to be used by humans and machines
cve security security-vulnerability
Last synced: 12 Jul 2025
https://github.com/virtualzone/jwt-auth-proxy
A lightweight JWT authentication proxy written in Go designed for use in Docker/Kubernetes environments.
2fa auth-provider auth-proxy authentication docker jwt jwt-authentication jwt-middleware jwt-server jwtauth kubernetes proxy proxy-auth proxy-server refresh-tokens security security-provider signup totp two-factor-authentication
Last synced: 12 Sep 2025
https://github.com/tarcisio-marinho/a-deep-learning-approach-to-web-application-firewall
Avoid malicious payloads in your webapp with machine learning!
evasion firewall hacktoberfest hacktoberfest2020 machine-learning payload security security-audit security-tools web-application-firewall
Last synced: 12 Jul 2025
https://github.com/vs4vijay/exploits
Exploits R&D
blueducky bluekeep buffer-overflow c99 cve exploit exploits heap-overflow heartbleed infosec lpe pentest pentesting poc rce red-team security shell stack-overflow
Last synced: 29 Apr 2025
https://github.com/seemoo-lab/wisec2017_nexmon_jammer_demo_app
This project contains source code of our Nexmon-based jammer app presented as a demo at WiSec 2017.
android-application jamming nexmon security wireless
Last synced: 05 Apr 2025
https://github.com/itaynir1/brute-force
This project is a Python script for conducting a brute-force attack on a login page. It takes a target URL, a username, and a password file as inputs, attempting to find the correct password through successive login attempts.
automation brute-force-attack command-line-tool ethical-hacking http-requests login-page password-cracking password-management python-libraries python-script requests security term-colors user-authentication web-application-testing web-development web-scraping web-security
Last synced: 01 May 2025
https://github.com/paulveillard/cybersecurity-cryptography
A collection of awesome software, libraries, documents, books, resources and cool stuff about cryptography in Cybersecurity.
appsec aws-security azure-security bitcoin crypto cryptocurrencies cryptocurrency cryptocurrency-exchanges cryptography cyber-security cybercrime docker-security ethereum gcp-security ibm-security kubernetes-deployment nft-marketplace nfts security workload-security
Last synced: 10 Apr 2025
https://github.com/firesphere/silverstripe-graphql-jwt
JWT Authentication for GraphQL
anonymous-tokens authentication authentication-middleware cors graphql hacktoberfest headless jwt rsa-key security signer-key
Last synced: 18 Jul 2025
https://github.com/carverauto/threadr
🌎 OSS Real-time AI Data Analysis with GraphDB integration. 🔍
event-driven-architecture generative-ai graphdb intelligence-gathering message-broker ml property-g security social-network-analysis
Last synced: 30 Apr 2025
https://github.com/realorangeone/django-sri
Subresource Integrity for Django
django security sri subresource-integrity
Last synced: 08 May 2025
https://github.com/thatsinewave/spy.pet-info
This repository serves as an index for all info the community has gathered on the Spy.pet situation and as well as my own tables and tools written for these investigations. Spy.pet was taken down by Discord on 11.08.2024, this is just an archive of what bots where in each server.
bot bots database discord discord-api discord-bot discord-data discord-py discord-token scrape scraper scraping scraping-websites scrapper security security-scanner security-tools spy-pet spypet thatsinewave
Last synced: 30 Apr 2025
https://github.com/turbot/flowpipe-samples
Flowpipe sample mods, demonstrating common pipeline patterns and how to use the Flowpipe library mods. Run directly or use as examples for your own pipelines.
automation cloud devops flowpipe flowpipe-mod hacktoberfest hcl low-code orchestration security workflow
Last synced: 25 Feb 2026
https://github.com/privacyidea/adfs-provider
Authentication provider for Microsoft AD FS to use with privacyIDEA.
2fa adfs authentication mfa multi-factor-authentication security
Last synced: 03 May 2025
https://github.com/alex-ilgayev/secfeed
AI-Powered Security Feed in Real Time
ai devsecops golang llm ollama openai rss security security-feeds threat-feeds threat-intelligence
Last synced: 12 Apr 2025
https://github.com/mainframe-renewal-project/sear
SEAR (Security API for RACF) - A unified and standardized interface to RACF callable services.
api ibmz ibmzsystems mainframe mainframe-security racf security zos
Last synced: 06 Mar 2026
https://github.com/grapheneos-archive/kernel_msm-coral
Kernel sources for the Pixel 4, Pixel 4 XL and Pixel 4a.
