Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/ariary/trojansourcefinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 26 Apr 2025
https://github.com/friendsofredaxo/emailobfuscator
Verschlüsselung von E-Mailadressen zum Schutz vor Spam
email redaxo redaxo-addon security spam
Last synced: 09 Mar 2026
https://github.com/bgalek/safe-svg
Simple and lightweight library that helps to validate SVG files in security manners.
hacktoberfest security svg xss xss-detection
Last synced: 10 Mar 2026
https://github.com/nickdiego/docker-ollvm
Easily build and package Obfuscator-LLVM into Android NDK.
android docker ndk o-llvm obfuscator obfuscator-llvm security
Last synced: 02 Aug 2025
https://github.com/ariary/TrojanSourceFinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 11 Jul 2025
https://github.com/jonathancross/jc-docs
📝 Tools & Documentation from Jonathan Cross
bitcoin bitcoin-mobile-privacy git gpg mac-osx pgp security tor yubikey-neo
Last synced: 20 Jun 2025
https://github.com/guard0-ai/g0
The control layer for AI agents. 1,200+ rules, 12 domains, 10 frameworks, 4,000+ adversarial payloads. Discover. Assess. Test. Monitor. Comply.
ai ai-agents governance monitoring security
Last synced: 07 Apr 2026
https://github.com/mageplaza/magento-2-security
Magento 2 Security extension FREE. Security extension gives store owners the ability to detect the IP addresses that are intentionally attacking their store at any given time. Therefore, they have timely measures to prevent this issue such as blocking those IP addresses or sending warning emails to store owners.
blacklist magento magento-2-extension magento-2-security magento2 magento2-extension magento2-extension-free magento2-module magento2-module-bootstrap magento2-module-free mageplaza-security security whitelist
Last synced: 04 Apr 2025
https://github.com/adorsys/datasafe
Datasafe - flexible and secure data storage and document sharing using cryptographic message syntax for data encryption
cloud-storage cryptographic-message-system cryptography data-encryption document-storage encrypted-store file-sharing graal-native java library privacy s3-encryption security vault
Last synced: 26 Oct 2025
https://github.com/mrofisr/gf-patterns
A collection of useful grep patterns and tools by Tomnomnom for extracting specific values from text.
Last synced: 29 Jan 2026
https://github.com/deislabs/image-layer-provenance
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
container container-image containerization containers cve docker oci oci-image oras provenance security security-audit security-tools slsa slsaprovenance vulnerabilities vulnerability vulnerability-assessment vulnerability-management
Last synced: 06 Feb 2026
https://github.com/diver-osint-ctf/writeups
Official Writeups for DIVER OSINT CTF
Last synced: 05 Apr 2026
https://github.com/edoardottt/comptia-security-notes
CompTIA Security+ SY0-601 notes (passed 788 points)
certification comptia comptia-notes comptia-security comptia-security-exam hacking infosec notes security security-notes syo-601
Last synced: 11 Feb 2026
https://github.com/arthaud/formatstring
Format string exploitation helper
exploitation formatstring python security
Last synced: 14 Apr 2025
https://github.com/Conso1eCowb0y/Deepminer
Deep web crawler and search engine
crawler crawling dark-web data-mining deepminer deepweb github hacking onion osint python-web-scraper python3 search-engine security security-tools spider the-onion-router tor tor-network webcrawler
Last synced: 20 Apr 2025
https://github.com/padok-team/git-secret-scanner
Find secrets in git repositories with TruffleHog & Gitleaks
auditing credentials git scan secrets security
Last synced: 07 Apr 2025
https://github.com/microsoft/AuthJanitor
Manage the lifecycle of application tokens, keys, and secrets in Azure
application-lifecycle-management application-secret application-security azure azure-functions blazor key-vault secrets secrets-management security
Last synced: 18 Apr 2025
https://github.com/nullhypothesis/sybilhunter
Hunting for Sybils and anomalies in archived Tor network data.
go security sybil tor tor-network
Last synced: 08 Mar 2026
https://github.com/timokoessler/easy-waf
An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.
