Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/grapheneos/platform_system_sepolicy
Base SELinux policy (extended by per-device repositories)
android grapheneos privacy security
Last synced: 13 Apr 2025
https://github.com/lawndoc/github-leak-audit
A GitHub workflow to identify employees that have leaked your organization's code
automation cybersecurity devops devsecops github leak-detection leaks organizations security
Last synced: 18 Jul 2025
https://github.com/VERMAXVR/awsome_kali_MCPServers
awsome kali MCPServers is a set of MCP servers tailored for Kali Linux, designed to empower AI Agents in reverse engineering and security testing. It offers flexible network analysis, target sniffing, traffic analysis, binary understanding, and automation, enhancing AI-driven workflows.
agent kali-linux llm mcp-server security
Last synced: 17 Jun 2025
https://github.com/skyplabs/scapy-mitm
ARP cache poisoning implementation using Scapy
arp-cache-poisoning hacking network python scapy security
Last synced: 20 Mar 2025
https://github.com/zillionare/omega
Data module for project zillionare
quant quotation security trade
Last synced: 23 Jul 2025
https://github.com/sap-samples/appgyver-auth-flows
SAP Cloud Identity and XSUAA authentication samples for SAP AppGyver. This repository shows how to apply OAuth 2.0 authorization and token flows to your SAP AppGyver apps.
authentication btp-use-case-factory cloud-foundry integration pkce sample sample-code sap-appgyver sap-btp sap-cap sap-cloud-identity sap-ias sap-xsuaa security
Last synced: 31 Aug 2025
https://github.com/JChristensen/usb-condom
A little something for the tinfoil hat crowd.
Last synced: 17 Jul 2025
https://github.com/a3r0id/httpscan
Scan a host for open HTTP ports and gain information about the services present.
crawler hacking hacking-tool http low-level penetration-testing pentest pentesting portscan portscanner scan scanner scanner-web scraper security service-discovery
Last synced: 06 Apr 2025
https://github.com/kicksecure/tb-starter
Tor Browser Starter. Open Link Confirmation; Qubes integration; Command line --new-tab, --new-window; start menu entry; This package is produced independently of, and carries no guarantee from, The Tor Project.
debian firejail open-link-confirmation qubes secbrowser security tbb-starter tor-browser-starter whonix
Last synced: 19 Apr 2025
https://github.com/shopify/seer-prototype
Security Expert Elicitation of Risks
elicitation expert-elicitation security
Last synced: 04 Oct 2025
https://github.com/yowainwright/pastoralist
Pastoralist is a CLI tool for managing package.json overrides (or resolutions) with ease 👩🏽🌾
dependencies dependency-manager npm overrides pnpm resolutions security security-tools yarn
Last synced: 22 Apr 2025
https://github.com/mohamedch7/kubectl-guard
Accidentally modifying production instead of a local cluster? kubectl-guard helps prevent such critical mistakes.
Last synced: 13 May 2025
https://github.com/FIWARE-Ops/docs.academy
:mortar_board: Video tutorials, slide decks and other training materials for developers learning about the FIWARE ecosystem.
context-broker contextual-data data-publication fiware generic-enablers iot-agent monetization processing robotics security tutorial video-tutorial
Last synced: 30 Mar 2025
https://github.com/securefix-action/action
GitHub Action to fix code securely
cicd github-actions oss security
Last synced: 23 Mar 2025
https://github.com/masterbpro/argus
Argus is an eBPF-based monitoring and management tool delivering real-time insights into system performance. Designed for flexibility, efficiency, and security, it’s an ideal solution for developers and administrators seeking lightweight tools for event analysis and debugging.