android grapheneos privacy security
Last synced: 13 Apr 2025
https://github.com/fortify/webinspectautomation
Sample Python script for automating WebInspect scans and pushing results to SSC
application-security appsec dast dynamic-analysis fortify fortify-integration-sample fortify-sc-dast fortify-webinspect postman sample security selenium
Last synced: 02 Sep 2025
https://github.com/debfx/runjail
ad-hoc sandboxes on Linux
linux sandbox seccomp security
Last synced: 21 Jan 2026
https://github.com/sqlsec/intranetsecurity
内网安全从零开始红队教程,这可能是国内最系统最适合小白的内网安全教程。
Last synced: 22 Apr 2025
https://github.com/plazmaz/liquidhoney
A small, fluid, low-interaction honeypot
honeypot low-interaction monitoring security tcp udp
Last synced: 23 Apr 2025
https://github.com/enigmatikk/torch
Torch is a fast, secure, and production-ready web framework for Rust. Built on Tokio and Hyper, it provides everything you need to build modern web applications with minimal configuration.
async backend hyper middleware performance rest-api rust security tokio tokio-rs web-framework
Last synced: 14 Oct 2025
https://github.com/selective-php/archive-bomb-scanner
Archive bomb scanner
archive-bomb-scanner php png png-bomb-scanner png-bombs rar-bomb rar-bomb-scanner security zip-bomb zip-bomb-scanner
Last synced: 16 Aug 2025
https://github.com/rouanw/npm-audit-helper
Helps you understand and work through npm audit results
npm npm-audit security security-vulnerability
Last synced: 24 Apr 2025
https://github.com/uzyn/passcay
🦎🔑 Secure & fast Passkey (WebAuthn) library for Zig
authentication passkey relying-party security webauthn zig zig-package ziglang
Last synced: 13 Jun 2025
https://github.com/nodesource/nscm
The NodeSource Certified Modules command line utility
certified-modules certified-packages cli modules nodejs nodesource npm nscm packages security whitelist
Last synced: 14 Jan 2026
https://github.com/may215/koa-protect
Security module for koa applications
koa nodejs security sql-injection xss
Last synced: 10 Jul 2025
https://github.com/kosasih/pi-sentinel
Standing watch over the Pi Network, PiSentinel is a consensus algorithm that safeguards security, decentralization, and scalability.
pi-network pi-network-ecosystem security
Last synced: 22 Jun 2025
https://github.com/manuelberrueta/urlyzer
urlyzer is a URL parsing analysis tool.
application-security applicationsecurity appsec appsec-tools blueteam blueteam-tools bugbounty dfir offensivesecurity pentesting redteam redteam-tools redteaming security security-automation security-tools url url-parsing urls web-security
Last synced: 23 Jun 2025
https://github.com/0x4f53/dnscovery
Discover services embedded in a site's DNS records
blackhat cloud cloudflare dig dns golang golang-application google osint-tool osint-tools penetration-testing penetration-testing-tools pentesting pentesting-tools security security-tools service-discovery txt txt-record txt-records
Last synced: 30 Apr 2025
https://github.com/hardenedlinux/lego-hardening
Hardening your OS/Profile is like building with LEGO, incorporating a couple of Grsecurity features and implementing aggressive security settings
apparmor hardening linux nixos nixos-config security
Last synced: 22 Apr 2025
https://github.com/smallstep/clients
Various client examples for getting TLS certificates from a Smallstep CA server
Last synced: 18 Aug 2025
https://github.com/DreamDevourer/NT-Optimizer
Post Install Windows Scripts, optimized for NT Kernel 10+
debloat debloat-files debloat-script debloater nt-kernel ntkernel optimization optimizer privacy security windows
Last synced: 05 May 2025
https://github.com/ctnkaan/postman-sentinel
Postman Sentinel (Previously Postman Student Helper) is the Discord Bot that specializes in server security. It also has some fun commands to lighten up the mood. This bot has blocked more than 900 attacks!
bot discord discord-bot discord-js discrodjs javascript nodejs postman security typescript
Last synced: 23 Jun 2025
https://github.com/codingchili/enigmatic-mouse
The enigmatic mouse will keep your passwords safe - password manager on Android in Kotlin.
android android-application kotlin password-generator password-manager passwords security
Last synced: 11 Aug 2025
https://github.com/yojiwatanabe/networkalarm
A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.
