An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/grapheneos/platform_system_sepolicy

Base SELinux policy (extended by per-device repositories)

android grapheneos privacy security

Last synced: 13 Apr 2025

https://github.com/lawndoc/github-leak-audit

A GitHub workflow to identify employees that have leaked your organization's code

automation cybersecurity devops devsecops github leak-detection leaks organizations security

Last synced: 18 Jul 2025

https://github.com/VERMAXVR/awsome_kali_MCPServers

awsome kali MCPServers is a set of MCP servers tailored for Kali Linux, designed to empower AI Agents in reverse engineering and security testing. It offers flexible network analysis, target sniffing, traffic analysis, binary understanding, and automation, enhancing AI-driven workflows.

agent kali-linux llm mcp-server security

Last synced: 17 Jun 2025

https://github.com/elongl/viper

Remote control agent and controller.

agent controller rat security

Last synced: 16 Jul 2025

https://github.com/skyplabs/scapy-mitm

ARP cache poisoning implementation using Scapy

arp-cache-poisoning hacking network python scapy security

Last synced: 20 Mar 2025

https://github.com/zillionare/omega

Data module for project zillionare

quant quotation security trade

Last synced: 23 Jul 2025

https://github.com/sap-samples/appgyver-auth-flows

SAP Cloud Identity and XSUAA authentication samples for SAP AppGyver. This repository shows how to apply OAuth 2.0 authorization and token flows to your SAP AppGyver apps.

authentication btp-use-case-factory cloud-foundry integration pkce sample sample-code sap-appgyver sap-btp sap-cap sap-cloud-identity sap-ias sap-xsuaa security

Last synced: 31 Aug 2025

https://github.com/JChristensen/usb-condom

A little something for the tinfoil hat crowd.

security tinfoil-hat usb

Last synced: 17 Jul 2025

https://github.com/a3r0id/httpscan

Scan a host for open HTTP ports and gain information about the services present.

crawler hacking hacking-tool http low-level penetration-testing pentest pentesting portscan portscanner scan scanner scanner-web scraper security service-discovery

Last synced: 06 Apr 2025

https://github.com/kicksecure/tb-starter

Tor Browser Starter. Open Link Confirmation; Qubes integration; Command line --new-tab, --new-window; start menu entry; This package is produced independently of, and carries no guarantee from, The Tor Project.

debian firejail open-link-confirmation qubes secbrowser security tbb-starter tor-browser-starter whonix

Last synced: 19 Apr 2025

https://github.com/shopify/seer-prototype

Security Expert Elicitation of Risks

elicitation expert-elicitation security

Last synced: 04 Oct 2025

https://github.com/yowainwright/pastoralist

Pastoralist is a CLI tool for managing package.json overrides (or resolutions) with ease 👩🏽‍🌾

dependencies dependency-manager npm overrides pnpm resolutions security security-tools yarn

Last synced: 22 Apr 2025

https://github.com/mohamedch7/kubectl-guard

Accidentally modifying production instead of a local cluster? kubectl-guard helps prevent such critical mistakes.

kubernetes script security

Last synced: 13 May 2025

https://github.com/unchartedsky/prowler

Docker image for toniblyx/prowler

docker security unchartedsky

Last synced: 11 Feb 2026

https://github.com/FIWARE-Ops/docs.academy

:mortar_board: Video tutorials, slide decks and other training materials for developers learning about the FIWARE ecosystem.

context-broker contextual-data data-publication fiware generic-enablers iot-agent monetization processing robotics security tutorial video-tutorial

Last synced: 30 Mar 2025

https://github.com/securefix-action/action

GitHub Action to fix code securely

cicd github-actions oss security

Last synced: 23 Mar 2025

https://github.com/gcmurphy/checksec

Elf checksec in Go.

checksec elf go security

Last synced: 13 Apr 2025

https://github.com/masterbpro/argus

Argus is an eBPF-based monitoring and management tool delivering real-time insights into system performance. Designed for flexibility, efficiency, and security, it’s an ideal solution for developers and administrators seeking lightweight tools for event analysis and debugging.

audit bpf ebpf infrastructure kubernetes linux linux-kernel network sdn security

Last synced: 15 Apr 2025

https://github.com/qkaiser/awind-research

This repository holds interesting bits and pieces related to research I performed on wireless presentation devices manufactured by Awindinc and OEM'ed to multiple manufacturers.

awind barco crestron exploits extron haworth infocus newline pentesting security teqavit