audit bpf ebpf infrastructure kubernetes linux linux-kernel network sdn security
Last synced: 15 Apr 2025
https://github.com/ssbostan/prometheus-multi-tenant-proxy-server
Multi-tenant reverse proxy for Prometheus server
cloud cluster devops kubernetes monitoring multitenancy prometheus security
Last synced: 08 Mar 2026
https://github.com/miztiik/serverless-monitor-for-unused-iam-roles
Monitor Unused IAM Roles 🎓
aws-config-lambda aws-config-rules security
Last synced: 16 May 2025
https://github.com/qkaiser/awind-research
This repository holds interesting bits and pieces related to research I performed on wireless presentation devices manufactured by Awindinc and OEM'ed to multiple manufacturers.
awind barco crestron exploits extron haworth infocus newline pentesting security teqavit
Last synced: 15 Aug 2025
https://github.com/mishakorzik/detectvpn
Free vpn, tor, datacenter, threat detection on IP
detect detection information ip ipv4 ipv4-address ipv6 ipv6-address security tor vpn
Last synced: 02 Jan 2026
https://github.com/nsneruno/magisk_detector
Flutter Support for integrating Magisk Detector for Android Application. Based from MagiskDetector.
android android-library c dart flutter flutter-library flutter-plugin magisk ndk root-detection root-detection-bypass security
Last synced: 09 May 2025
https://github.com/netguru/mobile-security-review
Security review guidelines for mobile projects
Last synced: 11 Sep 2025
https://github.com/binarymist/holisticinfosec-for-webdevelopers-fascicle2
:books: IoT :lock: Mobile :books:
android book books devops devsecops hacking infosec iot iot-security iot-security-testing iot-testing mobile mobile-security mobile-security-testing security security-audit security-review security-testing threat-modeling
Last synced: 11 Jul 2025
https://github.com/rubennati/vulnerable-php-code-examples
Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such as SQL Injection, XSS, CSRF, and more.
owasp php security static-analysis vulnerable
Last synced: 26 May 2026
https://github.com/peppelinux/django-audit-wazuh
Django middleware and signals for handling security events
django loganalysis ossec ossec-wazuh security siem wazuh
Last synced: 23 Mar 2025
https://github.com/grapheneos-archive/device_google_coral
Pixel 4 and Pixel 4 XL device sources.
Last synced: 13 Apr 2025
https://github.com/orsinium-labs/flake8-warnings
Python linter (flake8, pylint, CLI) that warns you about using deprecated modules, classes, and functions
clean-code code-quality flake8 flake8-extension flake8-extensions flake8-plugin flake8-plugins linter pylint python python3 qa security
Last synced: 15 Apr 2025
https://github.com/utsanjan/ffssdp-mitm
The SSDP engine in Firefox for Android (68.11.0 and below) can be tricked into triggering Android intent URIs with zero user interaction.
android android-intent-uri ffssdp firefox firefox-application intent-triggering lan maninthemiddle maninthemiddleattack mitm mitm-attacks newest security ssdp-engine vulnerability wifi-network
Last synced: 02 Jul 2025
https://github.com/msfidelis/aws-vpc-best-pratices
Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:
aws cloud networking security terraform
Last synced: 13 Jun 2025
https://github.com/zuazo/dradis-docker
A Docker image with Dradis: A collaboration and reporting platform for IT security experts.
devops docker dradis minimal repository security
Last synced: 13 Apr 2025
https://github.com/tot-ra/graphql-query-cost
Graphql query cost calculation
Last synced: 10 Mar 2026
https://github.com/chhayac/awesome-dga
Domain Generation Algorithms research papers, datasets and code
cybersecurity deeplearning dga dga-detection dgapapers domaingenerationalgorithms machinelearning security
Last synced: 02 Jan 2026
https://github.com/ege-erdogan/unsplit
Supplementary code for the paper "UnSplit: Data-Oblivious Model Inversion, Model Stealing, and Label Inference Attacks Against Split Learning".
deep-learning machine-learning privacy security
Last synced: 13 Aug 2025
https://github.com/0x4f53/GetPerms
An Android wrapper library to quickly get app permissions and other package data.
android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature
Last synced: 11 Apr 2025
https://github.com/authier-pm/authier
monorepo for authier password manager
bitwarden chrome chrome-extension hacktoberfest password-generator password-manager passwords react-native reactjs security trpc
Last synced: 02 Apr 2026
https://github.com/ilya-smut/blue-book
Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.
