An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/oliverbebber/comptia-sy0-601-study-notes

CompTIA SY0-601 Study Notes

comptia-security security

Last synced: 09 Mar 2026

https://github.com/akmalovaa/crowdsec-blocklist

Crowdsec Blacklist mirror - allows you to create a local HTTP service with an up-to-date list of harmful IP addresses

blocklist crowdsec docker docker-compose firewall security

Last synced: 19 Apr 2025

https://github.com/lanshuns/wintorproxy

A batch script that enabling Tor and Privoxy as a SOCKS5 proxy, providing enhanced privacy and anonymity for internet traffic.

batch privacy proxy security socks tor

Last synced: 25 Feb 2026

https://github.com/louib/challenge-response

Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust.

authentication challenge-response encryption hmac hmac-sha1 nitrokey onlykey otp security yubico yubikey

Last synced: 24 Mar 2025

https://github.com/eqstlab/cve-2024-53677

File upload logic flaw in Apache Struts2 exploit

cve-2024-53677 java jsp proof-of-concept security struts2 vulnerability

Last synced: 16 Sep 2025

https://github.com/extwiii/cybersecurity-university.of.maryland

Cybersecurity Specialization - Cybersecurity Fundamentals. Construction of Secure Systems - Coursera

cyber-security cybersecurity maryland security

Last synced: 03 Feb 2026

https://github.com/rustlanges/rlarndg

RustLangES Actually Random Generator

cryptography generator random security

Last synced: 31 Jul 2025

https://github.com/bisonai/flutter-machine-learning-security

Protect your Machine Learning model in your Flutter application.

edge-machine-learning encoder-decoder mobile-ai security xor-cipher

Last synced: 18 Oct 2025

https://github.com/snehmehta/smartotp

making otp smarter

flask innovation otp python security webapp

Last synced: 14 Aug 2025

https://github.com/p0dalirius/securityscripts

This repository contains a set of useful scripts templates for pentesters and security researchers.

pentest python scripts security

Last synced: 03 Jul 2026

https://github.com/Armaan29-09-2005/AI-OSINT-Security-Analyzer

AI OSINT Security Analyzer is an intelligent platform that leverages AI to perform autonomous investigations across various intelligence sources. With features like multi-source integration and real-time threat intelligence, it ensures comprehensive security assessments. 🛡️🔍

ai ai-agent analysis cohere cve cve-analysis cybersecurity ip ip-address osint osint-tool osint-tools python security security-analysis shodan streamlit vulnerability-assessment

Last synced: 06 Oct 2025

https://github.com/lehcode/soakp

Secure OpenAI interactions with confidence - safeguard your OpenAI API keys and boost your app security

chatgpt-api openai openai-api security

Last synced: 07 Oct 2025

https://github.com/always-further/runseal

Sealed execution environment for GitHub Actions.

actions isolation sandbox security supply-chain-security

Last synced: 05 Jun 2026

https://github.com/demon1a/bounties-uwu

Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne

bugbounty hackerone javascript security tools

Last synced: 14 Oct 2025

https://github.com/saadbazaz/crackhead

A simple, smart & distributed password-cracking algorithm

algorithm password-cracker security

Last synced: 13 Jun 2025

https://github.com/anchore/s3c-workshops

Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.

containers devsecops fedramp k8s sbom security supply-chain-security vulnerability-scanners

Last synced: 09 Oct 2025

https://github.com/patricktulskie/dfang

Defang IOCs, written in rust

defang ioc refang security security-tools

Last synced: 28 Apr 2025

https://github.com/nwtgck/aes128gcm-stream-npm

🛡128-bit AES-GCM Encryption Stream for Web Browsers

aes-gcm browser encryption javascript security stream streams-api

Last synced: 01 Apr 2025

https://github.com/leklund/bauditor

run bundler-audit on a multiple repositories at once

bundler-audit ruby rubygems security

Last synced: 07 Jul 2025

https://github.com/radoslaw-sz/guardio

The most flexible control plane for AI Agent systems

ai ai-agent ai-agents control-plane framework guard mcp security

Last synced: 01 Apr 2026

https://github.com/ryanbalfanz/rtspios

A Raspberry Pi distribution that turns your Pi in to an RTSP server (e.g. security camera)

camera custompios cvlc raspberry-pi-camera raspberrypi raspicam raspivid rtsp rtsp-server security vlc

Last synced: 24 Apr 2025

https://github.com/orijtech/tickeryzer

Check missing (*time.Ticker).Stop() call, which can cause resources leak.

