An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/jmaczan/ktotu

Identify devices in your network and monitor it against intruders

linux monitoring netsec netsecurity network network-monitoring network-security python security

Last synced: 02 Aug 2025

https://github.com/soufantech/arx

Arx is an access control library for Node.js apps, strongly focused on efficiency, type safety and overall composability.

access-control authorisation permissions policy security

Last synced: 12 Apr 2025

https://github.com/petemcw/ansible-role-hardening

Ansible role for basic server hardening

ansible ansible-role security

Last synced: 14 Apr 2025

https://github.com/lirantal/security-report

Report a security vulnerability

nodejs npm npx security

Last synced: 21 Apr 2025

https://github.com/mjorgegulab/nestjs-cryptography

Secure NestJS cryptography module 🔐

cryptography javascript nest nestjs node security typescript

Last synced: 27 Jul 2025

https://github.com/gentoo/gentoo-apparmor-profiles

[ORIGIN] AppArmor profiles just for Gentoo

apparmor hacktoberfest security

Last synced: 01 Feb 2026

https://github.com/federicoceratto/desktop-security-assistant

Help desktop users improve their security

debian gui python security ui

Last synced: 20 Sep 2025

https://github.com/righettod/code-snippets-security-utils

Provides different utilities methods to apply processing from a security perspective.

appsecurity code-snippets java security

Last synced: 31 Aug 2025

https://github.com/haikelfazzani/otp

🔐 Zero dependencies Deno/Bun/Node/Browser module for TOTP and HOTP generator based on RFC 6238 and RFC 4226 🗝️

2fa browser bun cryptography deno hotp nodejs one-time-password otp rfc-6238 rfc4226 security totp web-crypto web-cryptography-api

Last synced: 13 May 2025

https://github.com/umuttopalak/pass-cli

A secure command-line password manager with AES-256 encryption and sudo authentication

aes-256 cli command-line-tool cryptography keyring password-generator password-manager password-security python security

Last synced: 28 Jul 2025

https://github.com/theamazingpt/passman

A dmenu frontend for password-store (Pass: The Standard Unix Password Manager)

bash dmenu linux manager pass password password-store security unix

Last synced: 10 Mar 2026

https://github.com/bocaletto-luca/systemauditdashboard

SystemAuditDashboard is a centralized Linux system monitoring dashboard implemented in Python using Tkinter. It provides a real-time overview of key system information including: Kernel Version Operating System Details Logged-in User Number of Active Processes Number of Open Ports Load Average (1 min, 5 min, 15 min) Available Memory (in MB)...

admin-tool bocaletto-luca gui linux python security security-tool system-audit system-audit-dashboard system-tool tkinter

Last synced: 17 Sep 2025

https://github.com/Tjoosten/Security-Checklists

Security checklists and advisories that can be used on projects.

documentation security

Last synced: 20 Nov 2025

https://github.com/ibreakthecloud/redactrus

Go package for redacting sensitive info in Logrus logs.

golang hacktoberfest logging logrus redact security

Last synced: 23 Mar 2025

https://github.com/mchackorg/gonts

Network Time Security in Go

go network ntp nts protocol security

Last synced: 16 Jan 2026

https://github.com/sindecker/pentest-playbook

The Penetration Testing Playbook — Beginner to Intermediate Field Guide. 359 pages, 731 code examples, 37+ compliance frameworks. Read free on GitHub.

active-directory beginner bug-bounty burp-suite ctf cybersecurity ethical-hacking hacking infosec oscp oscp-prep owasp penetration-testing pentest red-team security security-tools web-security

Last synced: 18 Apr 2026

https://github.com/mellow-hype/keysniffer-poc

Simple PoC Linux keysniffer showing impact of a lack of GUI-isolation in X display server.

infosec keysniffer linux proof-of-concept security

Last synced: 09 Jul 2025

https://github.com/jcsec-security/cosmwasm-security-spotlight

Posts and labs to learn CosmWasm smart contract security vulnerabilities and audit

audit blockchain bug bugbounty contract cosmos cosmossdk cosmwasm ctf dapp defi hacking rust security smart smartcontract vulnerabilities

Last synced: 26 Oct 2025

https://github.com/kumuluz/kumuluzee-jwt-auth

KumuluzEE JWT Authentication extension provides role based access control microservice endpoints using OpenID Connect and JSON Web Tokens.

authentication cloud-native java javaee jwt jwt-authentication jwt-token kumuluzee microservices openid-connect rbac rest security

Last synced: 06 Apr 2025

https://github.com/louis3797/xss-shield

A powerful middleware for securing your express.js applications against cross-site scripting (XSS) attacks

express-middleware middleware node security typescript xss xss-attacks xss-filter xss-sanitizer xss-shield

