Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/ollionorg/aws-landing-zone
Leverage Ollion's AWS Landing Zone to deploy a secure, compliant foundation with ease. The repository contains an implementation of a secure and compliant landing zone pattern that will help expedite cloud migration for an enterprise in a heavily regulated industry.
aws aws-foundation-security-best-practices aws-landing-zone aws-landing-zones cis-aws-benchmark cloud-compliance cloud-security compliance foundation nist800-53 opa pci-dss security security-foundation
Last synced: 07 Apr 2025
https://github.com/ph7software/fake-admin-honeypot-v1.2
🍯 pH7CMS Modula to setup a honeypot fake Admin CP to secure your social/dating site. Basically it's a honeypot for the attackers/hackers and track their behaviour!
admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots module ph7cms ph7cms-module security
Last synced: 10 Jul 2025
https://github.com/hxr16f/antiav
Anti AntiVirus + Obfuscator - make any file undetectable.
anti-anti-virus antivirus converter obfuscate packer security
Last synced: 20 Jul 2025
https://github.com/wordpress-premium/wordfence
This repository is a mirror of the full version of Wordfence as hosted on GitLab. Wordfence is one of the most reliable security plugins for WordPress.
security wordfence wordpress wordpress-plugin
Last synced: 23 Apr 2025
https://github.com/vitalibo/api-gateway-authorization-service
api-gateway aws cloudformation cognito lambda security
Last synced: 12 Apr 2025
https://github.com/celenityy/better-cromite
My recommendations for the ultimate configuration of the Cromite Browser :)
adblock adblock-plus ads android android-application anti-fingerprinting anti-tracking aosp-android bromite bromite-adblock chromium chromium-browser cromite hardened hardening privacy privacy-protection security security-hardening tracking
Last synced: 09 Apr 2025
https://github.com/apache/security-site
Website sources for the Apache Security website
Last synced: 01 Mar 2026
https://github.com/oplik0/solo2-desktop
A GUI application for managing Solo v2 security keys
fido2 hacktoberfest security solokeys tauri u2f
Last synced: 24 Oct 2025
https://github.com/jedda/step-posture-connector
A middleware tool to assist step-ca with posture info during an ACME device-attest-01 challenge.
acme apple attestation go jamf-pro security tls x509
Last synced: 22 Jan 2026
https://github.com/kubearmor/kvm-service
Kubearmor Virtual Machine Service allows orchestrating policies to VMs and Bare-Metal environments using either k8s or non-k8s control plane.
bare-metal k8s kubearmor runtime security vm
Last synced: 23 Oct 2025
https://github.com/indeedsecurity/carbonbeat
event shipper for Carbon Black Defense notifications
beats carbonblack libbeat security
Last synced: 14 Jan 2026
https://github.com/jkomyno/nanoid
Golang port of ai/nanoid (originally written in JavaScript)
cryptography nanoid port random random-generator security
Last synced: 22 Jan 2026
https://github.com/brannondorsey/cve
A collection of vulnerabilities found through independent security research.
Last synced: 06 Mar 2026
https://github.com/jarmani/opentestbsd
OpenBSD as the ultimate platform for pentesting and security certification training! 🔒🚀
openbsd pentest pentesting security
Last synced: 24 Oct 2025
https://github.com/yasenstar/archimate_sabsa
Learn & Practice of Modeling SABSA with the ArchiMate Specification
archimate architect architecture compliance enterprise model modeling opengroup sabsa security specification
Last synced: 11 Feb 2026
https://github.com/mawg0ud/invismalware
A Malware Evasion Technique, shellcode generation, syntax modification, anti-dynamic analysis & PE header modification.
antivirus cybersecurity dynamic-analysis exploit infosec malware payload research security shellcode static-analysis threat
Last synced: 16 Oct 2025
https://github.com/nzt48/exploiting-smart-contract-vulnerabilities
Repository for "Exploiting smart contract vulnerabilities" bachelor thesis at School of Electrical Engineering, University of Belgrade. Paper (in Serbian) with 5 examples of vulnerable smart contracts and exploitation of them.
ethereum exploitation hacking security smart-contracts solidity
Last synced: 21 Apr 2026
https://github.com/imduffy15/k8s-gke-service-account-assigner
Provides different Google Service Accounts and Scopes for pods running on Kubernetes
google google-cloud-platform google-compute-engine google-kubernetes-engine iam kube2iam kubernetes security service-account
Last synced: 28 Jan 2026
https://github.com/edvincodes/instagramunfollowers
Instagram Unfollowers 2026: Free Script to see who isn't following you back. Safe, Open Source & No Login required. Works on Mobile & Desktop.
