An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/lucaangioloni/fileencrypt

Simple open source App to encrypt files, based on Qt

cryptography encrypted-files files-encrypted openssl qt security

Last synced: 23 Apr 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/belane/codeauditor

Take notes and categorize issues during a source code audit.

audit code-audit security vscode vscode-extension

Last synced: 12 May 2025

https://github.com/bl4ck44/hashbox

Herramienta que sirve para saber si un programa es malicioso a partir del hash y comparándola con la lista de hashes más peligrosos.

cracking hacking hash md5 md5-hash python python3 security security-tools sha256

Last synced: 12 Jul 2025

https://github.com/ariary/hack-weak-strcmp-code

A description of a basic hack over a C files using strcmp function

hack reverse-engineering security

Last synced: 02 Jul 2025

https://github.com/rehypejs/camomile

Node.js HTTP image proxy to route images through SSL

camo camomile image node proxy rehype security ssl unified

Last synced: 01 Jul 2025

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/aminesayagh/zec-data-parsing

Data Parsing and schema declaration Library

dataparsing dataschema php php-library php8 security

Last synced: 25 Oct 2025

https://github.com/bl4ckstack/hedra

Hedra — Command-line tool to analyze HTTP security headers and detect missing protections like CSP, HSTS, and X-Frame-Options.

cli cybersecurity hedra http-headers information-security pentesting ruby rubygems security vulnerability-assessment web-security

Last synced: 04 Apr 2026

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/mostafahussein/kubernetes-sec-alert

Track Kubernetes CVEs by native GitHub notifications!

cve devops github-actions golang k8s kubernetes security

Last synced: 28 Oct 2025

https://github.com/khalidelboray/zap-api-raku

A Raku module for the OWASP ZAP API.

owasp raku raku-module security web-security zaproxy

Last synced: 01 Apr 2026

https://github.com/tecnickcom/rndpwd

Web Service Random Password Generator written in GO

go golang password-generator security webservice

Last synced: 04 Mar 2026

https://github.com/open-sspm/open-sspm

Open-SSPM is a small “who has access to what” service. It syncs identities from Okta (IdP) and permissions from connected apps (GitHub, Datadog, AWS Identity Center). Demo: admin@admin.com / admin

security sspm

Last synced: 18 Apr 2026

https://github.com/wan0net/awesome-abac

List of Applications that enable or natively support Attribute Based Access Control

abac access-control attribute-based-access-control authorization awesome-list cybersecurity security zero-trust

Last synced: 03 May 2026

https://github.com/mrcloudsec/mitre-aws-checks

Script for analyzing the compliance of your AWS account based on the adversary techniques on the MITRE ATT&CK Iaas Matrix.

aws mitre security security-scanner security-tools

Last synced: 24 Oct 2025

https://github.com/mofneko/jbinspector

iOS JailBreak Detector Unity Compatible.

ios-library security unity3d-plugin

Last synced: 24 Oct 2025

https://github.com/hexway/hive-burp-extension

About Hive Burp Suite Extension

pentest pentest-tool security security-tools

Last synced: 26 Feb 2026

https://github.com/stratosphereips/security-datasets-for-testing

A set of security datasets for testing of tools and algorithms

cybersecurity dataset infosec infosectools netflow network-security security testing

Last synced: 22 Jan 2026

https://github.com/egorsmkv/npm-audit-to-report

A simple Go program that converts `security-audit.json` to `security-audit.md` so you can use it in CI pipeline.

ci cve go npm security yarn

Last synced: 25 Oct 2025

https://github.com/philippnormann/sec-grep

🔎 Fast, local search across the security & privacy literature, with an expressive query language, an interactive TUI, and scriptable output.

academic cli dblp papers privacy research-tool rust security security-research tui

Last synced: 10 Jun 2026

https://github.com/rnurgaliyev/dnscrypt-proxy

Docker container for implementing secure DoH DNS server based on dnscrypt-proxy on Raspberry Pi.

dns-server dnscrypt-proxy docker-container doh privacy raspberry-pi security

Last synced: 14 Oct 2025

https://github.com/pelock/total-commander-ftp-password-recovery-tool

Total Commander FTP Password Recovery Tool allows you to decrypt the FTP account password information for all Total Commander versions with the FTP plug-in.

assembler assembler-x86 assembly decoder decoder-utility decoding ftp password password-recovery php security total-commander

Last synced: 30 Oct 2025

https://github.com/ubernostrum/django-flashpolicies

Flash cross-domain policies for Django.

django flash python security

Last synced: 26 Oct 2025

https://github.com/benavlabs/crudauth

Batteries-included, transport-agnostic authentication for FastAPI.

auth authentication backend fastapi security sqlalchemy

Last synced: 24 Jun 2026

https://github.com/celenityy/dove

Dove is a suite of configurations & advanced modifications for Mozilla Thunderbird, designed to put the user first - with a focus on privacy, security, freedom, & usability.