hack-detection network-capture network-monitoring networking pcap scanning security security-automation security-scanner security-vulnerability
Last synced: 11 May 2025
https://github.com/JuliaLang/SecurityAdvisories.jl
The Julia Security Advisory Database
Last synced: 06 Apr 2026
https://github.com/Perufitlife/supabase-security-skill
Open-source Supabase security auditor: detects RLS-disabled tables, public buckets, exposed SECURITY DEFINER functions. Active anonymous probe confirms each leak with the anon key.
audit auditor cli devsecops leak mit-license nodejs open-source penetration-testing postgres rls scanner security security-audit supabase typescript vulnerability
Last synced: 25 Jun 2026
https://github.com/tolitius/hubble
hubbling the universe nebula by nebula
clojure configuration consul security vault
Last synced: 23 Apr 2025
https://github.com/matchilling/aws-kms-boilerplate
🔐 This repository contains the example code for the blog post "Painlessly storing security sensitive data using AWS KMS and OpenSSL"
aws-kms encryption key-management openssl security
Last synced: 02 Apr 2025
https://github.com/jasondrawdy/shellgen
Dynamic and extensible shell code generator with multiple output types which can be formatted in binary, hexadecimal, and the typical shellcode output standard.
cryptography dotnet dynamic generator library security shellcode utilities
Last synced: 22 Apr 2025
https://github.com/tankerhq/sdk-native
Tanker C++ / C encryption SDK
c c-plus-plus cryptography encryption end-to-end privacy sdk security tanker
Last synced: 09 Apr 2025
https://github.com/christosgalano/skaleql
sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Log Analytics Workspaces.
automation azure devops devsecops github-actions kql kusto-query-language log-analytics security template-repository
Last synced: 07 Mar 2026
https://github.com/mk-fg/acme-cert-tool
Simple one-stop tool to manage X.509/TLS certs and all the ACME CA authorization stuff
acme-client certificates cryptography letsencrypt python security sysadmin tls tool web-pki x509
Last synced: 23 Apr 2025
https://github.com/containers/space-grade-linux
Space Grade Linux is an advanced Linux-based operating system designed to meet the rigorous demands of aerospace, satellite, and other high-reliability environments.
autonomous cubesat cubesatellite cubesats kernel linux qm security space spaceship
Last synced: 06 Oct 2025
https://github.com/hcl-tech-software/appscan-codesweep-action
Integrate static security testing with HCL AppScan CodeSweep with Github.
action appscan codesweep github github-actions sast scanning security security-automation security-scanner security-testing security-tools
Last synced: 19 Apr 2025
https://github.com/pelock/radio-code-calculator-python
Radio Code Calculator is an online service along with Web API & SDK for generating car radio unlock codes for popular vehicle brands.
anti-theft car car-hacking navigation python radio radio-code radio-codes security unlock vehicle
Last synced: 30 Jul 2025
https://github.com/bl4ck44/sandboxed
Menú de herramientas para análisis de malware y virus informáticos.
analysis bash bash-script linux python python3 remnux sandbox sandboxed security security-tools
Last synced: 12 Aug 2025
https://github.com/sagi/node-dns-over-tls
DNS-over-TLS API for Node.js
dns dns-over-tls dnstls nodejs privacy security tls
Last synced: 05 May 2025
https://github.com/nirmata/kyverno-policies
Curated Kyverno Policy Sets from Nirmata
kubernetes kyverno policy-as-code security
Last synced: 22 Sep 2025
https://github.com/sozercan/guac-ai-mole
🥑 Inspect and understand an organization's software supply chain that enables stakeholders to make actionable decisions about software supply chain security
ai chatgpt gpt-4 guac openai sbom secure-supply-chain security security-tools streamlit supply-chain-security
Last synced: 28 Sep 2025
https://github.com/yosaiproject/yosai_alchemystore
SQLAlchemy-enabled Account Store for Yosai that features a flat Role-Based Access Control (RBAC) data model
Last synced: 14 Jan 2026
https://github.com/vincd/savoir
Savoir is a tool to perform tasks during internal security assessment
kerberos pentesting security windows
Last synced: 20 Jan 2026
https://github.com/kasukusakura/kimiroyli
Kimiroyli 是一个致力于 JVM 安全的安全管理框架, 致力于保护整个系统不受恶意外部代码攻击 (WIP)
Last synced: 26 Apr 2025
https://github.com/fortify/ssc-restapi-client
Communicate with Fortify Software Security Center through REST API in java, a swagger generated client
api api-client application-security fortify fortify-api fortify-ssc integration openapi security
Last synced: 08 Apr 2026
https://github.com/oktadev/okta-microservice-security-examples
Demos from Oktane18: API and Microservices Best Practices
microservices microservices-architecture oauth okta secure-microservices security spring-boot
Last synced: 11 Apr 2025
https://github.com/cipherstash/encrypt-query-language
Index and search encrypted data in PostgreSQL with SQL
encryption encryption-in-use postgres postgresql security
Last synced: 09 Apr 2025
https://github.com/xi/ximatrix
filter net requests according to source, destination and type
ad-block firefox-extension security umatrix webextension
Last synced: 29 Jul 2025
https://github.com/adrianlshaw/lightverifier
Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜
attestation hacktoberfest ima security security-audit tcg tpm tpm-quote
Last synced: 01 Apr 2025
https://github.com/mikaelvesavuori/better-apis-workshop
Workshop and demo for improving API quality, stability, and observability.