automation instagram instagram-follower instagram-followers instagram-following instagram-tool instagram-unfollowers javascript open-source privacy script security unfollow unfollowers
Last synced: 02 Apr 2026
https://github.com/simeononsecurity/apache-web-server-hardening
An collection of example configurations and scripts to aid administrators in configuring a hardened Apache Web Server
apache encryption hardening security ssl-certificates
Last synced: 01 Mar 2026
https://github.com/olivierlacan/opsec
Operational Security for everyone
educational operational opsec security
Last synced: 12 Feb 2026
https://github.com/josehelps/blackcert
Blackcert monitors Certificate Transparency Logs for a keyword. Blackcert collects any certificate changes for this keyword and also checks if any domain changes with that keyword look like a phishing domain.
certificate monitoring security
Last synced: 14 Apr 2025
https://github.com/turbot/steampipe-export
Steampipe Export is a zero-ETL CLI to fetch data from cloud services and APIs. Hundreds of plugins with thousands of documented examples.
aws azure backup data devsecops etl gcp golang kubernetes security steampipe steampipe-engine zero-etl
Last synced: 31 Jul 2025
https://github.com/solidc0re/solidcore-scripts
Hardening scripts for immutable Fedora
fedora fedora-kinoite fedora-silverblue hardened-fedora hardening hardening-settings security security-tools
Last synced: 08 Apr 2025
https://github.com/krishpranav/sniff
A Simple Golang Tool That Automates OSINT For Threat Intelligence And Mapping Your Attack Surface.
attack attack-defense attack-surface attack-surfaces bugbounty go golang recon reconnaissance scanner security web-security
Last synced: 14 Apr 2025
https://github.com/rodnt/portswiggerlabs
Solutions from @PortSwigger labs
infosec portswigger portswigger-labs security websecurity
Last synced: 25 Jul 2025
https://github.com/plumsydev/neptune-waf.app
Neptune is a Web Application Firewall that you can use to protect your domains against common attacks (XSS, SSRF, SQLI, Path Traversal) and many others, it also can be used to hide your web server backend IP and protect against most DDoS attacks, come visit us !
api api-security application ddos firewall http-proxy letsencrypt neptune neptunewaf owasp security tcp-proxy waap waf web web-application-firewall xss
Last synced: 13 Jan 2026
https://github.com/0xn0ne/sensitive-helper
基于正则表达式的本地文件敏感信息数据挖掘助手。Regular Expression Based Data Mining Assistant for Local File Sensitive Information.
aksk infomation jwt scanner security sensitive
Last synced: 11 Apr 2025
https://github.com/andrew-tsegaye/password_generator
A simple password generator app is a helpful tool for anyone who wants to improve the security of their online accounts and protect their sensitive information from potential breaches.
css3 html5 javascript password-generator security
Last synced: 28 Jul 2025
https://github.com/thecalcaholic/bash-utils
Various shell script utilities I've come to write over the years to make life easier
bash csv dyndns gcp gsutil inotify iperf3 keepass-mounter nautilus networking pulseaudio security utility
Last synced: 15 May 2025
https://github.com/clj-holmes/clj-holmes-rules
Open source rules used by clj-holmes.
Last synced: 03 Jul 2026
https://github.com/binarymist/dockersecurity-quickreference
:books: :whale: For DevOps Engineers :whale: :books:
application-security book books capabilities cgroups control-groups devops devsecops docker docker-security information-security infosec linux lsm namespaces seccomp security volumes web-application-security
Last synced: 16 May 2025
https://github.com/mh37/Argos
A passive WiFi tracking and profiling based on probe request frames.
linux pentesting probe-requests python reconnaissance security sniffing tracking wifi wireless
Last synced: 23 Jul 2025
https://github.com/ventz/docker-dns-over-https
Docker Hub ventz/dns-over-https - DNS (tcp+udp 53) to CloudFlare and Google's HTTPS APIs
api dns dns-over-https https proxy security
Last synced: 16 Sep 2025
https://github.com/m3nu/wp-audit
Audit the versions of your Wordpress sites to find old, vulnerable versions.