anti-tracking email gecko hardened hardening mozilla privacy private secure security settings thunderbird tracking user-js userjs

Last synced: 25 Feb 2026

https://github.com/reverseapple/analysissuite

Utilities for reverse engineering Apple binaries

apple binary-analysis research reverse-engineering security tools

Last synced: 09 Apr 2025

https://github.com/samerfarida/secure-bash-macos-ebook

A hands-on Bash scripting guide for macOS administrators and security engineers. Learn to automate, secure, and master macOS with real-world examples.

bash macos security

Last synced: 13 Jan 2026

https://github.com/drawing-captcha/drawing-captcha-app

Drawing Captcha is an innovative software that enhances security and promotes brand awareness by requiring users to complete interactive drawing tasks to pass the verification process. (Website comes soon)

captcha drawing js nodejs open-source security solving

Last synced: 25 Jul 2025

https://github.com/robertdebock/ansible-role-auto_update

Install and configure automatic package updates on your system.

ansible autoupdate molecule playbook security system tox

Last synced: 24 Apr 2025

https://github.com/liangjfblue/go-keyserver

动态密钥服务器。带client端,server端使用demo

gin golang redis security

Last synced: 06 May 2025

https://github.com/kyoshidajp/dep-doctor

Diagnose whether your software dependency libraries are maintained.

dart dependencies elixir erlang golang javascript php python ruby rust security swift

Last synced: 09 Jul 2025

https://github.com/scipag/phputilities

PHPUtilities provides various utility scripts.

commands exploitation penetration-testing php security shell

Last synced: 05 Oct 2025

https://github.com/dyne/redroom

Zenroom crypto module for Redis

crypto cryptography password redis redis-module security

Last synced: 16 Jul 2025

https://github.com/pozil/apex-security-update-summer21

Helper script for Salesforce Summer '21 Apex security update

apex salesforce security summer21 update

Last synced: 14 May 2025

https://github.com/zaryab2000/smart-contracts_audit_reports

A collection of my publicly available smart contract security audit reports and details about my audit procedures. 🔐

security security-audit smart-contracts solidity web3

Last synced: 30 Jul 2025

https://github.com/sfr-development/wondersuite-ai-bug-bounty

AI-Powered Offensive Security Research Engine - desktop-native security testing platform with native MCP integration. 90 tools, MITM proxy, stealth browser, autonomous AI agent. Built on Tauri + Rust + React.

ai-agent bug-bounty burp-suite-alternative desktop-app llm-tools mcp mitm-proxy model-context-protocol offensive-security pentesting react rust security security-tools tauri typescript vulnerability-scanner web-security

Last synced: 30 May 2026

https://github.com/go-to-k/ecr-scan-verifier

The AWS CDK Construct that blocks deployments to ECS, Lambda, and other services when ECR Image Scanning detects vulnerabilities, and optionally verifies container image signatures.

aws aws-cdk aws-cdk-construct aws-ecr awscdk cdk container security

Last synced: 22 May 2026

https://github.com/mrcl0wnlab/new-ip-tor

This module that makes it easy to reboot IP Tor network

hacking python security security-tools tor

Last synced: 18 Jul 2025

https://github.com/cipherstash/cipherstash-playground

A playground to experiment with CipherStash and our data security capabilities.

aws-dynamodb data-security dynamodb encryption postgres postgresql searchable-encryption security security-tools

Last synced: 15 Jul 2025

https://github.com/nihlus/zalloc

zalloc is a safety- and security-oriented wrapper around malloc.

allocator c calloc hacktoberfest malloc safety security

Last synced: 13 May 2025

https://github.com/nodiscc/netdata-debsecan

[mirror] Check/graph the number of CVEs in currently installed packages - netdata plugin

cve debian debsecan monitoring netdata patch-management scanner security

Last synced: 12 Aug 2025

https://github.com/billyJoePiano/TenaPull

TenaPull is a configurable Java application which fetches and processes the data from one or more Nessus APIs, and converts it into JSON ouputs that are usable by Splunk

java nessus security splunk

Last synced: 11 Jul 2025

https://github.com/timkuijsten/node-mongo-escape

Escape variables to prevent NoSQL injection in MongoDB

mongodb security

Last synced: 01 Aug 2025

https://github.com/andreygrechin/umbr_api

umbr_api is Cisco Umbrella APIs wrapper and command-line utility. With help of umbr_api you can add new sites and URL to the customer's blocked site list, remove or show current entries from cli in seconds.

cisco opendns security umbrella

Last synced: 27 Aug 2025

https://github.com/cipherstash/cipherstash-proxy-playground

A playground to experiment with CipherStash and our data security capabilities.

aws-dynamodb data-security dynamodb encryption postgres postgresql searchable-encryption security security-tools

Last synced: 07 May 2025

https://github.com/SixHq/GPT4-AI-Realtime-code-scanner-Autocomplete-and-Highlighter-for-Javascript-Py-JS-Java-Php-Sixth-SAST