apis aws demo learning observability quality security serverless stability workshop
Last synced: 21 Mar 2025
https://github.com/m3ssap0/wordpress-really-simple-security-authn-bypass-exploit
Exploits Really Simple Security < 9.1.2 authentication bypass (CVE-2024-10924).
cve-2024-10924 exploit really-simple-security security security-tools vulnerability vulnerability-scan wordpress
Last synced: 31 Jul 2025
https://github.com/veinar/envcloak
A secure and easy-to-use tool for managing sensitive data with built-in encryption, decryption, and key management. Protect your secrets during development, testing, and deployment with CLI command + Python library support.
cicd cicd-pipeline cli-tool decryption devops encryption encryption-decryption env environment-variables python-library secret-management secret-sharing secrets security sensitive-data-security tool tooling tools validation
Last synced: 11 Sep 2025
https://github.com/reinershir/lui-auth
一个使用简单的安全防护、权限验证、身份验证工具,无复杂配置,只需依赖jar并简单配置即可使用,目前拥有功能:角色、菜单、权限集成管理,IP限流,内部服务双向验证、自动打印请求日志等。 A simple and secure protection tool that is easy to use, with permission verification and identity authentication. No complex configuration is required, just rely on the jar file and simple configuration to use it.
authentication-backend lui-auth modified-preorder-tree-traversal permission security
Last synced: 14 Jan 2026
https://github.com/npalm/supply-chain-security-talks
security supply-chain-security talks
Last synced: 26 Apr 2026
https://github.com/melonattacker/threat-thinker
AI-powered threat modeling that turns architecture diagrams into actionable risks
architecture diagrams python risk-analytics security security-tools threat-analysis threat-modelling
Last synced: 02 Apr 2026
https://github.com/frozenassassine/easepass
A powerful but simple, password manager that stores all your passwords locally and offline. Written in C# WinUI3
2fa-client 2factor app csharp password password-manager passwordmanager security totp windows winui3
Last synced: 23 Aug 2025
https://github.com/lirantal/express-security-txt
A Node.js middleware for Express that implements Security.txt - A Method for Web Security Policies
express hacktoberfest nodejs security
Last synced: 05 May 2025
https://github.com/restuwahyu13/jwt-transform
Transform your real jwt token into fake jwt token.
algorithm base64 browser cryptography decrypt encrypt hex javascript jwt jwt-transform node nodejs security security-tools typescipt typescript
Last synced: 07 May 2025
https://github.com/danieljustus/symaira-vault
🔐 The password manager for terminal users and AI agents. Age-encrypted, keyring-cached, MCP-ready. Zero telemetry.
age-encryption agent-skills ai-agents claude-code cli codex-cli golang hermes-agent hermes-skill mcp mcp-server openclaw openclaw-skill opencode own-your-data password-manager security
Last synced: 11 Jun 2026
https://github.com/sap-samples/cross-language-detection-artifacts
This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment, the list of identified malicious packages, and the scripts necessary to replicate and verify our results.
machine-learning open-source sample sample-code security
Last synced: 13 Apr 2025
https://github.com/systemli/mail-tls-helper
Postfix helper for mandatory TLS
postfix postfix-helper python security tls
Last synced: 12 Jul 2025
https://github.com/r3dhulk/bash-for-ethical-hackers
Bash For Ethical Hacking
bash bash-script bash-scripting bashforethicalhacking blackhat blackhathacker blackhathacking cyber-security cybersecurity ethical-hacking hack hacking hacking-tool hacking-tools hackingtools protection security shell shell-script
Last synced: 30 Apr 2025
https://github.com/MindPatch/pmg
Extract parameters/paths from urls
bugbounty bugbounty-tool bughunting python regex security
Last synced: 11 Jul 2025
https://github.com/t2minator/mbp-tails
How to get Tails working on T2 Apple device (e.g. 2019 MacBook Pro) without needing external keyboard/mouse.
