An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/zillionare/omega

Data module for project zillionare

quant quotation security trade

Last synced: 23 Jul 2025

https://github.com/dheerajjha451/websitethreatscan

A web tool to scan websites for common vulnerabilities like SQL Injection, CSRF protection checks, Cookie security configurations, and other sensitive information exposure.

collaborate cybersecurity hacking hackingtool nextjs python python3 security security-tools tailwindcss threatscanning websecurity website

Last synced: 14 Sep 2025

https://github.com/padsalatushal/cve-2011-2523

Python exploit for vsftpd 2.3.4 - Backdoor Command Execution

cve cve-2011-2523 exploit python security vsftpd-exploit

Last synced: 31 Jul 2025

https://github.com/nusenu/ornetradar

Automatically detected Relay Groups on the Tor Network

metrics safety security tor tor-network

Last synced: 03 Jan 2026

https://github.com/mlshv/exactify

CLI tool that removes ^ prefix from package.json dependecies and replaces them with specific versions from package-lock.json

cli javascript packagejson security

Last synced: 25 Jun 2025

https://github.com/grapheneos/platform_system_sepolicy

Base SELinux policy (extended by per-device repositories)

android grapheneos privacy security

Last synced: 13 Apr 2025

https://github.com/theori-io/web3-publications

Collection of Web3 Audits and Publications by ChainLight of Theori

blockchain ethereum exploit fuzzing publications security smart-contract web3

Last synced: 08 May 2025

https://github.com/mohamedch7/kubectl-guard

Accidentally modifying production instead of a local cluster? kubectl-guard helps prevent such critical mistakes.

kubernetes script security

Last synced: 13 May 2025

https://github.com/itinerisltd/trellis-cve-2018-6389

Mitigate CVE-2018-6389 WordPress load-scripts / load-styles attacks

ansible-galaxy cve-2018-6389 security trellis wordpress

Last synced: 25 Jun 2025

https://github.com/ctrlaltdev/illegal-auth-attempts

๐Ÿ”’ Lists of IPs making illegal auth attempts and users used doing so

auth infosec ip login scan security ssh user

Last synced: 04 Apr 2025

https://github.com/weebdatahoarder/go-away

[Mirror] Self-hosted abuse detection and rule enforcement against low-effort mass AI scraping and bots.

ai-scraping http-proxy mirror security

Last synced: 16 May 2025

https://github.com/phosphore/cwmpwn

Leveraging CWMP (CPE WAN Management Protocol) to extract vendor specific secrets and configurations from CPEs

cpe cwmp security tr-069

Last synced: 29 Apr 2025

https://github.com/qkaiser/awind-research

This repository holds interesting bits and pieces related to research I performed on wireless presentation devices manufactured by Awindinc and OEM'ed to multiple manufacturers.

awind barco crestron exploits extron haworth infocus newline pentesting security teqavit

Last synced: 15 Aug 2025

https://github.com/a3r0id/php-rate-limiting

A simple system to rate-limit site visitors by time interval/request amount.

include measures php rate-limiting security simple turnkey turnkey-script

Last synced: 06 Apr 2025

https://github.com/epsylon/paranoia-browser

pArAnoIA - Tiny "Secure" Browser

browser cryptography privacy security toolkit

Last synced: 29 Jun 2025

https://github.com/dneustadt/dneustadtcsrfcookiebundle

Symfony bundle that provides Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications

ajax angular axios csrf react security vue xhr xsrf

Last synced: 03 Apr 2025

https://github.com/ege-erdogan/unsplit

Supplementary code for the paper "UnSplit: Data-Oblivious Model Inversion, Model Stealing, and Label Inference Attacks Against Split Learning".

deep-learning machine-learning privacy security

Last synced: 13 Aug 2025

https://github.com/teverett/fbsd-secured

Ansible playbook to harden FreeBSD installations

ansible freebsd security

Last synced: 22 Mar 2025

https://github.com/yashvardhan-kukreja/kube-bench-exporter

:whale: :rocket: Helps you to export your kube-bench reports to multiple targets like Amazon S3 buckets with ease.

aquasec exporter kube-bench kubernetes security

Last synced: 11 Apr 2025

https://github.com/mattdl/dua

Source code "Unsupervised Model Personalization while Preserving Privacy and Scalability: An Open Problem." @ CVPR2020

cvpr2020 framework importance personalization privacy scalability security unsupervised-learning