javascript mit-license nodejs security typescript waf web-application-firewall web-application-security
Last synced: 07 Apr 2025
https://github.com/Saluki/joi-security
Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) 🔥
audits hapi joi js security sql-injection typescript validation web-security xss
Last synced: 05 Mar 2025
https://github.com/planetis-m/libfuzzer
Thin interface for libFuzzer, an in-process, coverage-guided, evolutionary fuzzing engine.
fuzzing hacking security unit-testing
Last synced: 06 Jul 2025
https://github.com/bhvbhushan/vibecop
AI code quality toolkit — deterministic linter for the AI coding era. 22 detectors, GitHub Action PR gate, zero LLM required.
ai ai-code-quality ast ast-grep ci-cd code-quality code-review code-smell developer-tools eslint-alternative github-action javascript linter pull-request python security static-analysis tree-sitter typescript vibe-coding
Last synced: 07 Apr 2026
https://github.com/tg12/phantomstars
Automated detection and tracking of fake engagement on GitHub — daily CI, zero infrastructure
astroturfing automation bot-detection fake-engagement fake-stars github github-actions github-trending infosec osint python security spam-detection sybil-detection threat-intelligence
Last synced: 30 May 2026
https://github.com/banzaicloud/anchore-image-validator
Anchore Image Validator lets you automatically detect or block security issues just before a Kubernetes pod starts.
cloud-native golang kubernetes security
Last synced: 13 Apr 2025
https://github.com/deliciousinsights/mongoose-pii
A Mongoose plugin that lets you transparently cipher stored PII and use securely-hashed passwords
bcrypt mongodb mongoose mongoose-plugin password passwords pii pii-ciphering security
Last synced: 27 Oct 2025
https://github.com/armourbird/csf
ArmourBird CSF - Container Security Framework
bash blackhat django django-framework django-rest-framework docker docker-security python security
Last synced: 26 Oct 2025
https://github.com/oke-py/npm-audit-action
GitHub Action to run `npm audit`
github-action npm security vulnerability
Last synced: 28 Jan 2026
https://github.com/jonalvarezz/platzi-plantpedia
Proyectos de la saga de Next.js de Platzi
authentication environment-variables i18n javascript locales next-auth nextjs platzi preview-mode security
Last synced: 01 Apr 2026
https://github.com/boitatech/cyber-security-roadmap
O repositório Cyber Security Roadmap é uma iniciativa para ajudar a comunidade de segurança da informação a se orientar sobre o que estudar.
boitatech cyber-security cybersecurity infosec roadmad security
Last synced: 06 Oct 2025
https://github.com/federicoceratto/nim-libsodium
Nim wrapper for the libsodium library
cryptography library libsodium nacl nim nim-lang nim-language security wrapper
Last synced: 12 Apr 2025
https://github.com/kongbytes/joi-security
Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) 🔥
audits hapi joi js security sql-injection typescript validation web-security xss
Last synced: 25 Dec 2025
https://github.com/frodox/execute-machine-code-from-memory
Proof of concept example: executing machine code from different memory areas: stack, heap, shared memory
c heap poc security security-testing shm stack
Last synced: 23 Aug 2025
https://github.com/dwisiswant0/look4jar
Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
golang log4j log4j2 rce security vulnerability
Last synced: 24 Mar 2025
https://github.com/jeffhacks/smbscan
SMBScan is a tool to enumerate file shares on an internal network.
pentest redteam security security-audit security-tools smb
Last synced: 13 Apr 2025
https://github.com/duaraghav8/solium-plugin-security
The Official Security Plugin for Ethlint (formerly Solium)
ethereum linter security smart-contracts solidity solium soliumplugin
Last synced: 07 May 2025
https://github.com/mojtabatajik/sandbox-detection
Contains some tricks to detect Sandboxes and gradually completed
cpp sandbox sandbox-detection security
Last synced: 18 Mar 2025
https://github.com/alwalxed/juicyurls
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
automation bugbounty cli cybersecurity detection exploit golang malware open-source osint penetration-testing projectdiscovery recon reconnaissance scanner scanning security urlscan vulnerabilities
Last synced: 12 Apr 2025
https://github.com/kairoaraujo/goca
Golang Certificate Authority (CA) package
certficate certificate certificate-authorities certificate-authority certificate-generation certs go go-api golang hacktoberfest pki security ssl-certificates
Last synced: 17 Mar 2025
https://github.com/RootUp/SmuggleShield
Basic protection against HTML smuggling attempts.
