An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/rogelioolarte/multiple-auth-api

Spring Boot App that focuses on implementing multiple authentication methods using OAuhth2 and JWT.

jwt multiple-authentication oauth2 register-login security spring spring-boot

Last synced: 16 Aug 2025

https://github.com/ichhabrecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 09 Mar 2026

https://github.com/itslab-kyushu/sss

A simple implementation of Shamir's Secret Sharing

go golang grpc secret-sharing security storage

Last synced: 12 Jan 2026

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/phpgt/csrf

Automatic protection from Cross-Site Request Forgery.

automatic-protection csrf csrf-protection csrf-protector csrf-tokens php-security phpgt security

Last synced: 04 Oct 2025

https://github.com/rooted-io/ctfs

Collection of CTF Labs 🏳️ 🏴

ctf ctf-challenges ctf-walkthroughs ctf-writeups kubernetes security

Last synced: 03 Oct 2025

https://github.com/zainabed/web-security-soteria

Single page application security (Typescript authorization library)

authorization security typescript

Last synced: 24 Jul 2025

https://github.com/dylibso/modsurfer-validate-action

Run `modsurfer validate` in a GitHub Action. Modsurfer helps to debug and observe WebAssembly modules and components.

action binary-scan ci linter security wasm webassembly

Last synced: 24 Aug 2025

https://github.com/busyloop/suzuri

Authenticated and encrypted tokens

crypto crystal security

Last synced: 30 Oct 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/thewh1teagle/checksum

Github reusable action for create checksum.txt for release assets

actions github security workflow

Last synced: 10 Aug 2025

https://github.com/rhargreaves/knock-knock

Port knocking implementation in eBPF

ebpf security

Last synced: 29 Aug 2025

https://github.com/johnnykv/curiosum

Pcap recording of Heralding sessions

honeypot pcap security

Last synced: 13 Apr 2025

https://github.com/auth0-blog/vue-auth0-aside

Aside: Vue with Auth0 and an authenticated Node API.

api app aside auth auth0 authentication node security vue vue-auth

Last synced: 27 Jul 2025

https://github.com/dev-hwang/flutter_security_checker

This plugin provides the ability to verify rooting and integrity on Android and iOS platforms.

android flutter ios root-checker security

Last synced: 21 Mar 2025

https://github.com/xinux-org/configs

⚙️ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/cokebeer/go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

cors go jsonp security sqli ssrf ssti xss xxe

Last synced: 26 Jul 2025

https://github.com/serversideup/ipaddress-fyi

Easily control access to the Internet’s most popular services

firewall-configuration laravel-application open-api open-data php-applications security

Last synced: 11 Apr 2025

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/rix4uni/unew

A tool combined of 2 commands features in 1 sort and tee for adding new lines to files, skipping duplicates

bug-bounty bugbounty bugbountytips duplicates hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 15 Apr 2025

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/brannondorsey/attacker-personas

🏴‍☠️ Use attacker personas to improve your threat modeling and cybersecurity practices

advice cybersecurity infosec security threat-modeling

Last synced: 18 Feb 2026

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/zeyad-azima/n0pspoof

A tool to bypass and evade Portspoof solution

bypass ids network nmap rustscan security

Last synced: 04 Apr 2025

https://github.com/vm32/firewall-rule-management-script

Bash script aids in the effective management of firewall rules

blue-team cyber-security firewall firewall-rules security

Last synced: 20 Jul 2025

https://github.com/IchHabRecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 31 Mar 2025

https://github.com/ralish/keepass

Source code mirror of KeePass v2.x releases

keepass mirror password-manager security

Last synced: 10 Jun 2025

https://github.com/vatshayan/final-year-college-project

Final Year Cryptography Project for Secure Communication System. Python Programming is done. Easy to understand and Implement.

btech btech-project cipher communication crpyt cryptocurrency cryptography cryptonote dataset encryption final final-project finalyearproject ieee machine-learning paper python secure security year

Last synced: 28 Oct 2025

https://github.com/fiware/tutorials.identity-management

:closed_book: FIWARE 401: IDM - Managing Users and Organizations

fiware fiware-keyrock identity-management security tutorial

Last synced: 30 Apr 2025

https://github.com/dnszlsk/muad-dib

Real-time npm/PyPI supply-chain threat detection. Production sensor with gVisor sandbox, behavioral analysis, and 200+ heuristic rules.

ast dependency-scanner malware mitre-attack npm pypi python sarif scanner security shai-hulud shai-hulud2 supply-chain supply-chain-security typosquatting