Last synced: 21 Jul 2025

https://github.com/lukehinds/fastllm

FastLLM - Rust based LLM Inference API

inference llama llm mistral rust security speed

Last synced: 15 Apr 2025

https://github.com/grapheneos/platform_external_pdfviewer

PdfViewer app prebuilt using the latest official release of the PdfViewer app.

android grapheneos pdf pdf-viewer security

Last synced: 13 Apr 2025

https://github.com/psecio/uri

A secure URI generation and validation library

security security-tools signature uri url

Last synced: 11 Apr 2025

https://github.com/socialgouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 23 Feb 2026

https://github.com/leonjza/go-observe

๐ŸŒŒ Go-Observe: A command line Mozilla Observatory client written in Go

commandline go security web

Last synced: 05 Jul 2025

https://github.com/simeononsecurity/saps

A collection of scripts to assist System Adminsitrators

automation documentation mitigations powershell powershell-script security

Last synced: 23 Apr 2025

https://github.com/shaps80/abracadabra

A truly plug 'n' play solution for securing your code.

authentication code pin security touchid

Last synced: 11 Mar 2026

https://github.com/proxylity/wg-client

Standalone UdpClient-compatible WireGuard client for .NET. Implements the Noise_IKpsk2_25519_ChaChaPoly_BLAKE2s handshake with ChaCha20-Poly1305 transport encryption.

api-client dotnet network-programming security udp wireguard

Last synced: 16 Jun 2026

https://github.com/fxamacker/webauthn-demo

WebAuthn server demo for registration and authentication (Go/Golang)

authentication fido2 passwordless security web-application webauthn webauthn-demo yubikey

Last synced: 28 Apr 2025

https://github.com/charlesjones-dev/claude-code-plugins-dev

Automate developer busy work with AI-powered plugins for Claude Code.

ai claude claude-code developer-tools git git-tools llm performance performance-tools security security-tools

Last synced: 01 Apr 2026

https://github.com/paulveillard/cybersecurity-ctf

A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity

ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools

Last synced: 10 Apr 2025

https://github.com/daggerok/csrf-spring-webflux-mustache

This repository is contains example application using spring boot 2.0, webflux, spring security 5, reactive mongodb and mustache template engine: spring security 5, CSRF protection with mustache, spring webflux functional routes security, method security, authorization decision, etc

controller-advice csrf csrf-protection csrf-tokens css-grid css-grid-layout maven mongodb mustache reactive reactive-mongo reactive-programming security spring-boot spring-mvc spring-security spring-web spring-webflux webflux

Last synced: 20 Oct 2025

https://github.com/lchsk/django-insecure

Example of an insecure Django application

django education security

Last synced: 25 Apr 2025

https://github.com/rennf93/flaskapi-guard

A security library for Flask that provides an extension to control IPs, log requests, and detect penetration attempts. It integrates seamlessly with Flask to offer robust protection against various security threats.

api extension flask ip python rest security

Last synced: 03 Jun 2026

https://github.com/rix4uni/tldscan

A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner

Last synced: 20 Apr 2026

https://github.com/0xle0ne/socknet

PropTypes style for secure your socket.io application

argument-parser framework nodejs security socket-io websockets

Last synced: 02 Apr 2026

https://github.com/netguru/mobile-security-review

Security review guidelines for mobile projects

android ios owasp security

Last synced: 11 Sep 2025

https://github.com/tintinweb/vscode-chonky

๐Ÿฃ Chonky - A Superhuman LLM Auditing Agent for Solidity

agentic-ai security solidity vscode-extension

Last synced: 15 May 2026

https://github.com/carekit-apple/ibm-hyperprotectsdk

The IBM Hyper Protect iOS SDK for CareKit is an addon for the CareKit framework that consumes IBM Hyper Protect Services for zero-trust persistent cloud storage and bi-directional synchronization across multiple devices with just 2 lines of code

ios-swift mbaas mongodb security typescript

Last synced: 12 May 2025

https://github.com/aiven-open/pghostile

Pghostile is a tool to automate the exploitation of PostgreSQLยฎ specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.