Last synced: 15 Aug 2025

https://github.com/mishakorzik/detectvpn

Free vpn, tor, datacenter, threat detection on IP

detect detection information ip ipv4 ipv4-address ipv6 ipv6-address security tor vpn

Last synced: 02 Jan 2026

https://github.com/nsneruno/magisk_detector

Flutter Support for integrating Magisk Detector for Android Application. Based from MagiskDetector.

android android-library c dart flutter flutter-library flutter-plugin magisk ndk root-detection root-detection-bypass security

Last synced: 09 May 2025

https://github.com/netguru/mobile-security-review

Security review guidelines for mobile projects

android ios owasp security

Last synced: 11 Sep 2025

https://github.com/rubennati/vulnerable-php-code-examples

Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such as SQL Injection, XSS, CSRF, and more.

owasp php security static-analysis vulnerable

Last synced: 26 May 2026

https://github.com/peppelinux/django-audit-wazuh

Django middleware and signals for handling security events

django loganalysis ossec ossec-wazuh security siem wazuh

Last synced: 23 Mar 2025

https://github.com/grapheneos-archive/device_google_coral

Pixel 4 and Pixel 4 XL device sources.

android grapheneos security

Last synced: 13 Apr 2025

https://github.com/orsinium-labs/flake8-warnings

Python linter (flake8, pylint, CLI) that warns you about using deprecated modules, classes, and functions

clean-code code-quality flake8 flake8-extension flake8-extensions flake8-plugin flake8-plugins linter pylint python python3 qa security

Last synced: 15 Apr 2025

https://github.com/utsanjan/ffssdp-mitm

The SSDP engine in Firefox for Android (68.11.0 and below) can be tricked into triggering Android intent URIs with zero user interaction.

android android-intent-uri ffssdp firefox firefox-application intent-triggering lan maninthemiddle maninthemiddleattack mitm mitm-attacks newest security ssdp-engine vulnerability wifi-network

Last synced: 02 Jul 2025

https://github.com/msfidelis/aws-vpc-best-pratices

Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:

aws cloud networking security terraform

Last synced: 13 Jun 2025

https://github.com/zuazo/dradis-docker

A Docker image with Dradis: A collaboration and reporting platform for IT security experts.

devops docker dradis minimal repository security

Last synced: 13 Apr 2025

https://github.com/tot-ra/graphql-query-cost

Graphql query cost calculation

graphql security

Last synced: 10 Mar 2026

https://github.com/r-net-tools/net.security

Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

attck capec cpe cve cwe mitre nist oval r sard security

Last synced: 18 Feb 2026

https://github.com/chhayac/awesome-dga

Domain Generation Algorithms research papers, datasets and code

cybersecurity deeplearning dga dga-detection dgapapers domaingenerationalgorithms machinelearning security

Last synced: 02 Jan 2026

https://github.com/ege-erdogan/unsplit

Supplementary code for the paper "UnSplit: Data-Oblivious Model Inversion, Model Stealing, and Label Inference Attacks Against Split Learning".

deep-learning machine-learning privacy security

Last synced: 13 Aug 2025

https://github.com/0x4f53/GetPerms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 11 Apr 2025

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/mitocgroup/www

Mitoc Group is a technology company focusing on cloud adoption in private equity. Our track record includes helping private equity portfolio companies migrate to public clouds, as well as establish devops and dataops processes using cloud native services and industry best practices.

assurance development documents legal policy process quality security software

Last synced: 26 Jan 2026

https://github.com/fxamacker/webauthn-demo

WebAuthn server demo for registration and authentication (Go/Golang)

authentication fido2 passwordless security web-application webauthn webauthn-demo yubikey

Last synced: 28 Apr 2025

https://github.com/alexeev-prog/nadzoring

An open source tool for detecting website blocks, downdetecting, and network analysis

ai-friendly arp censorship cli dns network network-analysis network-monitoring python security security-tools utility

Last synced: 01 Apr 2026

https://github.com/quodeq/quodeq

AI-powered code quality and security scanner. Open source, MIT, runs locally. <🧭>

ai-tools cli code-analysis code-quality cwe devtools iso-25010 llm open-source python quality-assurance security static-analysis vulnerability-scanner

Last synced: 10 May 2026

https://github.com/ansiblebook/ansible_role_ssh

🗝 Improve the security of the SSH server beyond "National Security"

almalinux centos-stream crypto-policies cryptography debian-linux rhel8 rocky-linux security sshd-hardening ubuntu2004

Last synced: 10 Apr 2025

https://github.com/proxylity/wg-client

Standalone UdpClient-compatible WireGuard client for .NET. Implements the Noise_IKpsk2_25519_ChaChaPoly_BLAKE2s handshake with ChaCha20-Poly1305 transport encryption.