golang security security-audit security-tools wordpress
Last synced: 24 Oct 2025
https://github.com/piaudonn/SecurityNotifications
Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels, TAP usage...).
azure-ad azure-ad-identity-protection log-analytics-workspace security security-automation
Last synced: 15 Apr 2025
https://github.com/theakito/userdef
A more advanced adduser for your Alpine based Docker images.
alpine docker linux musl permissions security
Last synced: 10 Aug 2025
https://github.com/sam-k/pager-sec
Hacking hospital pagers, then building an encrypted solution.
arduino encryption pagers sdr security
Last synced: 02 Aug 2025
https://github.com/intuneadmin/intunebaselines
Intunebaselines.com by Wolkenman.nl
baseline baselines intune intune-administrator intunebaselines mdm microsoft mwp security windows windows11
Last synced: 07 Mar 2026
https://github.com/VolkanSah/Implementing-AI-Systems-Whitepaper
This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.
ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers
Last synced: 12 May 2025
https://github.com/jon-becker/research
This repository contains research papers & studies that I have worked on or am currently working on.
blockchain erc ethereum nft research security security-audit solidity
Last synced: 25 Mar 2025
https://github.com/serverfarmer/sf-ip-fw
sf-ip-fw extension provides several building blocks to build your own firewall solution, based on raw iptables.
devops devops-tools docker docker-network firewall firewall-configuration firewall-management iptables iptables-firewall iptables-manager linux masquerade nat security security-automation security-tools systemd
Last synced: 12 Jul 2025
https://github.com/bytexenon/securityresearchwriteups
All Public vulns/bugs/exploits I found and discolsed.
bugbounty documentation github markdown poc report research security vulnerability writeups xss
Last synced: 31 Jul 2025
https://github.com/ongoingai/gateway
Headless, OpenAI-compatible AI gateway in Go. Multi-tenant auth, tracing, cost tracking, rate limits, and optional PII redaction. Single binary, self-hosted, audit-ready by design.
ai-gateway audit-logs cost-tracking go golang llm-gateway observability openai-compatible opentelemetry pii-redaction policy-enforcement privacy rate-limiting security tracing
Last synced: 24 Feb 2026
https://github.com/renatahodovan/fuzzinator-configs
Configurations written for Fuzzinator
bughunting fuzz-testing fuzzinator fuzzing hacktoberfest security
Last synced: 05 Jan 2026
https://github.com/tspascoal/dependabot-alerts-helper
A set of (simple) scripts to help manage dependabot alerts
dependabot scripts-collection security
Last synced: 07 May 2025
https://github.com/wilk/snpm
Secure NPM PoC
github javascript npm opensource proof-of-concept security
Last synced: 13 Apr 2025
https://github.com/zeyu-li/tryhackme
Hacker Man 👨💻
hacking security tryhackme vulnversity writeups
Last synced: 19 Mar 2026
https://github.com/mablanco/docker-reconftw
Docker image for reconftw, a simple script intended to perform a full recon on an objective with multiple subdomains
Last synced: 11 Jul 2025
https://github.com/badchars/cve-mcp
23-tool MCP server for CVE & vulnerability intelligence. NVD, EPSS, CISA KEV, GitHub Advisory, OSV — unified in one server. Risk scoring, bulk triage, exploit search. 2 dependencies, runs with npx.
ai-security cisa claude cve cvss cybersecurity epss ghsa kev mcp model-context-protocol nvd osv pentesting security vulnerability vulnerability-intelligence
Last synced: 30 Jun 2026
https://github.com/chrissmartin/onvifscout
A comprehensive ONVIF device discovery and analysis tool that helps you find, authenticate, and examine ONVIF-compatible devices on your network.
hacktoberfest home-assistant home-automation onvif onvif-camera onvif-discovery pypi security security-camera
Last synced: 06 Jul 2025
https://github.com/shayanzare/admin-page-finder
This is a simple script to finding website admin page.