exploitation postgresql security security-audit security-tools

Last synced: 29 Apr 2025

https://github.com/express-rate-limit/rate-limit-postgresql

A PostgreSQL store for express-rate-limit middleware

express-middleware nodejs postgresql rate-limiting security

Last synced: 30 Apr 2025

https://github.com/thecyberarcher/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 13 Apr 2025

https://github.com/mubix/ctf

Capture The Flag Information

capture-the-flag ctf hacking learning security

Last synced: 11 Apr 2025

https://github.com/imagemlt/easyknife

a simple app like CKnife

security

Last synced: 13 Apr 2025

https://github.com/ansible/ansible-sign

The `ansible-sign` utility for signing and verifying Ansible project directory contents.

ansible ansible-dev-tools awx cryptography gpg security

Last synced: 01 Aug 2025

https://github.com/mika-f/plana

Plana is a powerful general purpose obfuscator for C#, but optimized for Unity and UdonSharp, containing a variety of features which provide protection for your source code from the hackers

csharp dotnet obfuscate obfuscation obfuscator protection security udonsharp unity vrchat

Last synced: 08 Jul 2025

https://github.com/elliotwutingfeng/2fas-backup-decryptor

CLI tool to decrypt backup files exported from the 2FAS Authenticator app. This application is neither affiliated with Two Factor Authentication Service, Inc. nor 2FAS.

2fa 2fas aes aes-gcm android backup cryptography cybersecurity decryption encrypt encryption hmac-sha256 ios linux macos otp pbkdf2 security totp windows

Last synced: 29 Apr 2025

https://github.com/0x4f53/getperms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 01 May 2025

https://github.com/azu/github-advisory-database-rss

GitHub Advisory Database RSS Feeds.

github rss security

Last synced: 15 Jan 2026

https://github.com/r-net-tools/net.security

Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

attck capec cpe cve cwe mitre nist oval r sard security

Last synced: 18 Feb 2026

https://github.com/elsevierlabs-os/terraform-cloud-custodian-lambda

A collection of terraform modules that allow you to deploy and manage cloud-custodian lambda resources using native terraform as opposed to using the cloud-custodian CLI

aws aws-lambda c7n c7n-mailer cloud cloud-custodian compliance cost-optimization lambda rules-engine security serverless

Last synced: 06 Mar 2026

https://github.com/containerscrew/rootisnaked

Simple root privilege escalation detection using eBPF ๐Ÿ

cilium-ebpf ebpf ebpf-go go golang linux-kernel privilege-escalation security

Last synced: 12 Apr 2025

https://github.com/dkorunic/axfr2hosts

Fetches one or more DNS zones via AXFR and dumps in Unix hosts format for local use

bind bind9 bind9-dns dns dns-server domain linux networking security sre sysops unix zone

Last synced: 12 Apr 2025

https://github.com/nsneruno/magisk_detector

Flutter Support for integrating Magisk Detector for Android Application. Based from MagiskDetector.

android android-library c dart flutter flutter-library flutter-plugin magisk ndk root-detection root-detection-bypass security

Last synced: 09 May 2025

https://github.com/AmoloHT/CVE-2022-26134

ใ€Œ๐Ÿ’ฅใ€CVE-2022-26134 - Confluence Pre-Auth RCE

confluence cve cve-2022-26134 exploit hacking infosec rce security

Last synced: 10 Mar 2025

https://github.com/swamithedev/password_strength

The Password Strength Checker project aims to help users assess the robustness of their passwords quickly and effectively.

frontendproject frontendprojects password password-checker password-generator password-strength password-strength-checker security swaminathanselvam swamithedev ui ui-components ui-design

Last synced: 19 Oct 2025

https://github.com/fi5t/nimbussrp-android

Classic NimbusSRP library is optimized for Android

android android-library nimbusds security srp-6a

Last synced: 09 May 2025

https://github.com/modem-dev/drizzle-scoped-db

Scope-enforced DB queries for Drizzle ORM

db drizzle drizzle-orm security

Last synced: 04 Jul 2026

https://github.com/thalesgroup/gose

GOSE = JOSE and friends for the Go developer

golang jsonwebtoken security

Last synced: 03 Oct 2025

https://github.com/thalesgroup/security-risk-assessment-tool

The ISRA security-risk-assessment-tool project is an Electron based application used to do security risk assessments at a technical level

cvss cybersecurity engineering iso iso-27005 iso27005 risk-analysis risk-assessment security security-tools

