An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/k--chow/solana-security

A compilation of solana security resources.

auditing ethereum security smart solana

Last synced: 11 Mar 2025

https://github.com/offa/keygen

KeyGen is a generator for keys and passwords.

c c11 cmake key-generator openssl password-generator security

Last synced: 14 May 2025

https://github.com/syss-research/icebreaker-glitcher

Simple voltage glitcher implementation for the iCEBreaker FPGA board

fpga glitching ice40 ice40up5k icebreaker it-security security security-tools security-vulnerability tool

Last synced: 04 Sep 2025

https://github.com/anotherhadi/github-recon

Retrieves and aggregates public OSINT data about a GitHub user using Go and the GitHub API. Finds hidden emails in commit history, previous usernames, friends, other GitHub accounts, and more.

cybersecurity github osint recon security

Last synced: 30 Aug 2025

https://github.com/3nock/ote-templates

Community curated list of templates for the OSINT template engine.

attack-surfaces bugbounty fingerprinting osint recon security templates

Last synced: 09 Feb 2026

https://github.com/mondoohq/samples

Security Scanning Samples with cnspec, cnquery, and Mondoo Platform

hacking protect samples security security-as-code

Last synced: 19 Mar 2026

https://github.com/owtf/http-request-translator

HTTP Request Translator (hrt) translates raw HTTP requests to different scripts (bash, python, etc.)

owasp owtf pentesting python security

Last synced: 17 Mar 2026

https://github.com/karib0u/rustinel-rules

Official, curated detection content (Sigma, YARA, IOC packs) for the Rustinel endpoint detection engine.

blue-team detection-as-code detection-engineering edr incident-response ioc mitre-attack rustinel security sigma threat-detection yara

Last synced: 29 Jun 2026

https://github.com/sinewaveai/prooflayer-rules

Open-source runtime security rules engine for MCP servers and AI agents. Detects prompt injection, command injection, jailbreaks, and data exfiltration.

ai-agents ai-security mcp mcp-protocol prompt-injection runtime-security security

Last synced: 16 Jun 2026

https://github.com/jenkinsci/authorize-project-plugin

Run a job with specified authorization

adopt-this-plugin jenkins-plugin security

Last synced: 11 May 2026

https://github.com/sighupio/trivy-offline

Trivy offline builder. Fits perfectly in your CI System

cicd drone hacktoberfest quay sdlc security trivy

Last synced: 11 Mar 2025

https://github.com/inspexco/scstg

Smart Contract Security Testing Guide (SCSTG)

best-practices blockchain defi guide security smart-contracts solidity

Last synced: 14 Aug 2025

https://github.com/vmagamedov/security-framework

Step-by-step personal cybersecurity guide

2fa fido2 security yubikey

Last synced: 18 Jan 2026

https://github.com/CharlesAverill/DEFFS

Distributed, Encrypted, Fractured File System - A custom distributed file system written in C with FUSE

filesystem fuse linux security

Last synced: 06 Mar 2025

https://github.com/thomasmerz/pihole-wireguard-knowhow

My Setup for Pi-hole at home and in the cloud to be used with WireGuard for the whole family.

anti-ads anti-malware anti-spyware anti-surveillance anti-tracking dns privacy security vpn

Last synced: 01 Apr 2025

https://github.com/nccgroup/yocto-whitepaper-examples

Example code included in the "Improving Your Embedded Linux Security Posture with Yocto" whitepaper

linux openembedded security yocto

Last synced: 26 Apr 2025

https://github.com/zaproxy/action-af

A GitHub Action for running ZAP Automation Framework plans

actions dast devsecops github-actions security

Last synced: 30 Jun 2025

https://github.com/lahirulhr/nova-lock-screen

Simple lock screen feature to Laravel nova dashboard

laravel lock nova php security

Last synced: 11 Jun 2025

https://gitlab.com/i2pplus/I2P.Plus

I2P+ is a soft-fork of the Java I2P Anonymizing Network Layer. License: AGPL v.3 https://i2pplus.github.io/

anonymity privacy security

Last synced: 13 Jun 2025

https://github.com/ntkme/security-trust-settings-tools

:lock: OS X Keychain Trust Settings Tools.

certificate macos security

Last synced: 28 Jul 2025

https://github.com/tijme/binaries

A mirror of several precompiled standalone red-teaming tools.