Last synced: 07 Apr 2025

https://github.com/nolze/imagesteg

A simple image steganalysis (steganography analysis) tool in Python with web-based GUI

ctf security steganalysis steganography

Last synced: 13 Aug 2025

https://github.com/fabian-hk/secure-two-party-computation

Python implementation of the TPC protocol from the paper "Authenticated Garbling and Efficient Maliciously Secure Two-Party Computation"

google-protocol-buffers multi-party-computation network-communication python3 secure-computation security tpc two-party-computation

Last synced: 14 Apr 2025

https://github.com/ztalbot2000/zerofile

Simple command line tool that fill a file with binary zeroes, then removes it.

clean clear data disk erase fill reset security wipe zero

Last synced: 26 Aug 2025

https://github.com/jarelllama/emerging-threats

Block malware on your network with your DNS sinkhole using threat intelligence extracted from Emerging Threats rulesets.

adblock-list adguard adguard-blocklist adguard-home blacklist blocklist dns filterlist malware phishing phishing-sites pihole pihole-blocklists security

Last synced: 29 Sep 2025

https://github.com/lukebaggett/ssh-credscan

A multi-factor SSH login scanner with support for password, public key, and google authenticator authentication.

google-authenticator multi-factor-authentication scanner security ssh ssh-client two-factor-authentication

Last synced: 22 Jul 2025

https://github.com/lilydjwg/httpseverywhereuserrules

My personal HTTPSEverywhere rules

configuration firefox https security

Last synced: 04 Feb 2026

https://github.com/mhmdiaa/acumen

A clean UI with a modular structure to enhance security researchers' ability to work with data

penetration-testing penetration-testing-tools pentesting recon security security-tools user-interface visualization web-application-security

Last synced: 19 Apr 2025

https://github.com/kaanguru/lock4it

Offline hardware and software asset management tool for IT professionals.

cross-platform password-manager privacy pwa pwa-apps security skeleton svelte sveltekit tailwindcss typescript

Last synced: 01 Sep 2025

https://github.com/hleliofficiel/exaaiagent

ExaAiAgent — Advanced AI-powered penetration testing framework with Docker sandbox, multi-agent workflows, and 50+ integrated cybersecurity tools.

ai-agent bug-bounty cybersecurity hacking llm pentesting prompt-injection python security vulnerability-scanner

Last synced: 01 Apr 2026

https://github.com/boxyhq/jackson-cerbos

This is an example application that demonstrates how to use Cerbos with SAML Jackson

access-control authorization cerbos policy saml-authentication security

Last synced: 01 Aug 2025

https://github.com/miller79/spring-security-demo

Demonstrates how to use Spring Security with common production patterns.

java oauth2 security spring spring-boot spring-framework spring-security

Last synced: 01 Jul 2025

https://github.com/dodo325/flytrap

People tracker on the Internet. OSINT analysis and research tool by dodo325. Catch a user using your URL!

flask hacking hacking-tool ngrok osint security security-tools social-engineering

Last synced: 09 Apr 2025

https://github.com/divineomega/laravel-password-security-audit

🔏 Artisan command to audit the security of your users' passwords

laravel laravel-package password php security security-audit users

Last synced: 24 Aug 2025

https://github.com/hackardox/openv

openv a tool to automatically load secrets from .env files using 1password CLI under the hood

1password secrets security

Last synced: 29 Aug 2025

https://github.com/sap/sanitizer-checker

A tool to evaluate the security of JavaScript sanitizer functions.

cross-site-scripting injection javascript sanitizer security

Last synced: 09 Aug 2025

https://github.com/panther-labs/pysigma-backend-panther

pySigma Panther Backend

python security

Last synced: 12 Aug 2025

https://github.com/panther-labs/stix2

Pure go implementation of stix2

golang security

Last synced: 12 Aug 2025

https://github.com/bongochong/waspscanner

A Basic Scanner for Vulnerabilities Related to HiddenWasp Malware on GNU/Linux

anti-malware bash hidden-wasp hiddenwasp script security shellscript

Last synced: 08 Apr 2025

https://github.com/certwatch-app/cw-agent

SSL/TLS certificate monitoring agent for Kubernetes and on-prem infrastructure. Scan certificates, detect expiration, validate chains, and sync to CertWatch cloud.

certificate cli cloud-native devops golang kubernetes monitoring security sre ssl tls

Last synced: 13 Jan 2026

https://github.com/vaibhavpandeyvpz/phuck

Single-file shell to f__k vulnerable PHP servers, solely for educational and research purposes. Powered by Bootstrap and React.js, features a file browser and browser based, SSH like terminal.

