An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/rogelioolarte/multiple-auth-api

Spring Boot App that focuses on implementing multiple authentication methods using OAuhth2 and JWT.

jwt multiple-authentication oauth2 register-login security spring spring-boot

Last synced: 16 Aug 2025

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/bl4ckstack/hedra

Hedra — Command-line tool to analyze HTTP security headers and detect missing protections like CSP, HSTS, and X-Frame-Options.

cli cybersecurity hedra http-headers information-security pentesting ruby rubygems security vulnerability-assessment web-security

Last synced: 04 Apr 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/brainpolo/llmshield

Shields your confidential data in LLM prompts from third party AI providers, allowing you to send with confidence without compromising security and privacy.

ai llms privacy security

Last synced: 05 Mar 2026

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/semgrep/skills

A collection of skills for AI coding agents from Semgrep

agents claude-code security skills

Last synced: 05 Mar 2026

https://github.com/nexusone23/noid-privacy-linux

🛡️ Privacy & Security Audit for Linux Desktops — 300+ checks, 42 sections, zero dependencies, pure Bash. AI-powered fixes with --ai flag.

ai-tools audit bash cybersecurity debian desktop-security fedora hardening linux linux-desktop linux-security noid-privacy privacy privacy-audit privacy-tools security security-audit shell-script ubuntu zero-dependencies

Last synced: 31 May 2026

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026

https://github.com/sireto/offlinepass

Self Service Password Manager

password password-generator password-manager security

Last synced: 04 Apr 2026

https://github.com/deepunk42/seclaw

SecLaw is an OpenClaw plugin that provides real-time security auditing for AI Agent tool calls.

openclaw-plugin security

Last synced: 03 Apr 2026

https://github.com/saccofrancesco/lock

Secure local password manager with CustomTkinter UI and cross-platform support

cross-platform customtkinterr desktop-app encryption gui nord-theme open-source password-manger privacy python security tkinter

Last synced: 04 Apr 2026

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/virb3/winsock-dump-proxy

A proxy DLL for Windows to dump Windows Socket connections

dll dump proxy reverse-engineering security windows winsock

Last synced: 24 Jun 2026

https://github.com/yurukusa/cc-safe-setup

One command to make Claude Code safe for autonomous operation. 658 example hooks · 14,096 tests · 1,000+ installs/day

agent agentic-coding ai-safety anthropic automation autonomous bash claude claude-code cli coding-agent database-protection developer-tools hooks llm-tools owasp pretooluse safety security token-consumption

Last synced: 17 Apr 2026

https://github.com/djx-y-z/openmls_dart

Wrapper for OpenMLS, implementing the Messaging Layer Security (MLS) protocol (RFC 9420) for scalable end-to-end encrypted group messaging. Features TreeKEM key agreement, encrypted storage (SQLCipher/IndexedDB), and Web Crypto support. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows, Web). MIT Licensed.

cross-platform cryptography dart encryption end-to-end-encryption flutter flutter-rust-bridge frb group-messaging messaging mls mls-protocol openmls privacy rfc9420 rust security

Last synced: 06 Jun 2026

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT

chainstack chatgpt dlp security

Last synced: 13 Apr 2025

https://github.com/busyloop/suzuri

Authenticated and encrypted tokens

crypto crystal security

Last synced: 30 Oct 2025

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/xinux-org/configs

⚙️ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/oslabs-beta/testsudo

A one-stop testing suite offering a range of frontend, backend, and security metrics for your projects.

backend bearer frontend lighthouse measured optimization performance-testing security testing-tools

Last synced: 30 Apr 2025

https://github.com/serversideup/ipaddress-fyi

Easily control access to the Internet’s most popular services

firewall-configuration laravel-application open-api open-data php-applications security

Last synced: 11 Apr 2025

https://github.com/vapor-ware/sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

envelope kms sctl secrets security

Last synced: 14 Apr 2025

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/rooted-io/ctfs

Collection of CTF Labs 🏳️ 🏴

ctf ctf-challenges ctf-walkthroughs ctf-writeups kubernetes security

Last synced: 03 Oct 2025

https://github.com/thewh1teagle/checksum

Github reusable action for create checksum.txt for release assets

actions github security workflow

Last synced: 10 Aug 2025

https://github.com/asos/snyker

An opinionated, heavy-handed wrapper around Snyk.

cli security snyk snyk-cli vulnerabilities vulnerable-paths

Last synced: 09 Mar 2026

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/sondosaabed/intro-to-information-security

Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.

access-control buffer-overflow-attack course database-security firewalls information-security intrusion-detection-system malicious-software modern-malware os-security security udacity

Last synced: 20 Feb 2026

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/dylibso/modsurfer-validate-action

Run `modsurfer validate` in a GitHub Action. Modsurfer helps to debug and observe WebAssembly modules and components.