golang security static-analysis

Last synced: 09 Feb 2026

https://github.com/aligent/magento2-bypass-2fa

Magento module allowing two-factor authentication (2FA) to be bypassed for development purposes.

development magento2 security

Last synced: 11 Apr 2025

https://github.com/donedeal0/deepvault

DeepVault allows you to store data in the browser with AES encryption.

aes aes-256 aes-gcm cryptography encryption encryption-decryption gcm local-storage localstorage security

Last synced: 07 Oct 2025

https://github.com/alphasoc/graylog-alphasoc

A content pack to render AlphaSOC alerts within Graylog

graylog-content-pack intrusion-detection malware-analysis monitoring security

Last synced: 01 Mar 2026

https://github.com/aw-junaid/security-and-hacking

Explore ethical hacking and security: penetration testing, vulnerability scanning, and exploit development. Includes tools, scripts, and hands-on labs.

ethical-hacking exploit hacking penetration-testing security vulnerabilities vulnerability-scanners

Last synced: 08 Jan 2026

https://github.com/soos-io/soos-dast

SOOS DAST Scanning - Register for a Free Trial at https://app.soos.io/register

dast penetration-testing security soos web-security

Last synced: 24 Feb 2026

https://github.com/jaybrown/application-launch-monitor-alm-

Extend macOS Gatekeeper functionality by verifying applications at every launch

anti-malware anti-virus antimalware antivirus codesign gatekeeper macos malware privacy security

Last synced: 03 Mar 2026

https://github.com/dukebarman/android-bulletins-harvester

a simple utility for parsing Android security bulletins

android go security security-tools

Last synced: 14 Jan 2026

https://github.com/catalyst/patch-friend

Which of my hosts are affected by a security advisory?

debian python security security-advisories ubuntu

Last synced: 27 Apr 2025

https://github.com/bonifield/splunk_on_security_onion

Splunk configs for Security Onion

bro forwarder onion security splunk sysmon zeek

Last synced: 14 Jun 2025

https://github.com/samouraiworld/sec-guidebook

The Ultimate Security Guide Book for new-cryptorich friends

exploits good-practices privacy protection security wallet

Last synced: 27 Jan 2026

https://github.com/xolox/python-crypto-drive-manager

Unlock all your encrypted drives with one pass phrase

disk-encryption encryption linux luks mount python security

Last synced: 23 Apr 2025

https://github.com/DemiMarie/SlipRock

A secure local interprocess communication library.

interprocess-communication secure-by-default security sockets unix windows

Last synced: 11 Mar 2025

https://github.com/dolmen-go/mylogin

Utilities for reading and writing MySQL' ~/.mylogin.cnf (encrypted MySQL client credentials storage)

credentials encryption golang-library mylogin mysql mysql-client security

Last synced: 12 Jun 2025

https://github.com/rohaquinlop/immunipy

A Python SCA tool that acts as a watchdog, keeping an eye out for security vulnerabilities and reporting them promptly, written in Rust.

cli python python-library sca security vulnerability-detection vulnerability-scanners

Last synced: 17 Oct 2025

https://github.com/alex2276564/telegramnotifier

PrestaShop module that sends customizable Telegram notifications for new orders, admin logins, and new customer registrations. Supports multiple chat recipients, message templates, and automatic update checks.

api automation ecommerce module notifications php prestashop security telegram

Last synced: 14 Oct 2025

https://github.com/topscoder/subgomain

A high-performance tool for identifying domain takeovers with support for custom fingerprints and resolver lists.

bugbounty bugbounty-tool domain-takeover infosec infosectools security security-tools subdomain-takeover

Last synced: 04 Jul 2025

https://github.com/dlion/go-ofile

Use this tool to search for a specific file type in a given domain.

dork go golang security

Last synced: 03 Jul 2025

https://github.com/neuralegion/sectester-js

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

appsec brightsec e2e pentesting qa security test testing typescript

Last synced: 17 Mar 2026

https://github.com/vulnsphere/ai_infra_vuln_pocs

This is the PoC repository of LLM service. Updating...

exploit llm ml nuclei nuclei-templates poc security vulnerability

Last synced: 27 Jan 2026

https://github.com/boogy/iam-policy-validator

⚡ Stop IAM misconfigurations before they become breaches — Catch overprivileged permissions, dangerous wildcards, and policy errors before deployment.

aws iam security

Last synced: 12 Feb 2026

https://github.com/seznam/jailoc

🔒 Jail your AI agents — sandboxed Docker environments with network isolation for Opencode agents

ai-agents cli devtools docker docker-compose golang network-isolation opencode sandbox security