admin-page-finder hacking hacking-tool ruby security
Last synced: 28 Mar 2025
https://github.com/dominicbreuker/goncat
netcat-like CLI tool with advanced features for bind/reverse shells
bind-shell golang offsensive-security pentesting port-forwarding pty reverse-shell security tunneling
Last synced: 11 Apr 2025
https://github.com/connectFree/ZigZag
Noise Framework implementation in Zig Language for use in EVER/IP and WireGuard
crypto cryptography ever ever-ip everip noise noise-protocol noise-protocol-framework security wireguard zig
Last synced: 06 May 2025
https://github.com/psecio/rift
A vulnerable application for teaching the basics of web application security
application security teaching vulnerability
Last synced: 11 Apr 2025
https://github.com/alphaville/safemsg
SafeMessage - Secure web-based message exchange system
encryption javascript message-exchange secure-by-default security
Last synced: 10 Apr 2025
https://github.com/kuntoaji/enkrip
encrypt & decrypt Active Record attributes with Message Encryptor
activemodel activerecord activesupport decryption encryption gem message-encryptor ruby ruby-gem ruby-on-rails security
Last synced: 21 Jun 2025
https://github.com/sk3pp3r/devsecops-arsenal
A curated hub of DevSecOps tools to secure workflows, optimized for CI/CD and more
cybersecurity devops devsecops devsecops-pipeline infrastructure sdlc security ssdlc
Last synced: 12 Jan 2026
https://github.com/echo-devim/pyjacktrick
Python module hijacking POC
code-execution hijacking python security
Last synced: 27 Mar 2025
https://github.com/codestates-seb/seb39_main_013
고오급 남성 쇼핑몰 STATE MALL 입니다 https://statemall.click/
jpa mysql react reactquery security spring-boot styled-components
Last synced: 13 Apr 2025
https://github.com/advanced-security/demo-java
GitHub Advanced Security scanning tutorial repository for Java
advanced-security demo devsecops example security static-analysis
Last synced: 12 Apr 2025
https://github.com/connorjburton/senvf
A secure & sensible replacement for process.env
javascript nodejs process-env security supply-chain
Last synced: 10 Jul 2025
https://github.com/samiahmedsiddiqui/prevent-xss-vulnerability
This WordPress plugin enhances website security by preventing Cross-Site Scripting (XSS) vulnerabilities. It blocks and encodes malicious characters in URLs, escapes HTML in `$_GET` variables, and provides customizable settings for website owners.
encoding escape-html reflected-xss-vulnerabilities reflective reflective-injection security security-vulnerability self-xss wordpress xss xss-detection xss-vulnerability
Last synced: 12 Apr 2025
https://github.com/badisi/auth-js
🛡️ Authentication and authorization support for web based desktop and mobile applications
angular auth authentication authn authorization capacitor cordova hybrid identity ionic mobile oauth oauth2 oidc openid openidconnect security web
Last synced: 12 Apr 2025
https://github.com/zuazo/specinfra-backend-docker_compose
Serverspec / Specinfra backend for Docker Compose.
backend devops docker docker-compose security specinfra specinfra-backend tdd testing
Last synced: 13 Apr 2025
https://github.com/actions-rust-lang/audit
Audit Rust Dependencies using the RustSec Advisory DB
cargo-audit ci github-actions hacktoberfest rust rust-lang rustsec security
Last synced: 10 Apr 2025
https://github.com/johnsalazar/microservices-go-authentication
Authentication service. Part of an e-commerce built in Golang.
assymetric-key-cryptography clean-code discovery-service docker golang grpc hexagonal-architecture jwt-token kubernetes metrics microservices nats nosql rest-api security solid telemetry
Last synced: 12 Apr 2025
https://github.com/tomiok/vaultik
Vaultik is a cloud agnostic secret manager that helps developers to create, read, update and delete variables and easily export to a remote location or any cloud. Avoid using environment variables and these are fully encrypted.
cloud cloud-computing cobra encryption environment-variables go golang secret secret-management secrets secrets-management secure secure-storage security security-tools
Last synced: 28 Oct 2025
https://github.com/go-aah/security
Security library by aah framework
aah aah-framework golang-library security session-management session-store
Last synced: 12 Apr 2025
https://github.com/theAkito/userdef
A more advanced adduser for your Alpine based Docker images.
alpine docker linux musl permissions security
Last synced: 21 Mar 2025
https://github.com/grapheneos/platform_external_auditor
Auditor app prebuilt using the latest official release of the Auditor app.