Last synced: 17 Mar 2025

https://github.com/benwestgate/bitcoin-core-on-tails

Deprecated Setup script for installing Bitcoin Core to Tails persistent storage. Full node, wallet, backup and clone for a friend functions

bash bash-script bitcoin bitcoin-core debian full-node linux operating-system privacy security shell tails

Last synced: 28 Oct 2025

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/quodeq/quodeq

AI-powered code quality and security scanner. Open source, MIT, runs locally. <๐Ÿงญ>

ai-tools cli code-analysis code-quality cwe devtools iso-25010 llm open-source python quality-assurance security static-analysis vulnerability-scanner

Last synced: 10 May 2026

https://github.com/docker-secret-operator/dso

Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.

cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security

Last synced: 02 Jun 2026

https://github.com/thotypous/operagbas

Alternative "security" module for Brazilian banks

banking-applications security

Last synced: 12 Oct 2025

https://github.com/ph-7/fake-admin-honeypot-v1.1

:honey_pot: New Honeypot Version: 1.2! :honeybee: This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honeypot for the attackers!

admin admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots ph7cms security

Last synced: 09 Apr 2025

https://github.com/ffmancera/ping_of_death

Some scripts to do a ping of death attack.

ddos-attacks networking python3 scapy security

Last synced: 09 Oct 2025

https://github.com/leonklingele/securetemp

Secure temporary directories and files in Go (ram disk, tmpfs)

ramdisk security temporary-directories temporary-files tmpfile tmpfs

Last synced: 07 May 2025

https://github.com/iamcryptoki/passcat

:key: Generate cryptographically secure, memorable passphrases.

memorable-passphrases passphrase password python security wordlist words

Last synced: 29 Apr 2025

https://github.com/nategraf/naumachia-challenges

Open-source challenges for Naumachia

ctf ctf-challenges docker docker-compose network security

Last synced: 24 Apr 2025

https://github.com/tankerhq/sdk-android

Tanker client-side encryption SDK for Android

android cryptography encryption end-to-end java kotlin privacy sdk security tanker

Last synced: 09 Apr 2025

https://github.com/jbergstroem/hadolint-gh-action

A hadolint linter for github actions that provides code annotations (and more)

bash containers continuous-integration docker github-actions hadolint security

Last synced: 16 Mar 2025

https://github.com/open-horizon/kubearmor-integration

KubeArmor runtime security integration with Open Horizon

docker edge horizon kubearmor security

Last synced: 19 Jan 2026

https://github.com/raforg/libslack

A UNIX/C library of general utilities for programmers with Slack

bsd c daemon daemonize debian freebsd library linux macos macosx netbsd openbsd posix redhat security svr4 ubuntu unix

Last synced: 16 Oct 2025

https://github.com/paretosecurity/aremykeyssafe

Find out if your SSH keys are safe!

public-key security ssh

Last synced: 12 Jul 2025

https://github.com/mitocgroup/www

Mitoc Group is a technology company focusing on cloud adoption in private equity. Our track record includes helping private equity portfolio companies migrate to public clouds, as well as establish devops and dataops processes using cloud native services and industry best practices.

assurance development documents legal policy process quality security software

Last synced: 26 Jan 2026

https://github.com/wmeints/webauthn-sample

Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn

asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn

Last synced: 26 Jan 2026

https://github.com/wolfssl/arduino-wolfssl

This repository is a restructured copy of https://github.com/wolfSSL/wolfssl/ for the Arduino environment. Any Pull Requests for code changes should be opened there.

arduino-library cryptography security ssl tls tls12 tls13

Last synced: 27 Apr 2025

https://github.com/0x4f53/GetPerms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 11 Apr 2025

https://github.com/elfenware/obliviate-web

A password manager that forgets your passwords

hacktoberfest manager passphrase password security svelte

Last synced: 14 May 2025

https://github.com/anqorithm/saudi-cert-api

This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.

alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities

Last synced: 29 Jun 2025

https://github.com/pahrohfit/sanic-beskar

Strong, Simple, and Precise, (and now async!) security for Sanic APIs

authentication authorization python python3 sanic security

Last synced: 05 May 2025