action binary-scan ci linter security wasm webassembly

Last synced: 24 Aug 2025

https://github.com/rhargreaves/knock-knock

Port knocking implementation in eBPF

ebpf security

Last synced: 29 Aug 2025

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/bocaletto-luca/ip-port-scanner

The IP Port Scanner software is a Python application based on Tkinter that allows users to scan IP addresses and ports within a local network. This application provides an intuitive user interface for performing IP scans and checking the status of open or closed ports on a specific host.

cybersecurity desktop-application gui ip-scanner ip-scanning network-scanning network-security open-source python security tkinter

Last synced: 05 Jan 2026

https://github.com/qbrusa/Windows-Security-Event-ID-Helper

This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).

audit eventid events logging security windows

Last synced: 08 May 2025

https://github.com/port19x/deadsniper

A fast, specialized dead-link checker

broken-links dead-links github-actions security seo seo-optimization

Last synced: 01 Apr 2025

https://github.com/lucaangioloni/fileencrypt

Simple open source App to encrypt files, based on Qt

cryptography encrypted-files files-encrypted openssl qt security

Last synced: 23 Apr 2025

https://github.com/saveourtool/osv4k

Kotlin and Java serialization schema for OSV

java kotlin osv security

Last synced: 23 Apr 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/jorianwoltjer/subsolver

CLI tool to Solve Substitution Ciphers using a wordlist

cli crypto security solver substitution-cipher wordlist

Last synced: 13 Jun 2025

https://github.com/robertdebock/ansible-role-aide

Install and configure aide on your system.

aide ansible ids molecule monitoring playbook security system tox

Last synced: 24 Apr 2025

https://github.com/namuan/oauth2-proxy-httpbin

Secure applications using OAuth2 Proxy

docker docker-compose httpbin oauth2 security

Last synced: 19 Apr 2025

https://github.com/aiven-open/aiven-pg-security

Aiven PostgreSQL® add-on for adding some DBaaS security

add-on postgresql security security-tools

Last synced: 29 Apr 2025

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/jeninsutradhar/kryptos

password manager built with Go and Fyne, designed to provide a secure and intuitive way to store and manage your passwords locally

aes-encryption fyne golang password-manager security

Last synced: 13 Oct 2025

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/kiliczsh/nosql-injection

The Power of Secure Coding Practices: Safeguarding MongoDB Against Exploitation

mongodb nosql-injection security

Last synced: 10 Apr 2025

https://github.com/txn2/txtoken

txToken creates an HS256 JWT token from JSON retrieved from a remote endpoint resulting from a proxied JSON request body.

authentication docker-image jwt jwt-server jwt-token kubernetes microservice security

Last synced: 04 Mar 2026

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/trilemma-dev/required

Parser and evaluator for Apple's Code Signing Requirement Language

codesign csreq macos secrequirement security

Last synced: 21 Oct 2025

https://github.com/blackiq/secure-telegrambot

This is a bot from Mehran Alam. I didn't create this. TNX Mehran.

api bot security telegram

Last synced: 28 Oct 2025

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/aminesayagh/zec-data-parsing

Data Parsing and schema declaration Library

dataparsing dataschema php php-library php8 security

Last synced: 25 Oct 2025

https://github.com/renatoathaydes/gohash_mobile_app

go-hash official mobile app (Android and iOS)

flutter flutter-apps password-manager security

Last synced: 28 Oct 2025

https://github.com/chaitin/veinmind-action

基于 veinmind-tools 实现的 Github Action

action cloud container image security

Last synced: 07 Oct 2025

https://github.com/uppnrise/iron-veil

🛡️ High-performance Rust database proxy for real-time PII anonymization. Masks sensitive data (emails, SSN, credit cards) without application changes. PostgreSQL & MySQL support with TLS, Prometheus metrics, and live dashboard.

anonymization axum data-masking database-proxy gdpr mysql pii postgresql privacy rust security tokio

Last synced: 06 Feb 2026

https://github.com/shenfe/function-sandbox

📦 Make a "sandbox" for a function.

function-sandbox security

Last synced: 07 Oct 2025

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/ehsanshahbazii/coursera-javascript-security-refreshers

This course is a Secure Javascript Programming Overview. It gives the student an introduction to JavaScript security and covers important topics like authentication best practices and refreshers on JavaScript, Web browsers and Node.js.

coursera coursera-course es6 javascript js nodejs security

Last synced: 27 Oct 2025

https://github.com/tink-crypto/tink-go-awskms

Extension to Tink Go that provides AWS KMS integration

aws-kms crypto cryptography go golang golang-library security

Last synced: 27 Jan 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/zeyad-azima/n0pspoof

A tool to bypass and evade Portspoof solution

bypass ids network nmap rustscan security

Last synced: 04 Apr 2025