blueteam htmlsmuggling purpleteam redteam security
Last synced: 12 Jul 2025
https://github.com/lmammino/terraform-openvpn
A sample terraform setup for OpenVPN using Let's Encrypt and Certbot to generate certificates
automation example infrastructure network openvpn security terraform tutorial vpn
Last synced: 30 Apr 2025
https://github.com/theodo-group/awesome-security-automation
Awesome links to automate your cybersecurity checks
security security-audit security-automation security-tools
Last synced: 02 Feb 2026
https://github.com/echo-devim/litewaf
Lightweight In-App Web Application Firewall for PHP
attack-log attack-prevention php sanity-check security sqlinjection waf xss
Last synced: 06 Sep 2025
https://github.com/ganehag/open-modbusgateway
Modbus over MQTT in a secure manner
Last synced: 17 Jan 2026
https://github.com/SomeKirill/wordlist_generator
Unique wordlist generator of unique wordlists.
bugbounty bugbounty-tool information-gathering pentesting reconnaissance security wordlist
Last synced: 11 Jul 2025
https://github.com/telekom-security/tpotmobile
🛜 T-Pot Mobile - The All In One Wireless Honeypot Solution 🍯
deception honeypot mobile raspberrypi security t-pot telekom
Last synced: 28 Oct 2025
https://github.com/gui774ume/network-security-probe
A process level network security monitoring and enforcement project for Kubernetes, using eBPF
ebpf enforcement kubernetes linux network-security profile security
Last synced: 29 Jun 2025
https://github.com/konnected-io/noonlight-hass
HomeAssistant integration for Noonlight
alarm homeassistant homeassistant-components monitoring noonlight security
Last synced: 16 Jan 2026
https://github.com/celenityy/Phoenix
Phoenix is a suite of configurations & advanced modifications for Mozilla Firefox, designed to put the user first - with a focus on privacy, security, freedom, & usability.
anti-tracking browser firefox firefox-based firefox-browser gecko hardened hardening mozilla mozilla-firefox privacy private secure security settings speed tracking user-js userjs web-browser
Last synced: 19 Mar 2026
https://github.com/rix4uni/xssrecon
XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characters are handled (allowed, blocked, or converted).
bug-bounty bugbounty bugbountytips hacking infosec masshuntxss osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools vulnerability xss xss-automation xssrecon
Last synced: 04 Mar 2026
https://github.com/marmelab/ra-in-memory-jwt
Manage React-admin authentication with jwt in memory, not in local storage
Last synced: 24 Oct 2025
https://github.com/itemir/thundersec
ThunderSec is a security plugin for Mozilla Thunderbird that creates several pieces of additional security functionality, including DNSBL, RBL, SURBL, DKIM and SPF.
dkim dnsbl security spf surbl thunderbird thunderbird-extension
Last synced: 05 Mar 2026
https://github.com/gpestana/notes
notes, ideas and whatnot
brain-dump decentralized dev-diary metadata notes p2p security til
Last synced: 07 Jan 2026
https://github.com/oslabs-beta/guardenoql
Simple and customizable security middleware for GraphQL servers in Deno.
deno graphql open-source opine security
Last synced: 30 Apr 2025
https://github.com/jolle/expired-tweets
🐦 Find tweets that contain expired or claimable URLs from your Twitter archive.
cli electron expired-tweets gui nodejs security takeover tweets twitter twitter-archive
Last synced: 05 Mar 2026
https://github.com/abhinandan-khurana/my-crtp-notes
This Repository contains my CRTP cum Red Teaming Active Directory attack and Defence preparation notes.