binaries cyber hacking mirror precompiled redteam security standalone tools

Last synced: 25 Apr 2025

https://github.com/vita-group/random-shuffling-backdoordetect

[NeurIPS 2022] "Randomized Channel Shuffling: Minimal-Overhead Backdoor Attack Detection without Clean Datasets" by Ruisi Cai*, Zhenyu Zhang*, Tianlong Chen, Xiaohan Chen, Zhangyang Wang

backdoor-attacks deep-learning python pytorch security trojan

Last synced: 19 Apr 2025

https://github.com/rmbolger/pwnedpasscheck

Check passwords and hashes against the haveibeenpwned.com Pwned Passwords API using PowerShell

haveibeenpwned hibp infosec powershell powershell-module security

Last synced: 04 Jul 2025

https://github.com/syntatis/wp-feature-flipper

🚥 Disable Comments, Gutenberg, Emojis, and other features you don't need in WordPress®

comments emojis gutenberg media-library rss-feed security wordpress-plugin wp-admin xmlrpc

Last synced: 10 Oct 2025

https://github.com/valtteril/go-implant

A flexible cross-platform post-exploitation agent written in Go with basic functionalities

backdoor payload pentest post-exploitation rat redteam remote-access remote-admin-tool reverse-shell security

Last synced: 14 Jan 2026

https://github.com/000pp/extensions-wordlist

🔍 Improve your files enumeration with specific extensions!

extension extensions files pentest security wordlist wordlists

Last synced: 12 Nov 2025

https://github.com/azureanimations/azureanimations.github.io

Azure Animations, where we make hard-to-understand Azure cloud concepts easier and more fun to learn!

ai azure copilot devops microsoft openai security

Last synced: 30 Jun 2025

https://github.com/ait-testbed/attackmate

AttackMate is an attack orchestration tool that executes full attack-chains based on playbooks.

api attack automation automation-framework cybersecurity exploit metasploit orchestration pentest python redteam rootkit security sliver testbed training

Last synced: 22 Apr 2025

https://github.com/sassman/srp6-rs

A safe implementation of the secure remote password authentication and key-exchange protocol (SRP and SRP6a)

authentication cryptography pki protocol rust secure-remote-password security srp srp-6a

Last synced: 19 Apr 2026

https://github.com/apal21/target-blank-vulnerabilities-features

Examples of some features and the vulnerabilities that can exploit any webpage if target="_blank" is used without rel="noopener"

css html javascript security vulnerability

Last synced: 14 Apr 2025

https://github.com/krishealty/hidemeplease

HideMePlease is a new generation tool to hide phising web links into legitimate web links with original domains (eg: facebook.com, instagram.com) using ccTLD Disguise method.

cybersecurity hacking hacking-tool hacking-tools phishing-script phising phising-link security vulnerability

Last synced: 14 Jul 2025

https://github.com/charlesaverill/deffs

Distributed, Encrypted, Fractured File System - A custom distributed file system written in C with FUSE

filesystem fuse linux security

Last synced: 24 Jul 2025

https://github.com/koukyosyumei/rhoevm

symbolic EVM execution engine written in Rust

evm formal-methods rust security smart-contracts symbolic-execution

Last synced: 13 Oct 2025

https://github.com/julien731/authpress

Add 2-factor authentication to your WordPress blog site.

2fa authy security wordpress wordpress-plugin

Last synced: 03 Aug 2025

https://github.com/wolfssl/wolfhsm

HSM library that uses wolfCrypt as it's fallback crypto

aurix automotive autosar cryptography hardware-security-module hsm pkcs11 rh850 security tricore

Last synced: 27 Apr 2025

https://github.com/atrexus/ws-watcher

A PoC application that detects unauthorized external access to select memory regions.

cpp memory-management security windows x64

Last synced: 14 Apr 2025

https://github.com/itinerisltd/trellis-disable-xml-rpc

Disable WordPress XML RPC on Trellis sites

ansible-galaxy security trellis wordpress xml-rpc

Last synced: 24 Apr 2025

https://github.com/pfirmstone/jgdms

Infrastructure for providing secured micro services, that are dynamically discoverable and searchable over ipv6 networks

distributed-computing iot java osgi-services security

Last synced: 10 Apr 2025

https://github.com/bird-house/twitcher

Security Proxy for Web Processing Services (WPS)

certificates oauth ogc proxy pyramid python security wps x509

Last synced: 21 Aug 2025

https://github.com/jojonas/db_nmap

Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.