ai certification comptia cybersecurity it mock-tests security
Last synced: 12 Feb 2026
https://github.com/mitocgroup/www
Mitoc Group is a technology company focusing on cloud adoption in private equity. Our track record includes helping private equity portfolio companies migrate to public clouds, as well as establish devops and dataops processes using cloud native services and industry best practices.
assurance development documents legal policy process quality security software
Last synced: 26 Jan 2026
https://github.com/fxamacker/webauthn-demo
WebAuthn server demo for registration and authentication (Go/Golang)
authentication fido2 passwordless security web-application webauthn webauthn-demo yubikey
Last synced: 28 Apr 2025
https://github.com/alexeev-prog/nadzoring
An open source tool for detecting website blocks, downdetecting, and network analysis
ai-friendly arp censorship cli dns network network-analysis network-monitoring python security security-tools utility
Last synced: 01 Apr 2026
https://github.com/rix4uni/gitxpose
Discover GitHub repositories and hunt for leaked credentials with style
bugbounty enumeration github-osint github-repository-search github-user-search osint penetration-testing penetration-testing-tools pentesting pentesting-tools recon reconnaissance security
Last synced: 01 Mar 2026
https://github.com/quodeq/quodeq
AI-powered code quality and security scanner. Open source, MIT, runs locally. <🧭>
ai-tools cli code-analysis code-quality cwe devtools iso-25010 llm open-source python quality-assurance security static-analysis vulnerability-scanner
Last synced: 10 May 2026
https://github.com/ansiblebook/ansible_role_ssh
🗝 Improve the security of the SSH server beyond "National Security"
almalinux centos-stream crypto-policies cryptography debian-linux rhel8 rocky-linux security sshd-hardening ubuntu2004
Last synced: 10 Apr 2025
https://github.com/proxylity/wg-client
Standalone UdpClient-compatible WireGuard client for .NET. Implements the Noise_IKpsk2_25519_ChaChaPoly_BLAKE2s handshake with ChaCha20-Poly1305 transport encryption.
api-client dotnet network-programming security udp wireguard
Last synced: 16 Jun 2026
https://github.com/socialgouv/hasura-permissions-viewer
Generate human-friendly HTML table from hasura permissions list
Last synced: 23 Feb 2026
https://github.com/iamcryptoki/passcat
:key: Generate cryptographically secure, memorable passphrases.
memorable-passphrases passphrase password python security wordlist words
Last synced: 29 Apr 2025
https://github.com/hannesm/ocaml-hkdf
HMAC-based Extract-and-Expand Key Derivation Function (HKDF) (RFC 5869)
Last synced: 07 Aug 2025
https://github.com/red-flake/red-flake-nix
Red-Flake Nix flake
distro flake flakes linux linux-distribution nix nixos nixos-configuration penetration-testing pentesting security security-tools
Last synced: 15 Apr 2025
https://github.com/thecyberarcher/respect-my-internet
Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !
anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security
Last synced: 13 Apr 2025
https://github.com/AmoloHT/CVE-2022-26134
「💥」CVE-2022-26134 - Confluence Pre-Auth RCE
confluence cve cve-2022-26134 exploit hacking infosec rce security
Last synced: 10 Mar 2025
https://github.com/kicksecure/gpg-bash-lib
gpg file verification bash library, addresses comprehensive threat model, that covers file name tampering, indefinite freeze, rollback, endless data attacks, etc.
bash-scripts diagnostic-output gpg security verification
Last synced: 19 Apr 2025
https://github.com/cloudposse/terraform-cloudflare-waf-rulesets
Terraform module to manage CloudFlare WAF rulesetes.
cloudflare compliance security terraform terraform-module terraform-modules
Last synced: 16 Aug 2025
https://github.com/ivan-sincek/metagoofeel
Web crawler and downloader based on GNU Wget.