administraction file-manager hacking security shell ssh sysadmin terminal

Last synced: 24 Apr 2025

https://github.com/aegisjsproject/core

A fast, secure, modern, light-weight, and simple JS library for creating web components and more!

aegis component-library constructable-stylesheets css custom-elements dom html html-templates sanitizer-api security web-components

Last synced: 16 Jan 2026

https://github.com/0xedward/fisherman

a fisherman catches phishes - a tool to look up reputation of email addresses

email infosec phishing python security security-tools threat-intelligence

Last synced: 04 Oct 2025

https://github.com/authzforce/fiware

FIWARE Generic Enabler for PDP/PAP support functions using an access control schema based on the XACML standard

authzforce fiware pdp security xacml

Last synced: 02 Jan 2026

https://github.com/pythonhacker/varuh

Password manager for the command line for Unix like operating systems

command-line command-line-tool encryption golang linux password-manager security security-tools shell unix-like

Last synced: 19 Mar 2025

https://github.com/hugobatista/tailhoogram

Send Tailscale webhook events to Telegram using Cloudflare Workers

audit cloudflare cloudflare-workers events security tailnet tailscale telegram webhook

Last synced: 26 May 2026

https://github.com/infineon/pkcs11-optiga-tpm

OPTIGA™ TPM-Based PKCS #11 Token Setup and User Guide

pkcs11 raspberry-pi security tpm2

Last synced: 06 Apr 2025

https://github.com/googlechromelabs/web-identity-demos

Demos for identity on the web. Built by the Chrome Developer Relations team and friends.

authentication autofill demo passkeys security

Last synced: 09 Jul 2025

https://github.com/luketainton/pwnedpw

Checks if your password has been leaked.

password pwned pwned-passwords pwnedpasswords security

Last synced: 30 Apr 2025

https://github.com/rm3l/container-scan-to-sarif

Converts Azure Container Scan Action output to SARIF, for an easier integration with tools like GitHub Code Scanning

container-scanning go golang sarif sarif-report security

Last synced: 26 Mar 2025

https://github.com/cihatsolak/net7-jwt-token

Main project is audience dependent on access to other api projects. I am providing information about the structure and architecture of the jwt token.

entity-framework-core jwt-token migration net7 nlayer-architecture security webapi

Last synced: 06 May 2025

https://github.com/kerberjg/chillinode

Node.js-based captive portal system for Linux

captive-portal linux network-management nodejs openwrt security

Last synced: 11 Apr 2025

https://github.com/Nearata/flarum-ext-twofactor

A Flarum extension. Allow your users to enable two factor authentication.

flarum flarum-extension security two-factor

Last synced: 28 Mar 2025

https://github.com/didjacome/modules.azure

This repository aims to have modules and scripts created for Microsoft Azure administration

accounts assessment azure engineer management powershell rbac resources security snapshot

Last synced: 17 Jan 2026

https://github.com/andiveloper/ts-rbac

Use ts-rbac if you need role-based access control in your TypeScript application, independent from your architecture.

jwt security ts typescript

Last synced: 06 May 2025

https://github.com/aw-junaid/android-security

Explore Android security: secure app development, reverse engineering, vulnerability testing, and best practices for data protection and encryption.

android android-rat androidsecurity hacking hacking-tool security vulnerabilities

Last synced: 01 Jul 2025

https://github.com/neurophant/ouija

Python relay/proxy server and library to build reliable encrypted TCP/UDP tunnels with entropy control for TCP traffic

asyncio censorship cipher encrypted entropy http https network proxy relay security tcp tunnel udp

Last synced: 04 May 2025

https://github.com/turbot/steampipe-mod-snowflake-compliance

Run individual controls or full compliance benchmarks across all of your Snowflake accounts using Powerpipe and Steampipe.

compliance hacktoberfest powerpipe powerpipe-mod security snowflake snowflakedb steampipe steampipe-mod

Last synced: 11 Jul 2025

https://github.com/kyopark2014/aws-security-token-service

It shows how to generate and use temporary security credential using AWS STS.

aws aws-lambda aws-sdk lambda security temporary-credentials

Last synced: 12 Apr 2025

https://github.com/anthonyharrison/sbom4rust

SBOM4Rust generates a Software Bill of Materials (SBOM) for a Rust component.

cyclonedx devsecops rust sbom sbom-generator security spdx

Last synced: 28 Oct 2025

https://github.com/ebauman/simpleca

Simple PKI for developers.

certificates cli golang pki security tls

Last synced: 17 Jan 2026

https://github.com/swedishmike/dmarcparser

A quick and dirty implementation to get DMARC reports into Splunk for further analysis

dmarc dmarc-reports email python security spam-prevention splunk splunk-sdk

Last synced: 08 May 2025

https://github.com/itszeeshan/subdomainx

all-in-one subdomain enumeration and reconnaissance tool designed for modern cybersecurity professionals, penetration testers, and security researchers.

