An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/advanced-security/demo-java

GitHub Advanced Security scanning tutorial repository for Java

advanced-security demo devsecops example security static-analysis

Last synced: 12 Apr 2025

https://github.com/timoa/secure-go-backend-clean-architecture

Project that provides DevSecOps best practices on the Go Backend Clean Architecture

devsecops go golang security security-automation

Last synced: 08 May 2025

https://github.com/volkansah/implementing-ai-systems-whitepaper

This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.

ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers

Last synced: 12 Sep 2025

https://github.com/theAkito/userdef

A more advanced adduser for your Alpine based Docker images.

alpine docker linux musl permissions security

Last synced: 21 Mar 2025

https://github.com/echo-devim/pyjacktrick

Python module hijacking POC

code-execution hijacking python security

Last synced: 27 Mar 2025

https://github.com/umutcamliyurt/Amnezichat

An encrypted and anti-forensic web chat server

anonymity anti-forensics counter-forensics forensics opsec privacy rust security

Last synced: 14 May 2025

https://github.com/k4yt3x/ssh_config

K4YT3X's Hardened OpenSSH Client Configuration

hardening linux openssh security ssh

Last synced: 29 Oct 2025

https://github.com/0xn0ne/sensitive-helper

基于正则表达式的本地文件敏感信息数据挖掘助手。Regular Expression Based Data Mining Assistant for Local File Sensitive Information.

aksk infomation jwt scanner security sensitive

Last synced: 11 Apr 2025

https://github.com/issif/falco-rules-explorer

A dashboard to explore Falco Rules

falco security

Last synced: 07 Mar 2026

https://github.com/dominicbreuker/goncat

netcat-like CLI tool with advanced features for bind/reverse shells

bind-shell golang offsensive-security pentesting port-forwarding pty reverse-shell security tunneling

Last synced: 11 Apr 2025

https://github.com/mh37/Argos

A passive WiFi tracking and profiling based on probe request frames.

linux pentesting probe-requests python reconnaissance security sniffing tracking wifi wireless

Last synced: 23 Jul 2025

https://github.com/clj-holmes/clj-holmes-rules

Open source rules used by clj-holmes.

clojure security yaml

Last synced: 03 Jul 2026

https://github.com/trackit/s3-acl-viewer

Tool to generate a report about AWS S3 bucket permissions. CSV, Excel and Google Spreadsheet output available.

aws aws-s3 security

Last synced: 12 May 2025

https://github.com/jonathan-vella/architecting-for-success

This repository enables partners to help customers move with confidence with the right mix of skilling and resources to facilitate migration, modernization, and innovation with Azure OpenAI.

ai analytics azure cloudadoption migration networking openai openai-chatgpt security wellarc

Last synced: 07 Apr 2026

https://github.com/connorjburton/senvf

A secure & sensible replacement for process.env

javascript nodejs process-env security supply-chain

Last synced: 10 Jul 2025

https://github.com/shayanzare/admin-page-finder

This is a simple script to finding website admin page.

admin-page-finder hacking hacking-tool ruby security

Last synced: 28 Mar 2025

https://github.com/chrissmartin/onvifscout

A comprehensive ONVIF device discovery and analysis tool that helps you find, authenticate, and examine ONVIF-compatible devices on your network.

hacktoberfest home-assistant home-automation onvif onvif-camera onvif-discovery pypi security security-camera

Last synced: 06 Jul 2025

https://github.com/zeyu-li/tryhackme

Hacker Man 👨‍💻

hacking security tryhackme vulnversity writeups

Last synced: 19 Mar 2026

https://github.com/codestates-seb/seb39_main_013

고오급 남성 쇼핑몰 STATE MALL 입니다 https://statemall.click/

jpa mysql react reactquery security spring-boot styled-components

Last synced: 13 Apr 2025

https://github.com/nzt48/exploiting-smart-contract-vulnerabilities

Repository for "Exploiting smart contract vulnerabilities" bachelor thesis at School of Electrical Engineering, University of Belgrade. Paper (in Serbian) with 5 examples of vulnerable smart contracts and exploitation of them.

ethereum exploitation hacking security smart-contracts solidity

Last synced: 21 Apr 2026

https://github.com/djadmin/fort

macOS CLI: endpoint security audit + SOC 2 readiness reports

cli compliance devops endpoint-security golang hardening iso27001 macos security soc2