metasploit metasploit-framework networks nmap security

Last synced: 14 Jan 2026

https://github.com/hovancik/bsdsec

deadsimple BSD Security Advisories and Announcements

advisories announcements bsd dragonfly freebsd midnightbsd netbsd openbsd pfsense security

Last synced: 13 Apr 2025

https://github.com/doshareme/desktop

Personal Cloud Storage and File Management Solution with Privacy and Security

ai file-manager javascript open-source privacy rust security self-hosting

Last synced: 12 Apr 2025

https://github.com/brickmakersgmbh/aspsecurityheaders

A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers

asp-net asp-net-core brickmakers csharp csp dotnet dotnet-core hsts http-headers https security security-headers

Last synced: 24 Apr 2025

https://github.com/alexylon/ferrocrypt

FerroCrypt is a pure Rust library, CLI, and desktop application for encrypting and decrypting files and directories using password-based or key-pair-based encryption.

cli cryptography decryption encryption file-encryption gui hybrid-encryption rust rust-lang rustlang security security-tools slint symmetric-encryption

Last synced: 24 May 2026

https://github.com/shelld3v/python-shell-cheat-sheet

Full python reverse shell and bind shell payloads

bind-shell cheat-sheet exploit hacking python python3 reverse-shell security shell

Last synced: 01 May 2026

https://github.com/cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 04 Apr 2026

https://github.com/phylum-dev/vuln-reach

A library for building tools to determine if vulnerabilities are reachable in a code base.

cve security vulnerabilities

Last synced: 13 Oct 2025

https://github.com/psecio/secure-api

Repository for the "Building a Secure API" series on Websec.io

api php security training tutorial websecio

Last synced: 11 Apr 2025

https://github.com/HappyHackingSpace/vt

Vulnerable Target (VT) is a specialized tool designed for security professionals, researchers, and educators that creates intentionally vulnerable environments across multiple platforms.

cybersecurity repl security vulnerable

Last synced: 02 Apr 2026

https://github.com/gousaiyang/pickleassem

A simple pickle assembler to make handcrafting pickle bytecode easier.

assembler bytecode ctf exploit pickle security security-tools

Last synced: 13 Apr 2025

https://github.com/spinoco/fs2-crypto

Crypto support for fs2

fs2 https security security-tools ssl tls

Last synced: 29 Oct 2025

https://github.com/shadawck/mitrecve

Get all cve corresponding to a specific keyword or a list of keywords from the mitre database (https://cve.mitre.org/)

api cli cve cve-scanning cve-search dependencies mitre mitre-api mitre-attack security security-scanner security-tools

Last synced: 13 Apr 2025

https://github.com/blackducksoftware/opssight-connector

OpsSight Connector documentation

cloud-native kubernetes ops pod security

Last synced: 10 Apr 2025

https://github.com/simeononsecurity/firefox-security-researcher

Configure FireFox with Security and Intelligance features for OSINT and Security Investigations.

security

Last synced: 29 Oct 2025

https://github.com/jakbin/flask-tor

Host your flask website on tor using flask-tor.

flask onion onion-service onionshare python security tor tor-onion-service

Last synced: 12 Apr 2025

https://github.com/julien731/AuthPress

Add 2-factor authentication to your WordPress blog site.

2fa authy security wordpress wordpress-plugin

Last synced: 02 Apr 2025

https://github.com/jaybrown/disable-and-toggle-webrtc-in-macos-safari

System hack to disable and toggle WebRTC in macOS Safari

disable enable libwebrtc macos osx privacy safari security sip toggle webkit webrtc

Last synced: 15 May 2026

https://github.com/jeziellago/appclonedetector

Kill app if it is running under a cloned environment in Android device.

android clone detector kotlin kotlin-android security

Last synced: 07 May 2025

https://github.com/toktok/btox

Official TokTok mobile Tox client

android cryptography encryption ios network p2p security toxcore web

Last synced: 30 Apr 2025

https://github.com/xtekky/simple-sig

Simple Signature to secure your website's traffic with backend validation api

http-signature http-signatures javascript obfuscation security signature signature-verification web-security

Last synced: 10 Apr 2025

https://github.com/cybozu/prompt-hardener

Prompt Hardener is a tool designed to evaluate and enhance the securify of system prompts for RAG systems.

ai generative-ai llm security security-tools system-prompt-hardener

Last synced: 28 Apr 2025

https://github.com/banhao/autospamemailscan

AutoSpamEmailScan.ps1 is used to monitor a specific mailbox that enterprise users can forward suspicious spam emails to a specific mailbox.