Easily spot, fix and detect badly written code in your project without breaking a sweat. Your GPT4 and LLM powered programming AI realtime code editor for python, javascript, typescript, java, php, c# and many more!

ai api autocomplete chatbot chatgpt enterprise-software fastapi frontend github-config gpt4 java javascript llm openai programming python react rest-api security vscode

Last synced: 24 Mar 2025

https://github.com/imranismail/cloudcreds

Secure access to your organization's AWS accounts for both programmatic and console use-case via federated identity and short-lived credentials

aws federated-identity google oauth oidc security

Last synced: 22 Apr 2025

https://github.com/pawamoy/django-cerberus-ac

Django Cerberus Access Control, extended permission system.

access control django ontology permissions role-based-access-control security

Last synced: 05 Jul 2025

https://github.com/diabonas/arch-security-tracker-tools

Tools to make working with the Arch Linux Security Tracker easier

advisory archlinux cve security tracker

Last synced: 06 Apr 2025

https://github.com/qaware/cloudid-showcase

Cloud Native Identity Management Showcase.

cloud-native java jsa kubernetes security spiffe spire vault

Last synced: 08 Apr 2025

https://github.com/simpleclub/firebase-rules-helper

A collection of packages aimed to make working with Firebase rules easier.

code-generation coverage coverage-report firebase firebase-firestore firebase-storage firestore security

Last synced: 22 Feb 2026

https://github.com/andreas-brunner/astro-mail-obfuscation

Protect email addresses, phone numbers and other sensitive data from bots scraping the source code of your Astro app.

astro astro-component astro-integration bot-protection email-obfuscation email-protection email-security encoding obfuscation security spam-protection utility utils withastro

Last synced: 14 Mar 2025

https://github.com/dev-five-git/security-log

보안록 - 당신의 정보는 안전한가요?

security

Last synced: 10 Jul 2026

https://github.com/mwiater/golangsignedbins

Learn binary signing and verification in Go for enhanced security. A concise guide for Golang developers on ensuring binary integrity.

golang rsa security

Last synced: 10 Apr 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/captainhook-git/secrets

Some useful functionality to detect secrets

git git-hooks secret-detection security

Last synced: 13 Apr 2025

https://github.com/aniketp/audittestsuite

An implementation of Regression Test Suite for FreeBSD Audit Framework [GSoC-18]

filesystem freebsd gsoc-2018 ipc kernel operating-system security sockets

Last synced: 09 Jul 2026

https://github.com/go-to-k/image-scanner-with-trivy

The AWS CDK Construct library to allow you to scan a container image during CDK deployment layer with Trivy.

aws aws-cdk aws-cdk-construct cdk container security trivy

Last synced: 27 Feb 2026

https://github.com/infothrill/ansible-role-lynis

An Ansible role to install Lynis, an open source security auditing tool.

ansible ansible-role audit lynis security

Last synced: 11 Feb 2026

https://github.com/r3dhulk/bad-usb

bad usb also known as rubber ducky is a usb device to hack your target when you are in device's physical access

attack hacking security security-tools usb

Last synced: 13 Jun 2026

https://github.com/djinn-soul/cytoscnpy

Fast Python static analysis powered by Rust. Detects dead code, security issues (including taint analysis), and code quality metrics like complexity, Halstead, maintainability, and nesting depth.

code-quality dead-code-detection python python-linter quality secret-detection security vscode-extension

Last synced: 18 Apr 2026

https://github.com/z-m-huang/vcp

Vibe Coding Protocal - Security-first protocol for AI-generated code, multiple standards with real-time enforcement and multi-AI pipeline orchestration

ai-coding claude-code claude-skills security security-audit vibe-coding

Last synced: 18 Apr 2026

https://github.com/jonhadfield/ipscout

Host threat aggregator for network administrators and security analysts.

cli ip ip-reputation netsec netsec-tools network security

Last synced: 07 Feb 2026

https://github.com/mondoohq/ansible-mondoo

Ansible Role for Mondoo cnquery and cnspec

ansible policy policy-as-code security security-as-code

Last synced: 29 Jan 2026

https://github.com/bluet/ctf.pwnd.pw

Someone's Great Website, CTF present by NCNU ISSDNA

ctf docker hacktoberfest issdna ncnu ncnu-issdna security service wargame

Last synced: 14 Feb 2026

https://github.com/labex-labs/comptia-linux-plus-training-labs

Learn Linux system administration through hands-on labs, covering command-line, file management, user administration, security, networking, and maintenance. Perfect for CompTIA Linux+ certification prep.

bash certification command-line comptia course hands-on hands-on-labs labex labs linux linux-administration linux-commands lpic networking practice-labs programming security shell-scripting sysadmin system-maintenance

Last synced: 17 Jun 2026

https://github.com/execveat/flawed

Static analysis engine for Python web-applications

security security-tools static-analysis taint-analysis

Last synced: 22 Jun 2026