anonymity anonymous apple apple-t2 chroot debian debian-linux kernel linux linux-kernel macbook macbookpro macbooks mpb privacy security t2 t2tails tails tor
Last synced: 09 Jul 2025
https://github.com/ko-ko-ko/php-assert
Fast flexible php assert
assert php security validation
Last synced: 11 Jan 2026
https://github.com/apache/airavata-custos
Apache Airavata Custos Security
airavata apache authentication authorization oauth2 openidconnect security
Last synced: 12 Sep 2025
https://github.com/ctxz/mkauthdocs
A tool made to implement simple authentication on top of mkdocs builds.
auth authentication credentials login mkdocs security
Last synced: 21 Mar 2025
https://github.com/natainditama/democra
🗳️ Advanced modern voting system
application authentication backend code-quality codeigniter codeigniter4 database-management election frontend modernvoting mvc mysql onlinevoting php security user-interface voting-system votingapp votingsystem web-development
Last synced: 12 Apr 2025
https://github.com/yallxe/hogg
Common vulnerability scanning on steroids ☄️
dns exploit network proxy rust rust-lang scanner secrets security sniffer vulnerabilities webscanner
Last synced: 19 Jul 2025
https://github.com/xi/xiMatrix
filter net requests according to source, destination and type
ad-block firefox-extension security umatrix webextension
Last synced: 26 Mar 2025
https://github.com/polymer/polymer-resin
XSS mitigation for Polymer webcomponents that uses safe html type contracts
polymer security webcomponents xss
Last synced: 02 May 2025
https://github.com/agent-receipts/obsigna
Agent Receipts — cryptographically signed audit trails for AI agent actions. Protocol spec, SDKs (Go, TypeScript, Python), and MCP proxy.
agent-receipts ai ai-agents audit cryptography ed25519 golang mcp model-context-protocol python receipts security typescript verifiable-credentials w3c-vc
Last synced: 12 Jun 2026
https://github.com/bedrocksystems/nova
NOVA Microhypervisor
aarch64 cplusplus hypervisor kernel microhypervisor microkernel performance security virtualization x86-64
Last synced: 11 Apr 2025
https://github.com/monish-khatri/security-headers
Package provides a minimal and simple integration to attach OWASP security headers for building a secure Laravel application.
composer-package laravel owasp-top-10 php8 security security-headers
Last synced: 10 Apr 2025
https://github.com/akshatvg/vulnerability-testing-solutions
Website for testing and preventing different attacks like XSS, SQL Injection & Spoofing for Nasscom (ISAA) Project.
audit cyber-security security spoofing sql-injection testing vulnerability website xss
Last synced: 11 Apr 2025
https://github.com/checkmarx/ast-vscode-extension
The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
checkmarx checkmarx-ast security vscode-extension
Last synced: 02 Apr 2026
https://github.com/thejefflarson/soundcheck
Simple security reviews for AI agents
Last synced: 10 Jun 2026
https://github.com/crowdsecurity/php-cs-bouncer
The official PHP bouncers library for the CrowdSec LAPI
anti-hacking ban-hosts ban-management captcha captcha-generation captcha-generator captcha-image captcha-service crowdsec firewall hacker-protection ip-address ip-blocker ip-blocking ip-database ip-range-check php security
Last synced: 16 Feb 2026
https://github.com/airlock/microgateway
Artifacts for Airlock Microgateway, a Kubernetes native WAAP (Web Application and API Protection) solution to protect microservices.
airlock cilium ergon gateway-api istio k8s kubernetes kubernetes-operator microgateway openshift security waap waf web-application-security
Last synced: 13 May 2026
https://tersesystems.github.io/ocaps/
Object capability (ocap) tools and macros for Scala.
access capabilities capability ocap scala security
Last synced: 23 Sep 2025
https://github.com/sebastienrousseau/password-generator
A fast, simple, and powerful open-source utility tool for generating strong, unique, and random passwords. The Password Generator supports various types of passwords including base64-encoded, memorable, and complex strong passwords.
crypto cryptography dictionary dictionary-tools generator javascript memorable-passphrases memorable-passwords nodejs npm passgen passgenerator password password-generator passwords security security-tools yeoman
Last synced: 16 Mar 2025
https://github.com/tersesystems/ocaps
Object capability (ocap) tools and macros for Scala.
access capabilities capability ocap scala security
Last synced: 08 Mar 2026