Last synced: 04 Apr 2026

https://github.com/dk26/strict-path-rs

Handle paths from external or unknown sources securely. Defends against 19+ real-world CVEs including symlinks, Windows 8.3 short names, and encoding tricks and exploits.

directory-traversal file-security filesystem-security path-traversal-prevention path-validation rust rust-crate security type-safety web-security

Last synced: 22 Apr 2026

https://github.com/99999g/ak47

AK47 是一款跨平台的漏洞利用与安全评估工具 | AK47 is a cross-platform vulnerability exploitation and security assessment tool

expr mcp pentest redteam security skills wails

Last synced: 10 Apr 2026

https://github.com/enquo/cretrit

Comparison-Revealing Encryption primitives

cryptography encryption enquo hacktoberfest order-revealing-encryption ore rust security

Last synced: 05 Apr 2026

https://github.com/jessechale/halehound-cyd

ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit

bluetooth cc1101 cheap-yellow-display cyd esp32 esp32-diy hacking nrf24l01 offensive-security pentest security security-tools subghz wifi

Last synced: 12 Mar 2026

https://github.com/anthonyharrison/csaf

CSAF generator and validator

csaf devsecops sbom security vex vulnerabilities

Last synced: 12 Jun 2025

https://github.com/zelon88/emotet_analysis-1

A quick & dirty look at an Emotet infection.

analysis botnet campaign emotet heodo malware-analysis opsec security trojan

Last synced: 09 Feb 2026

https://github.com/sjinks/setcap-static

A statically linked lightweight version of setcap(8) to use in `scratch` images

capabilities linux-capabilities scratch-image security security-tools setcap

Last synced: 10 Apr 2025

https://github.com/eliasgranderubio/odin_eye

a tool for doing footprinting. This tool is an online modules subset of Odin Project shown by Elias Grande and Alejandro Ramos at RootedCon 2016 conference.

footprinting hacking-tool security

Last synced: 26 Mar 2025

https://github.com/rocklambros/any2md

Convert PDF, DOCX, HTML, and TXT files — or web pages by URL — to clean, LLM-optimized Markdown with YAML frontmatter.

cli converter docx html llm markdown pdf python security txt

Last synced: 26 Apr 2026

https://github.com/burakozcn01/certstream-server-rust

High-performance Certificate Transparency (CT) monitoring tool written in Rust. Real-time stream of newly issued SSL/TLS certificates from CT logs. Rust implementation of certstream-server with improved performance and memory efficiency.

certificate-transparency certstream ct-logs rust security threat-intelligence websocket x509

Last synced: 22 Feb 2026

https://github.com/carlocorradini/graphql-auth-directive

GraphQL @auth directive that protects resources from unauthenticated and unauthorized access

auth authentication authorization graphql nodejs security typescript

Last synced: 16 Feb 2026

https://github.com/sierrasoftworks/honeypot

A service designed to track malicious SSH login attempts

honeypot security ssh-server

Last synced: 09 Apr 2025

https://github.com/bmedicke/reed

notes about 🔍 Reverse Engineering and 🔥 Exploit Development

debugging exploit-development reverse-engineering security

Last synced: 09 Oct 2025

https://github.com/amadeusitgroup/starter-kit-for-internal-hacking-event

A kit to organize internal hacking events, improving product security and spreading security knowledge.

event fun security

Last synced: 13 Feb 2026

https://github.com/apache/santuario-cpp

Mirror of Apache Santuario C++

c java library santuario security xml

Last synced: 10 Jan 2026

https://github.com/wravoc/goaccess-openbsd

OpenBSD theme for GoAccess Web Log analyzer with prompted ASN database download matching a pre-configured conf which excludes Web Monitoring services and also generates HTML reports.

analytics asn asn-lookup geoip http-requests log logs openbsd security security-tools

Last synced: 24 Oct 2025

https://github.com/zekker6/devsandbox

Sandbox for running untrusted dev tools. Filesystem isolation via bubblewrap, optional MITM proxy for traffic inspection. Perfect for AI coding assistants.

ai-coding-assistant bubblewrap claude-code development-tools linux mitm namespaces proxy sandbox security

Last synced: 29 Apr 2026

https://github.com/visualbean/hibp.net

A simple .NET wrapper for the HIBP (Have I been pwned?) Api

csharp haveibeenpwned hibp netcore nuget security

Last synced: 10 Oct 2025

https://github.com/epappas/llmtrace

Zero-code LLM security & observability proxy. Real-time prompt injection detection, PII scanning, and cost control for OpenAI-compatible APIs. Built in Rust.

agentic ai-agents ai-infrastructure ai-security aiops chatgpt llm-inference llm-monitoring llm-security llm-security-compliance-prompt-injection llmops mlops observability openai pii-detection prompt-injection proxy rust security