active-directory active-directory-exploitation active-directory-security activedirectory activedirectorysecurity attack-defense crtp gitbook notes pentesting powershell redteam redteam-infrastructure redteaming security
Last synced: 03 Nov 2025
https://github.com/ciehanski/onionbox
Send and receive files securely through Tor.
file- file-sharing go golang journalism onion-routing onion-service privacy security tor tor-network
Last synced: 03 Feb 2026
https://github.com/dopplerhq/cli-action
GitHub Action for installing the Doppler CLI
doppler-cli environment-variables secret-management secrets secrets-manager security
Last synced: 15 Jul 2025
https://github.com/andifalk/oidc-workshop-spring-io-2019
Workshop at Spring I/O 2019 on "Securing Microservices with OpenID Connect and Spring Security 5.1"
jwt oauth2 oidc openid-connect security spring-boot spring-security
Last synced: 12 Apr 2025
https://github.com/mrgswift/laravel-encryptenv
Encrypt your .env (or custom config file) in Laravel
configuration configuration-files encrypt-files encryption environment-variables laravel security
Last synced: 13 Jan 2026
https://github.com/fivexl/terraform-aws-sso-elevator
Slack bot to temporary assign AWS SSO Permission set to a user
aws aws-lambda iam-identity-center just-in-time-access python security slack sso terraform terraform-module
Last synced: 09 Apr 2025
https://github.com/nirdiamant/moltbook-agent-guard
Real-time security for AI agents on Moltbook
ai-agents llm moltbook prompt-injection security
Last synced: 11 Feb 2026
https://github.com/perry-mitchell/iocane
An odorless, tasteless NodeJS crypto library that dissolves instantly in liquid
crypto-js decryption encoding encryption hmac nodejs pbkdf2 security subtlecrypto web
Last synced: 14 Apr 2025
https://github.com/jacksongl/npm-vuln-poc
Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
cve javascript node-js npm proof-of-concept security vulnerabilities
Last synced: 21 Aug 2025
https://github.com/zitchcode/securehttpclient
Cross-platform HttpClientHandler with TLS1.2 and Certificate Pinning
android c-sharp certificate-pinning dotnet httpclient ios maui security tls xamarin
Last synced: 07 Mar 2026
https://github.com/barseghyanartur/ska
Sign data using symmetric-key algorithm encryption. Validate signed data and identify possible validation errors. Uses sha-(1, 224, 256, 385 and 512)/hmac for signature encryption. Custom hash algorithms are allowed. Useful shortcut functions for signing (and validating) dictionaries and URLs.
data-encryption data-hash django django-rest-framework django-rest-framework-addon encryption password-less-authentication python security
Last synced: 16 Mar 2025
https://github.com/yiisoft/security
A set of classes to handle common security-related tasks
decryption encryption hacktoberfest masking password random security signature tampering token yii3
Last synced: 09 Apr 2025
https://github.com/lucor/fyne-opensnitch
An OpenSnitch UI in Go using Fyne
application-firewall firewall fyne go golang gui linux networking opensnitch security
Last synced: 22 Aug 2025
https://github.com/escape-technologies/api-threat-matrix
A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
api security threatmatrix threats
Last synced: 04 Aug 2025
https://github.com/kyverno/policy-reporter-ui
Policy Reporter UI
monitoring observability security
Last synced: 05 Jan 2026
https://github.com/syss-research/slig
Siemens LOGO!8 PLC Password Hacking Proof-of-Concept-Tool
it-security logo8 nmap-scripts security security-vulnerability siemens-logo tool
Last synced: 10 Apr 2025
https://github.com/jackgu1988/dsploit-scripts
Scripts that could be injected in MITM attacks using dSploit
dsploit dsploit-scripts mitm security
Last synced: 09 Jul 2025
https://github.com/hellokoding/hello-sso-jwt-auth
Single Sign On (SSO) Example with JSON Web Token (JWT), Spring Boot
authentication java jwt security spring-boot sso
Last synced: 15 Jun 2025
https://github.com/puremachinery/carapace
A secure, stable Rust alternative to openclaw/moltbot/clawdbot
ai-assistant anthropic chatbot discord-bot gemini llm llm-agent local-first ollama openai privacy security self-hosted signal slack-bot telegram-bot venice-ai vertex-ai wasm wasm-plugin
Last synced: 06 Apr 2026
https://github.com/girste/mcp-cybersec-watchdog
🐕 Cybersecurity monitoring and analysis for Linux servers via MCP
devops linux mcp monitoring python security
Last synced: 30 Jan 2026
https://github.com/squareboat/security-guidelines
Squareboat's best practices for building highly secure websites and apps.