api-client dotnet network-programming security udp wireguard

Last synced: 16 Jun 2026

https://github.com/socialgouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 23 Feb 2026

https://github.com/iamcryptoki/passcat

:key: Generate cryptographically secure, memorable passphrases.

memorable-passphrases passphrase password python security wordlist words

Last synced: 29 Apr 2025

https://github.com/hannesm/ocaml-hkdf

HMAC-based Extract-and-Expand Key Derivation Function (HKDF) (RFC 5869)

hkdf ocaml rfc5869 security

Last synced: 07 Aug 2025

https://github.com/thecyberarcher/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 13 Apr 2025

https://github.com/AmoloHT/CVE-2022-26134

「💥」CVE-2022-26134 - Confluence Pre-Auth RCE

confluence cve cve-2022-26134 exploit hacking infosec rce security

Last synced: 10 Mar 2025

https://github.com/kicksecure/gpg-bash-lib

gpg file verification bash library, addresses comprehensive threat model, that covers file name tampering, indefinite freeze, rollback, endless data attacks, etc.

bash-scripts diagnostic-output gpg security verification

Last synced: 19 Apr 2025

https://github.com/Supersonic/Wallbreak

Exploit app for CVE-2021-39670 and CVE-2021-39690, two permanent denial-of-service vulnerabilities in Android's wallpaper system

android cve exploit security vrp

Last synced: 10 Mar 2025

https://github.com/sap-samples/cloud-nodejs-oflm

This repository demonstrates how to implement security in a business scenario using the Node.js framework. The application is secured using the SAP BTP, Cloud Foundry environment Authorization and Trust Management Service.

cloud-foundry nestjs nodejs sample sample-code sap-btp-cloud-foundry sap-cloud-sdk security xsuaa

Last synced: 13 Apr 2025

https://github.com/grapheneos-archive/nginx-rotate-session-ticket-keys

Session ticket key rotation scripting / systemd units for nginx to work around the lack of built-in support. This may eventually be extended to support syncing keys across a group of servers providing the same service.

nginx privacy security

Last synced: 09 May 2025

https://github.com/modem-dev/drizzle-scoped-db

Scope-enforced DB queries for Drizzle ORM

db drizzle drizzle-orm security

Last synced: 04 Jul 2026

https://github.com/grapheneos/platform_external_pdfviewer

PdfViewer app prebuilt using the latest official release of the PdfViewer app.

android grapheneos pdf pdf-viewer security

Last synced: 13 Apr 2025

https://github.com/shivammathur/php-src-backports

Security backports for EOL versions of PHP.

backports end-of-life php security

Last synced: 07 May 2025

https://github.com/ramborogers/cyberchat

CyberChat - P2P Zero Config Chat and Files

chat golang mdns p2p security

Last synced: 25 Jun 2025

https://github.com/sercanarga/ipmap

ipmap is an open source, cross-platform and powerful network analysis tool.

ipmap linux macos security windows

Last synced: 10 Mar 2026

https://github.com/phosphore/cwmpwn

Leveraging CWMP (CPE WAN Management Protocol) to extract vendor specific secrets and configurations from CPEs

cpe cwmp security tr-069

Last synced: 29 Apr 2025

https://github.com/aiven-open/pghostile

Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.

exploitation postgresql security security-audit security-tools

Last synced: 29 Apr 2025

https://github.com/elliotwutingfeng/2fas-backup-decryptor

CLI tool to decrypt backup files exported from the 2FAS Authenticator app. This application is neither affiliated with Two Factor Authentication Service, Inc. nor 2FAS.

2fa 2fas aes aes-gcm android backup cryptography cybersecurity decryption encrypt encryption hmac-sha256 ios linux macos otp pbkdf2 security totp windows

Last synced: 29 Apr 2025

https://github.com/rezen/zap-tutorial

WIP - A tutorial for OWASP ZAP

security tutorial zap

Last synced: 30 Aug 2025

https://github.com/carekit-apple/ibm-hyperprotectsdk

The IBM Hyper Protect iOS SDK for CareKit is an addon for the CareKit framework that consumes IBM Hyper Protect Services for zero-trust persistent cloud storage and bi-directional synchronization across multiple devices with just 2 lines of code

ios-swift mbaas mongodb security typescript

Last synced: 12 May 2025

https://github.com/anqorithm/saudi-cert-api

This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.

alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities

Last synced: 29 Jun 2025

https://github.com/ansible/ansible-sign

The `ansible-sign` utility for signing and verifying Ansible project directory contents.

ansible ansible-dev-tools awx cryptography gpg security

Last synced: 01 Aug 2025

https://github.com/bbva/masquerade

High-performance, real-time, multi-location data obfuscation tool

encrypted-data masquerade security tokenizer

Last synced: 21 Jun 2025

https://github.com/lithnet/ad-password-protection-lists

Banned word lists for use with Lithnet Password Protection for Active Directory

active-directory lithnet-password-protection lpp password security

Last synced: 07 Feb 2026

https://github.com/wolfssl/arduino-wolfssl

This repository is a restructured copy of https://github.com/wolfSSL/wolfssl/ for the Arduino environment. Any Pull Requests for code changes should be opened there.

arduino-library cryptography security ssl tls tls12 tls13

Last synced: 27 Apr 2025

https://github.com/wmeints/webauthn-sample

Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn

asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn

Last synced: 26 Jan 2026

https://github.com/tomwechsler/cyber_and_information_security_knowledge_base

A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.

cybersecurity information-security knowledge-base security

Last synced: 13 Feb 2026

https://github.com/lchsk/django-insecure

Example of an insecure Django application

django education security

Last synced: 25 Apr 2025

https://github.com/rennf93/flaskapi-guard

A security library for Flask that provides an extension to control IPs, log requests, and detect penetration attempts. It integrates seamlessly with Flask to offer robust protection against various security threats.

api extension flask ip python rest security

Last synced: 03 Jun 2026

https://github.com/docker-secret-operator/dso

Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.

cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security

Last synced: 02 Jun 2026

https://github.com/0xle0ne/socknet

PropTypes style for secure your socket.io application

argument-parser framework nodejs security socket-io websockets

Last synced: 02 Apr 2026

https://github.com/ffmancera/ping_of_death

Some scripts to do a ping of death attack.

ddos-attacks networking python3 scapy security

Last synced: 09 Oct 2025

https://github.com/nategraf/naumachia-challenges

Open-source challenges for Naumachia

ctf ctf-challenges docker docker-compose network security

Last synced: 24 Apr 2025

https://github.com/rix4uni/tldscan

A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner

Last synced: 20 Apr 2026

https://github.com/open-horizon/kubearmor-integration

KubeArmor runtime security integration with Open Horizon

docker edge horizon kubearmor security

Last synced: 19 Jan 2026

https://github.com/groupe-edf/watchdog

Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.

ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security

Last synced: 14 Jan 2026

https://github.com/shaps80/abracadabra

A truly plug 'n' play solution for securing your code.

authentication code pin security touchid

Last synced: 11 Mar 2026

https://github.com/simeononsecurity/saps

A collection of scripts to assist System Adminsitrators

automation documentation mitigations powershell powershell-script security

Last synced: 23 Apr 2025

https://github.com/leonklingele/securetemp

Secure temporary directories and files in Go (ram disk, tmpfs)

ramdisk security temporary-directories temporary-files tmpfile tmpfs

Last synced: 07 May 2025

https://github.com/ph-7/fake-admin-honeypot-v1.1

:honey_pot: New Honeypot Version: 1.2! :honeybee: This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honeypot for the attackers!

admin admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots ph7cms security

Last synced: 09 Apr 2025

https://github.com/dneprdroid/chrome-poc-demo

Example for the Google Chrome cache attack to inject custom code into web pages (macOS, Linux, browser version: 124.0.6367.62 and older)

attack cache google-chrome poc proof-of-concept security

Last synced: 05 Mar 2026

https://github.com/paulveillard/cybersecurity-ctf

A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity

ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools

Last synced: 10 Apr 2025

https://github.com/tankerhq/sdk-android

Tanker client-side encryption SDK for Android

android cryptography encryption end-to-end java kotlin privacy sdk security tanker

Last synced: 09 Apr 2025

https://github.com/raforg/libslack

A UNIX/C library of general utilities for programmers with Slack

bsd c daemon daemonize debian freebsd library linux macos macosx netbsd openbsd posix redhat security svr4 ubuntu unix

Last synced: 16 Oct 2025

https://github.com/charlesjones-dev/claude-code-plugins-dev

Automate developer busy work with AI-powered plugins for Claude Code.

ai claude claude-code developer-tools git git-tools llm performance performance-tools security security-tools

Last synced: 01 Apr 2026

https://github.com/shadowjonathan/dustls

Pure-Rust DTLS

dtls rust rustls security tls

Last synced: 14 Oct 2025