Last synced: 19 Feb 2026

https://github.com/octogonapus/registryscanner

Scans Julia registries for possible malicious behavior and misconfigurations.

julia security

Last synced: 28 Jun 2025

https://github.com/upgundecha/applied-security

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Cybersecurity

appsec cloudsecurity cybersecurity devsecops infosec security security-tools

Last synced: 14 Apr 2025

https://github.com/aaearon/mcp-privilege-cloud

A production-ready Model Context Protocol (MCP) server for CyberArk Privilege Cloud integration. Enables AI assistants and MCP clients to securely interact with privileged account management, safe operations, and platform configurations through 8 comprehensive tools.

ai-integration claude-desktop cyberark cyberark-api cybersecurity fastmcp identity-management mcp mcp-server model-context-protocol oauth-authentication oauth2 pam password-vault platform-management privilege-cloud privileged-access-management privileged-accounts python security

Last synced: 18 Feb 2026

https://github.com/rix4uni/portmap

portmap is a fast portscan tool, uses shodan public data for port scan used internetdb.shodan.io and api.shodan.io/shodan/host

bug-bounty bugbounty bugbountytips hacking infosec internetdb osint osint-resources penetration-testing pentest-tool pentesting port-enumeration portscanner recon reconnaissance scan-ports security security-tools shodan threat-intelligence

Last synced: 28 Aug 2025

https://github.com/ayushn21/bridgetown-content-security-policy

A Bridgetown plugin to add a Content Security Policy in a meta tag

bridgetown bridgetown-plugin content-security-policy security

Last synced: 14 Apr 2025

https://github.com/krishealty/worm

Worm is an Android post exploitation Framework to gain remote access of any Android device by exploiting Android Debug Bridge.

cybersecurity hacking hacking-tools information-gathering kali-linux osint-framework osint-tool penetration-testing pentesting python python3 security vulnerability vulnerability-scanners

Last synced: 14 Apr 2025

https://github.com/mitre/apache-tomcat-8-cis-baseline

(WIP) (Alpha) InSpec profile for CIS Apache Tomcat v8 Benchmark

apache inspec inspec-profile mitre-corporation mitre-inspec mitre-saf security tomcat

Last synced: 21 Apr 2025

https://github.com/ivanilves/docker-blackvpn

Runs BlackVPN client inside Docker (with OpenVPN)

anonymity network security testing vpn

Last synced: 11 Apr 2025

https://github.com/fvinas/tf_aws_lambda_ip_whitelist

An AWS Lambda-based mechanism to allow temporary IP whitelisting via security groups

aws-ec2 aws-lambda aws-security-group infrastructure lambda-functions security terraform-module whitelist

Last synced: 14 Apr 2025

https://github.com/buession/buession-security

Buession 安全框架,整合了 spring security、shiro、pac4j;封装了极验等行为验证产品 SDK。

desensitization geetest java mcrypt pac4j security shiro spring

Last synced: 14 Apr 2025

https://github.com/shadawck/nse-install

Install and update external NSE script for nmap

installer-script nmap nmap-scan-script nmap-scripts nse security security-tools

Last synced: 24 Sep 2025

https://github.com/iwpnd/fiber-key-auth

fiber api key authentication middleware

api gofiber golang security

Last synced: 20 Mar 2025

https://github.com/mrtazz/certcal

provide an iCal web feed for certificate expiration

calendar certificates golang security ssl tls

Last synced: 15 Apr 2025

https://github.com/veil-services/veil-go

The sensitive data firewall for AI. Detect and mask PII (Emails, Credit Cards, CPFs) locally with zero-latency before sending prompts to LLMs. Thread-safe & Production ready.

cybersecurity dlp golang llm openai pii-masking privacy security

Last synced: 13 Jan 2026

https://github.com/mychewcents/e2e-encryption

An npm module to allow for easier E2E encryption and decryption. Works on 'tweetnacl' npm package.

e2e-encryption encryption encryption-decryption encryption-tool end-to-end-encryption npm npm-package privacy privacy-protection security

Last synced: 17 Jan 2026

https://github.com/panga/jboss-security-extended

JBoss Security Extended

jboss security

Last synced: 01 Aug 2025

https://github.com/csm-actions/approve-pr-action

GitHub Action to approve pull requests securely

github-actions oss security

Last synced: 13 May 2025

https://github.com/javiorfo/go-microservice

API Rest, Tracing, Auditory, Swagger and Keycloak

api fiber go golang gorm-orm keycloak microservice security tracing web

Last synced: 02 Jan 2026