Last synced: 04 Apr 2026
https://github.com/step-security/agent
Purpose-built security agent for hosted runners
Last synced: 02 Apr 2026
https://github.com/covert-encryption/covert
An encryption format offering better security, performance and ease of use than PGP. File a bug if you found anything where we are worse than our competition, and we will fix it.
crypto cryptography encryption gpg purb security
Last synced: 27 Mar 2026
https://github.com/callebtc/electronwall
A tiny firewall for LND that allows or denies channel openings and payment routings.
Last synced: 16 Dec 2025
https://github.com/benibela/nasty-files
Some files with nasty names
backup-files files lists security security-testing
Last synced: 08 Mar 2026
https://github.com/brainfucksec/brainfucksec.github.io
My blog about Cybersecurity, Privacy and Systems :)
brainfucksec cyber-security github-pages jekyll-blog privacy security
Last synced: 22 Mar 2025
https://github.com/nodestream-proj/nodestream
A Declarative framework for Building, Maintaining, and Analyzing Graph Data
api athena aws cli data-engineering data-lake data-science declarative etl framework graph graphql kafka knowledge-graph neo4j python s3 security visualization yaml
Last synced: 05 Apr 2025
https://github.com/tf2project/tf2project
Terraform Test Framework
automation cloud compliance devops end-to-end-testing hashicorp policy-as-code security terraform testing tf2
Last synced: 13 May 2025
https://github.com/forderud/runinsandbox
Launch Windows executables & COM servers in a sandboxed or elevated environment.
Last synced: 31 Oct 2025
https://github.com/xward/phoenix_ddos
ddos protection for elixir phoenix project
Last synced: 21 Feb 2026
https://github.com/risc0/kailua
The Ultimate ZK Proving Software Suite for Securing OP Rollups
dispute-resolution evm kailua optimism rollups security zero-knowledge-proofs
Last synced: 11 Jun 2025
https://github.com/akto-api-security/tests-library
Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
api-misconfigutation api-security-testing bola broken-authentication broken-authorization hackerone hacktoberfest hacktoberfest2023 owasp-top-10 security security-testing
Last synced: 12 Mar 2026
https://github.com/oliverbebber/az-104-study-notes
Microsoft AZ-104: Azure Administrator Associate Study Notes
Last synced: 25 Sep 2025
https://github.com/conorgil/2fa-notifier
2FA Notifier is a web extension that notifies users whether or not the sites they visit support two factor authentication (2FA).
2fa auth authentication chrome-extension chrome-extensions firefox-extension firefox-extensions firefox-webextension security twofa twofactor twofactorauth
Last synced: 05 May 2025
https://github.com/JoniRinta-Kahila/WPCracker
WordPress pentest tool
attack brute-force brute-force-attacks console-application csharp hacking-tool linux penetration-testing pentesting security user-enumeration windows wordpress wordpress-site
Last synced: 11 Jul 2025
https://github.com/fxamacker/webauthn
WebAuthn server library decoupled from http for easy intergration, provides WebAuthn registration and authentication for clients using FIDO2 keys, FIDO U2F keys, TPM, etc.
authentication fido-u2f fido2 go golang passwordless safetynet security u2f webauthn
Last synced: 28 Apr 2025
https://github.com/jonirinta-kahila/wpcracker
WordPress pentest tool
attack brute-force brute-force-attacks console-application csharp hacking-tool linux penetration-testing pentesting security user-enumeration windows wordpress wordpress-site
Last synced: 24 Oct 2025