amass assetfinder bug-bounty cybersecurity dnsrecon findomain hacking httpx infosec nmap offensive-security osint penetration-testing port-scanning reconnaissance red-team security security-tools subdomain-discovery subfinder

Last synced: 09 Sep 2025

https://github.com/tankerhq/sdk-python

Tanker Python SDK - mirror of https://gitlab.com/TankerHQ/sdk-python

cryptography encryption end-to-end privacy python sdk security tanker

Last synced: 09 Sep 2025

https://github.com/ryandaniels/ansible-role-dnsmasq-adblock

Use dnsmasq for adblocking with OpenVPN. Use this Ansible role after installing OpenVPN (PiVPN or Streisand, etc) on a RaspberryPi or a VPS for example.

adblock ansible ansible-role dnsmasq openvpn privacy raspberry-pi security ubuntu vpn

Last synced: 10 Apr 2025

https://github.com/fkie-cad/bidcos-security-doc

A documentation of the Bidcos (homematic) radio protocol with focus on practical security aspects

eq3 home-automation homematic security urh

Last synced: 06 May 2025

https://github.com/nearata/flarum-ext-twofactor

A Flarum extension. Allow your users to enable two factor authentication.

flarum flarum-extension security two-factor

Last synced: 10 Apr 2025

https://github.com/vdlp/oc-csrf-plugin

Adds CSRF protection to October CMS frontend.

csrf october-cms october-plugin octobercms php security

Last synced: 12 Apr 2025

https://github.com/weixian-zhang/fuzzie

A VSCode GUI-based fuzzer for Rest API and GraphQL

fuzzing python3 rest-api security vscode-extension

Last synced: 30 Dec 2025

https://github.com/przemub/cysectool

CySecTool is a tool that finds a cost-optimal security controls portfolio in a given budget for a probabilistic attack graph.

optimization security

Last synced: 17 Jan 2026

https://github.com/sakryukov/storage-free-pass

Storage-Free Pass is a generator of highly secure passwords based on cryptographic hash and master password, which should be memorized; no password storage is involved

authentication criptographic-hash cryptography css html javascript security

Last synced: 07 May 2025

https://github.com/geniuszly/cve-2022-44149

it is script designed to interact with a router by sending a payload to its system tools. The script retrieves the router's configuration from environment variables to ensure security. It includes functions for generating an authorization header, sending a payload, and logging the process.

cve cve-2022-44149 cybersecurity ethical-hacking exploit exploit-development linux payload penetration-testing poc privilege-escalation security vulnerability vulnerability-research

Last synced: 11 Apr 2025

https://github.com/geniuszly/cve-2022-45701

it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.

arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research

Last synced: 11 Apr 2025

https://github.com/marcreichel/password-exposed-rule

Laravel Validation rule to check that a password hasn't been exposed

data-breach haveibeenpwned laravel laravel-framework laravel-package password security validation

Last synced: 13 Jan 2026

https://github.com/oktsec/oktsec

Security layer for AI agent-to-agent communication. Every message is signed, inspected, and logged. If it doesn't comply, it doesn't pass. No LLM. No cloud. Single binary. Your infra, your data.

ai-agents audit ed25519 golang identity inter-agent mcp open-source proxy security

Last synced: 02 Apr 2026

https://github.com/ms2138/cameraviewer

Add/View Dahua security camera video streams

camera dahua dahua-cameras onvif onvif-camera security swift uikit xcode

Last synced: 04 May 2025

https://github.com/strmprivacy/data-plane-helm-chart

Care about your data leaving your VPC/environment in SaaS mode? With our self-hosted option you can run our privacy focused Data Plane in your own Kubernetes Cluster. Just (1) sign-up, (2) request a self-hosted installation, (3) use our values.yaml on your own k8s clusters and (4) run your (customer) data inside your own cloud like 🪄

charts data helm kubernetes privacy security

Last synced: 23 Jun 2025

https://github.com/fiware/tutorials.roles-permissions

:closed_book: FIWARE 402: IDM - Application Roles and Permissions

fiware fiware-keyrock identity-management security tutorial

Last synced: 30 Apr 2025

https://github.com/exabrial/javax-security-cdi-extension

A CDI Portable Extension for Java EE 7 (and maybe 8) that allows you to use @RolesAllowed on CDI Beans and their Methods

cdi cdi-extension interceptors java java-ee-7 role-based-access-control security

Last synced: 11 Jan 2026

https://github.com/ashishb/checkdevicecredentials

Force device credential check before decrypting data

android android-security keystore security

Last synced: 02 May 2025