bash bug-bounty downloader ethical-hacking gnu-wget offensive-security red-team-engagement security web web-crawler web-penetration-testing
Last synced: 28 Feb 2025
https://github.com/sap-samples/cloud-nodejs-oflm
This repository demonstrates how to implement security in a business scenario using the Node.js framework. The application is secured using the SAP BTP, Cloud Foundry environment Authorization and Trust Management Service.
cloud-foundry nestjs nodejs sample sample-code sap-btp-cloud-foundry sap-cloud-sdk security xsuaa
Last synced: 13 Apr 2025
https://github.com/grapheneos-archive/nginx-rotate-session-ticket-keys
Session ticket key rotation scripting / systemd units for nginx to work around the lack of built-in support. This may eventually be extended to support syncing keys across a group of servers providing the same service.
Last synced: 09 May 2025
https://github.com/modem-dev/drizzle-scoped-db
Scope-enforced DB queries for Drizzle ORM
db drizzle drizzle-orm security
Last synced: 04 Jul 2026
https://github.com/grapheneos/platform_external_pdfviewer
PdfViewer app prebuilt using the latest official release of the PdfViewer app.
android grapheneos pdf pdf-viewer security
Last synced: 13 Apr 2025
https://github.com/shivammathur/php-src-backports
Security backports for EOL versions of PHP.
backports end-of-life php security
Last synced: 07 May 2025
https://github.com/phosphore/cwmpwn
Leveraging CWMP (CPE WAN Management Protocol) to extract vendor specific secrets and configurations from CPEs
Last synced: 29 Apr 2025
https://github.com/panther-labs/pypanther-starter-kit
A Python-native Detection as Code Framework
cloud detection-as-code detection-engineering incident-response infosec monitoring security
Last synced: 12 Aug 2025
https://github.com/aiven-open/pghostile
Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.
exploitation postgresql security security-audit security-tools
Last synced: 29 Apr 2025
https://github.com/elliotwutingfeng/2fas-backup-decryptor
CLI tool to decrypt backup files exported from the 2FAS Authenticator app. This application is neither affiliated with Two Factor Authentication Service, Inc. nor 2FAS.
2fa 2fas aes aes-gcm android backup cryptography cybersecurity decryption encrypt encryption hmac-sha256 ios linux macos otp pbkdf2 security totp windows
Last synced: 29 Apr 2025
https://github.com/carekit-apple/ibm-hyperprotectsdk
The IBM Hyper Protect iOS SDK for CareKit is an addon for the CareKit framework that consumes IBM Hyper Protect Services for zero-trust persistent cloud storage and bi-directional synchronization across multiple devices with just 2 lines of code
ios-swift mbaas mongodb security typescript
Last synced: 12 May 2025
https://github.com/centriascolocation/inspec-aws-baseline
InSpec AWS Baseline Profile
aws baseline bestpractice inspec security
Last synced: 11 Jul 2025
https://github.com/anqorithm/saudi-cert-api
This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.
alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities
Last synced: 29 Jun 2025
https://github.com/codeperfectplus/systemguard
Lightweight, user-friendly, and easy-to-set-up server monitoring GUI tool
cpu-monitoring gpu-monitoring memory-monitoring monitoring-server monitoring-tool network-programming network-security security security-audit security-tools server-monitoring server-monitoring-system
Last synced: 13 May 2025
https://github.com/ansible/ansible-sign
The `ansible-sign` utility for signing and verifying Ansible project directory contents.
ansible ansible-dev-tools awx cryptography gpg security
Last synced: 01 Aug 2025
https://github.com/bbva/masquerade
High-performance, real-time, multi-location data obfuscation tool
encrypted-data masquerade security tokenizer
Last synced: 21 Jun 2025
https://github.com/lithnet/ad-password-protection-lists
Banned word lists for use with Lithnet Password Protection for Active Directory
active-directory lithnet-password-protection lpp password security
Last synced: 07 Feb 2026
https://github.com/wolfssl/arduino-wolfssl
This repository is a restructured copy of https://github.com/wolfSSL/wolfssl/ for the Arduino environment. Any Pull Requests for code changes should be opened there.