android attestation authenticity cryptography grapheneos hsm integrity monitoring remote-attestation secure-boot secureboot security strongbox verifiedboot
Last synced: 13 Apr 2025
https://github.com/umutcamliyurt/Amnezichat
An encrypted and anti-forensic web chat server
anonymity anti-forensics counter-forensics forensics opsec privacy rust security
Last synced: 14 May 2025
https://github.com/brndnmtthws/protect-yourself
A guide on how to protect your digital assets
digital-assets encryption phone privacy security yubikey
Last synced: 08 Mar 2026
https://github.com/existenznl/permcheck
PermCheck is a little tool that checks if the files in a PHP project have the executable bit set properly.
executable executable-file php security security-tools security-vulnerability
Last synced: 14 Apr 2025
https://github.com/kitabisa/gokart-action
Integrate GoKart security static analysis to GitHub Actions
actions advanced-security ci code-review gokart golang security static-analysis static-code-analysis static-code-analyzer
Last synced: 12 Apr 2025
https://github.com/ansibleguy/sw_proxmox_mail_gw
Role to install Proxmox Mail Gateway on a linux server
ansible ansible-role anti-spam anti-spoofing iac infrastructure-as-code mailing proxmox proxmox-mail-gateway security
Last synced: 31 Aug 2025
https://github.com/apetenchea/earl
Evaluate Application Risk Level
android malware-detection security tensorflow
Last synced: 14 May 2025
https://github.com/apocas/wireguarode
Wireguard with ACLs and TOTP 2FA
acls iptables javascript nodejs security vpn wireguard
Last synced: 03 Oct 2025
https://github.com/maulingmonkey/firehazard
Unopinionated low level API bindings focused on soundness, safety, and stronger types over raw FFI.
rust sandbox sandboxing security win32 windows
Last synced: 30 Aug 2025
https://github.com/dhruvpatel-7/loginregister-try
Login and register In Angular using Api , Validation , JWT token and refresh token
angular jwt-authentication refresh-token security
Last synced: 04 Oct 2025
https://github.com/ivan-sincek/amounts
Generate a wordlist to fuzz amounts or any other numerical values.
brute-force bug-bounty currency dictionary-attack finance financial-technology fuzzing offensive-security payments penetration-testing prices python quality-assurance quality-control security transactions web-penetration-testing wordlist-generator
Last synced: 15 Apr 2025
https://github.com/fusion/crystalvault
A zero-knowledge server to store and share secrets: credentials, keys, etc.
browser crystal javascript pgp secret-management secrets security vault zero-knowledge
Last synced: 14 Apr 2025
https://github.com/denis-g/firefox-user.js
🦊 Firefox user.js – based on arkenfox/user.js with additional UI fixes.
firefox firefox-css firefoxcss ghacks mozilla mozilla-firefox privacy security settings userchrome userchromecss userjs
Last synced: 12 Apr 2025
https://github.com/volkansah/implementing-ai-systems-whitepaper
This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.
ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers
Last synced: 12 Sep 2025
https://github.com/jonathan-vella/architecting-for-success
This repository enables partners to help customers move with confidence with the right mix of skilling and resources to facilitate migration, modernization, and innovation with Azure OpenAI.
ai analytics azure cloudadoption migration networking openai openai-chatgpt security wellarc
Last synced: 07 Apr 2026
https://github.com/robertdebock/ansible-role-tailscale
Install and configure tailscale on your system.
ansible molecule network networking playbook security tailscale tox vpn
Last synced: 05 Oct 2025
https://github.com/grapheneos-archive/device_google_redfin
Pixel 5 device sources.
Last synced: 13 Apr 2025
https://github.com/timoa/secure-go-backend-clean-architecture
Project that provides DevSecOps best practices on the Go Backend Clean Architecture
devsecops go golang security security-automation
Last synced: 08 May 2025
https://github.com/brosck/rpi4-covenant-c2-installer
「🖥️」Covenant C2 Installer for RPI 4
bash-script c2 command control hacking post-exploitation powershell red-team security
Last synced: 09 Mar 2026
https://github.com/cedricbonhomme/ip-link
Visualizing the relationships between different IP from network traffic capture.
circos network-traffic-capture pcap python security visual-analysis visualisation
Last synced: 14 Apr 2025
https://github.com/mrlew1s/SubdomainTakeover
Small python or powershell script to look for potential subdomain takeover vulnerabilities via vulnerable Alias.
bugbounty offensive offensive-security pentest-scripts pentest-tool powershell python3 security security-tools subdomain subdomain-takeover takeover takeover-subdomain vulnerabilities vulnerability vulnerability-detection vulnerability-scanners
Last synced: 12 Jul 2025