automation esa ews-api google-safe-browsing ironport mdatp minemeld phishing phishing-detection quarantine securex security security-automation soar spam spam-detection spam-emails virustotal workflow

Last synced: 26 Apr 2025

https://github.com/aquiladev/remix-mythx-plugin

The plugin allows executing security check via MythX in Remix IDE

ethereum mythx plugin remix security smart-contracts solidity

Last synced: 06 May 2025

https://github.com/UKHomeOffice/policy-admission

Kubernetes admission controller

admission-controllers kubernetes security

Last synced: 12 Jul 2025

https://github.com/sap-samples/s4hana-hana-audit-policies

Templates for SAP HANA audit policies of SAP S/4HANA systems.

audit s4hana sample sap-hana sap-s4hana security templates

Last synced: 05 Mar 2025

https://github.com/esadcetiner/secure-nginx-config

Fast and Secure by default Nginx configuration template

cis-benchmark cis-hardening https nginx ocsp-stapling security ssl tls

Last synced: 26 Apr 2025

https://github.com/m-mizutani/dns-gazer

DNS passive monitoring tool

cpp dns fluentd libpcap packet-sniffer security

Last synced: 27 Apr 2025

https://github.com/JosephTLucas/lintML

A security-first linter for code that shouldn't need linting

linter machine-learning security

Last synced: 18 Apr 2025

https://github.com/reverseapple/dgraph

Visualizing Mach-O Loads Recursively using Graphviz

apple executable graph macho reverse-engineering security

Last synced: 09 Apr 2025

https://github.com/daltonmenezes/discord-malicious-domains

🤖 A list of malicious domains on Discord using the Discord Guardian Action.

discord domains json malicious-domains security

Last synced: 29 Oct 2025

https://github.com/ukhomeoffice/policy-admission

Kubernetes admission controller

admission-controllers kubernetes security

Last synced: 08 Apr 2025

https://github.com/checkedc/checkedc-llvm-project

This was a fork of Checked C clang used from 2021-2024. The changes have been merged into the original Checked C clang repo, which is now at https://github.com/checkedc/checkedc-clang.

c clang compilers llvm security

Last synced: 13 Jul 2025

https://github.com/pgrls/pgrls

Static analyzer for Postgres Row-Level Security — 47 lint rules covering tenant and per-user row-scoping bugs, performance traps, and hygiene; 17 mechanically auto-fixable; semantic policy-diff command for CI gating; pytest plugin for RLS isolation tests.

ci linter multi-tenant postgres postgresql rls row-level-security security static-analysis supabase

Last synced: 30 Jun 2026

https://github.com/m-mizutani/lurker

Scalable security network sensor as low interaction honeypot

go honeypot monitoring packets security

Last synced: 01 Jul 2025

https://github.com/webpwnized/gcp-audit

GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks

audit benchmark cloud cybersecurity google platform scripts security

Last synced: 03 May 2025

https://github.com/dataplat/dbadisa

🦅 DISA STIG automation module for SQL Server

automation disa powershell security sqlserver stig

Last synced: 04 Apr 2025

https://github.com/pelock/stringencrypt-python

StringEncrypt allows you to encrypt strings and files using a randomly generated algorithm, generating a unique decryption code (so-called polymorphic code) each time in the selected programming language.

code-generation code-generator cryptography encryption encryption-tool file file-encryption polymorphic-engine python python-3 python3 security string string-encryption

Last synced: 13 Jun 2025

https://github.com/coinfabrik/scout-actions

Scout is an extensible open-source tool intended to assist smart contract developers and auditors detect common security issues and deviations from best practices. This GitHub Action allows you to incorporate Scout's analysis into every Pull Request.

audit auditing blockchain ink rust security smart-contract soroban static-analysis vulnerability-detection

Last synced: 30 Jun 2025

https://github.com/crowdstrike/container-image-scan-action

CrowdStrike Container Image Scan Github Action

cicd containers continuous-integration security

Last synced: 22 Jun 2025

https://github.com/openziti/ziti-sdk-js

A JavaScript-based SDK for delivering secure browser-based web applications over a Ziti Network

appsec javascript netsec openziti sdk security zero-trust zero-trust-network zero-trust-network-access zero-trust-security zerotrust ztna

Last synced: 29 Jul 2025