Last synced: 25 May 2026

https://github.com/eddiechu/Ransomware-meets-loop

What if the ransomware meets an endless subfolder

infosec ransomware security

Last synced: 28 Mar 2025

https://github.com/cloudposse/terraform-aws-global-accelerator

Terraform module to configure AWS Global Accelerator

compliance security terraform

Last synced: 29 Apr 2025

https://github.com/fnzv/gostresser

Easy and Fast TCP/UDP connection stresser using Goroutine workers

ddos go golang security

Last synced: 01 May 2025

https://github.com/x011/btc-wallet-maker

The BTC Wallet Maker, an offline tool, ensures secure Bitcoin wallet creation and detail retrieval. It supports multiple address types like legacy, SegWit, and Taproot, catering to user needs for key security and compatibility with various transaction types. Ideal for those avoiding online wallet risks.

aes aes256 bip32 bip39 bitcoin bitcoin-address bitcoin-address-generator bitcoin-wallet blockchain btc btc-wallet cryptocurrency cryptography mnemonic mnemonic-generator mnemonic-phrase private-key security security-tools segwit

Last synced: 24 Oct 2025

https://github.com/aenondynamics/x509-tool

:wrench: Single-File-Utility to create X509 Certificates/PKI Structure for your OpenVPN Server or any TLS based communication.

authentication certificate cli communication openssl openvpn pki-structure security ssl-certificates tls verify-certificates webserver x509

Last synced: 19 Jun 2025

https://github.com/dhhruv/fleck-pro

Prototype of Data Hiding Software for your personal files in your Laptop/PC. (Windows OS)

batch batch-script batchfile cli data data-hiding fleck-pro framework hacktoberfest hacktoberfest2021 security shell software terminal windows

Last synced: 03 May 2025

https://github.com/noplanman/wp-otp

OTP for WordPress (:exclamation: moved to https://git.feneas.org/noplanman/wp-otp)

authentication otp security totp two-factor-authentication wordpress wordpress-plugin

Last synced: 11 Apr 2025

https://github.com/stratosphereips/aracne

A 100% autonomous AI agent that attacks, defends, admins and acts on SSH connections

agents security

Last synced: 16 May 2026

https://github.com/techtoboggan/claude-desktop-hardened-linux

Security-focused Linux packaging of Claude Desktop with bubblewrap sandboxing, Wayland support, and Cowork (Local Agent Mode)

bubblewrap claude claude-desktop electron linux sandbox security wayland

Last synced: 11 Jun 2026

https://github.com/hackfutsec/blitzssh

BlitzSSH is a multi-threaded SSH brute-force tool with Telegram integration for real-time notifications.

automation brute-force checker cybersecurity ethical-hacking multithreading paramiko pentesting python security ssh ssh-checher telegram-bot

Last synced: 07 May 2025

https://github.com/filewalkwithme/go-gmp

Go library to interact with the Greenbone Vulnerability Manager 11 using the GMP protocol (Greenbone Management Protocol, version 9.0)

automation gmp go golang greenbone-management-protocol gvm openvas security security-tools

Last synced: 15 Dec 2025

https://github.com/plazmaz/twitter-bots-list

A list of accounts that auto-retweet or like certain keywords

auto-retweet bots fun funny honeypot infosec keyword security tricks troll twitter twitter-bot

Last synced: 01 Mar 2026

https://github.com/apriorit/simple-dll-injection-protect

Simple DLL injection protect with the idea of hooking the LoadLibrary function and failing it if it is a call for an unauthorized DLL.

api api-hooking attack-defense dll-injection protection security

Last synced: 10 Apr 2025

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/adrien2p/accumulator

:rocket: Send a load of requests with nodejs using cluster and with/without Tor for anonymisation :see_no_evil:

ddos ddos-attacks ddos-tool load-testing nodejs onion security tor

Last synced: 08 May 2025

https://github.com/theden/macos-blackhole

Script to set up pi-hole style blocking on your MacBook

ad-blocker pi-hole privacy security shell unified-hosts

Last synced: 09 Jul 2025

https://github.com/kosoku/shield

Shield is an iOS/macOS/tvOS framework that wraps various authorization APIs (e.g. camera, photo, location).

authorization ios macos security tvos

Last synced: 13 Apr 2025

https://github.com/tomwechsler/linux_administration_security

Linux security with three different distributions (Ubuntu, openSUSE and Red Hat)!