arduino-library cryptography security ssl tls tls12 tls13
Last synced: 27 Apr 2025
https://github.com/wmeints/webauthn-sample
Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn
asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn
Last synced: 26 Jan 2026
https://github.com/tomwechsler/cyber_and_information_security_knowledge_base
A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.
cybersecurity information-security knowledge-base security
Last synced: 13 Feb 2026
https://github.com/lchsk/django-insecure
Example of an insecure Django application
Last synced: 25 Apr 2025
https://github.com/rennf93/flaskapi-guard
A security library for Flask that provides an extension to control IPs, log requests, and detect penetration attempts. It integrates seamlessly with Flask to offer robust protection against various security threats.
api extension flask ip python rest security
Last synced: 03 Jun 2026
https://github.com/docker-secret-operator/dso
Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.
cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security
Last synced: 02 Jun 2026
https://github.com/0xle0ne/socknet
PropTypes style for secure your socket.io application
argument-parser framework nodejs security socket-io websockets
Last synced: 02 Apr 2026
https://github.com/ffmancera/ping_of_death
Some scripts to do a ping of death attack.
ddos-attacks networking python3 scapy security
Last synced: 09 Oct 2025
https://github.com/nategraf/naumachia-challenges
Open-source challenges for Naumachia
ctf ctf-challenges docker docker-compose network security
Last synced: 24 Apr 2025
https://github.com/rix4uni/tldscan
A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.
bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner
Last synced: 20 Apr 2026
https://github.com/geraked/miniattack
Simulate Attacks With Mininet And Hping3
attack computer-engineering ddos ddos-attacks dos dos-attack geraked hping hping3 mininet monitoring network python python3 rabist security simulation undergraduate yazd-university
Last synced: 02 Mar 2026
https://github.com/groupe-edf/watchdog
Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.
ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security
Last synced: 14 Jan 2026
https://github.com/shaps80/abracadabra
A truly plug 'n' play solution for securing your code.
authentication code pin security touchid
Last synced: 11 Mar 2026
https://github.com/simeononsecurity/saps
A collection of scripts to assist System Adminsitrators
automation documentation mitigations powershell powershell-script security
Last synced: 23 Apr 2025
https://github.com/leonklingele/securetemp
Secure temporary directories and files in Go (ram disk, tmpfs)
ramdisk security temporary-directories temporary-files tmpfile tmpfs
Last synced: 07 May 2025
https://github.com/ph-7/fake-admin-honeypot-v1.1
:honey_pot: New Honeypot Version: 1.2! :honeybee: This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honeypot for the attackers!
admin admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots ph7cms security
Last synced: 09 Apr 2025
https://github.com/dneprdroid/chrome-poc-demo
Example for the Google Chrome cache attack to inject custom code into web pages (macOS, Linux, browser version: 124.0.6367.62 and older)
attack cache google-chrome poc proof-of-concept security
Last synced: 05 Mar 2026
https://github.com/paulveillard/cybersecurity-ctf
A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity
ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools
Last synced: 10 Apr 2025
https://github.com/paulveillard/cybersecurity-tools
A collection of cybsecurity tools, software, libraries, learning tutorials, frameworks, academic and practical resources in security.
automation blueteam cyber-analytics cyber-security cyberattack cybersecurity devops incident-management incident-response incidents incidents-attack redteam security security-hardening security-testing security-tools security-vulnerability threat threat-intelligence tools-engineering
Last synced: 28 Feb 2026
https://github.com/tankerhq/sdk-android
Tanker client-side encryption SDK for Android
android cryptography encryption end-to-end java kotlin privacy sdk security tanker
Last synced: 09 Apr 2025
https://github.com/charlesjones-dev/claude-code-plugins-dev
Automate developer busy work with AI-powered plugins for Claude Code.
ai claude claude-code developer-tools git git-tools llm performance performance-tools security security-tools
Last synced: 01 Apr 2026