linux opensuse redhat security ubuntu

Last synced: 27 Jul 2025

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025

https://github.com/avantasia/inventedattack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 09 Jul 2025

https://github.com/teamdefronix/defroxpot

DefroxPot is a honeypot project designed to detect, monitor, and analyze malicious activity in a controlled environment. This project aims to provide cybersecurity enthusiasts and professionals with a powerful tool to study attack patterns, improve defensive strategies, and enhance security awareness.

cybersecurity defronix defroxpot django flask hacker hacking hacking-tool honeypot python python-hacking-tools python3 security

Last synced: 05 May 2025

https://github.com/datosh/pinned-actions

How many GitHub repositories actually pin by hash?

github-actions security supply-chain-security

Last synced: 07 May 2025

https://github.com/samdphillips/racket-keyring

Racket Keyring Library

password racket security

Last synced: 11 Apr 2025

https://github.com/deepunk42/seclaw

SecLaw is an OpenClaw plugin that provides real-time security auditing for AI Agent tool calls.

openclaw-plugin security

Last synced: 03 Apr 2026

https://github.com/djx-y-z/openmls_dart

Wrapper for OpenMLS, implementing the Messaging Layer Security (MLS) protocol (RFC 9420) for scalable end-to-end encrypted group messaging. Features TreeKEM key agreement, encrypted storage (SQLCipher/IndexedDB), and Web Crypto support. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows, Web). MIT Licensed.

cross-platform cryptography dart encryption end-to-end-encryption flutter flutter-rust-bridge frb group-messaging messaging mls mls-protocol openmls privacy rfc9420 rust security

Last synced: 06 Jun 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/yurukusa/cc-safe-setup

One command to make Claude Code safe for autonomous operation. 658 example hooks · 14,096 tests · 1,000+ installs/day

agent agentic-coding ai-safety anthropic automation autonomous bash claude claude-code cli coding-agent database-protection developer-tools hooks llm-tools owasp pretooluse safety security token-consumption

Last synced: 17 Apr 2026

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/uppnrise/iron-veil

🛡️ High-performance Rust database proxy for real-time PII anonymization. Masks sensitive data (emails, SSN, credit cards) without application changes. PostgreSQL & MySQL support with TLS, Prometheus metrics, and live dashboard.

anonymization axum data-masking database-proxy gdpr mysql pii postgresql privacy rust security tokio

Last synced: 06 Feb 2026

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/sjinks/roundcube_recaptcha

Adds reCAPTCHA to the RoundCube login form

captcha login recaptcha roundcube-plugin security

Last synced: 07 Mar 2026

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/cityofnewyork/nyco-wp-boilerplate

Local development suite for creating and running instances of WordPress sites and managing them on WP Engine. Maintained by @NYCOpportunity

composer docker nyc-opportunity nycopportunity security wordpress wp-cli wp-engine wpengine

Last synced: 12 May 2025

https://github.com/avantasia/inventedAttack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 13 Mar 2025

https://github.com/serverfarmer/compliance

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

compliance gdpr hipaa linux pci-dss security server-management

Last synced: 12 Jul 2025

https://github.com/asos/snyker

An opinionated, heavy-handed wrapper around Snyk.

cli security snyk snyk-cli vulnerabilities vulnerable-paths

Last synced: 09 Mar 2026

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/lorenzodifuccia/watchmyback

An easy-to-use defense tool against "Shoulder Surfing" attacks, which allows you to immediately lock the screen of your computer if someone is behind you or if you move away from the computer without locking it.

face-detection mediapipe security shoulder-surfing tobii-aware tobii-eye-tracker

Last synced: 04 Aug 2025

https://github.com/bocaletto-luca/browser-temporary-files-delete

Browser Temporary Files Delete is a Python application that helps users remove temporary files from web browsers. It allows users to select the browsers to scan and clean up unnecessary temporary files. The software dynamically detects the cache paths of common web browsers, enabling users to perform cleanup operations with ease.

automation cache cleanup optimization privacy python security utility web-browser

Last synced: 18 Oct 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/aiven-open/aiven-pg-security

Aiven PostgreSQL® add-on for adding some DBaaS security

add-on postgresql security security-tools

Last synced: 29 Apr 2025

https://github.com/bcrowe/cakephp-encrypted-type

:lock_with_ink_pen: CakePHP plugin that provides field-level (column) encryption within the application layer before data is stored or transmitted to the database, supporting regulatory compliance, zero-trust security, end-to-end encryption, and contextual awareness.

cakephp cakephp-plugin data-encryption data-security database encryption end-to-end-encryption field-level-encryption field-level-security gdpr hipaa pci pci-compliance pci-dss php regulatory-compliance security zero-trust zero-trust-security

Last synced: 08 Mar 2026

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025