Last synced: 11 Jun 2026

https://github.com/rezmoss/network-vulnerability-scanner

Build a network vulnerability scanner from scratch in Go, port scanning, service detection, and vulnerability identification. Full walkthrough

cybersecurity go golang infosec networking penetration-testing port-scanner security tutorial vulnerability-scanner

Last synced: 12 Jun 2026

https://github.com/actions-rust-lang/audit

Audit Rust Dependencies using the RustSec Advisory DB

cargo-audit ci github-actions hacktoberfest rust rust-lang rustsec security

Last synced: 10 Apr 2025

https://github.com/ege-erdogan/splitguard

Supplementary code for the paper "SplitGuard: Detecting and MitigatingTraining-Hijacking Attacks in Split Learning"

machine-learning privacy security split-learning

Last synced: 13 Aug 2025

https://github.com/fusion/crystalvault

A zero-knowledge server to store and share secrets: credentials, keys, etc.

browser crystal javascript pgp secret-management secrets security vault zero-knowledge

Last synced: 14 Apr 2025

https://github.com/brndnmtthws/protect-yourself

A guide on how to protect your digital assets

digital-assets encryption phone privacy security yubikey

Last synced: 08 Mar 2026

https://github.com/psecio/rift

A vulnerable application for teaching the basics of web application security

application security teaching vulnerability

Last synced: 11 Apr 2025

https://github.com/kuntoaji/enkrip

encrypt & decrypt Active Record attributes with Message Encryptor

activemodel activerecord activesupport decryption encryption gem message-encryptor ruby ruby-gem ruby-on-rails security

Last synced: 21 Jun 2025

https://github.com/apetenchea/earl

Evaluate Application Risk Level

android malware-detection security tensorflow

Last synced: 14 May 2025

https://github.com/sk3pp3r/devsecops-arsenal

A curated hub of DevSecOps tools to secure workflows, optimized for CI/CD and more

cybersecurity devops devsecops devsecops-pipeline infrastructure sdlc security ssdlc

Last synced: 12 Jan 2026

https://github.com/spiderpig86/blog

:thought_balloon: Maybe some extraterrestrial will read this someday.

blog blog-theme frontend gatsby security software-engineering tech

Last synced: 30 Aug 2025

https://github.com/samiahmedsiddiqui/prevent-xss-vulnerability

This WordPress plugin enhances website security by preventing Cross-Site Scripting (XSS) vulnerabilities. It blocks and encodes malicious characters in URLs, escapes HTML in `$_GET` variables, and provides customizable settings for website owners.

encoding escape-html reflected-xss-vulnerabilities reflective reflective-injection security security-vulnerability self-xss wordpress xss xss-detection xss-vulnerability

Last synced: 12 Apr 2025

https://github.com/robertdebock/ansible-role-tailscale

Install and configure tailscale on your system.

ansible molecule network networking playbook security tailscale tox vpn

Last synced: 05 Oct 2025

https://github.com/krishpranav/sniff

A Simple Golang Tool That Automates OSINT For Threat Intelligence And Mapping Your Attack Surface.

attack attack-defense attack-surface attack-surfaces bugbounty go golang recon reconnaissance scanner security web-security

Last synced: 14 Apr 2025

https://github.com/cedricbonhomme/ip-link

Visualizing the relationships between different IP from network traffic capture.

circos network-traffic-capture pcap python security visual-analysis visualisation

Last synced: 14 Apr 2025

https://github.com/josehelps/blackcert

Blackcert monitors Certificate Transparency Logs for a keyword. Blackcert collects any certificate changes for this keyword and also checks if any domain changes with that keyword look like a phishing domain.

certificate monitoring security

Last synced: 14 Apr 2025

https://github.com/apocas/wireguarode

Wireguard with ACLs and TOTP 2FA

acls iptables javascript nodejs security vpn wireguard

Last synced: 03 Oct 2025

https://github.com/piaudonn/SecurityNotifications

Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels, TAP usage...).

azure-ad azure-ad-identity-protection log-analytics-workspace security security-automation

Last synced: 15 Apr 2025

https://github.com/badchars/cve-mcp

23-tool MCP server for CVE & vulnerability intelligence. NVD, EPSS, CISA KEV, GitHub Advisory, OSV — unified in one server. Risk scoring, bulk triage, exploit search. 2 dependencies, runs with npx.

ai-security cisa claude cve cvss cybersecurity epss ghsa kev mcp model-context-protocol nvd osv pentesting security vulnerability vulnerability-intelligence

Last synced: 30 Jun 2026

https://github.com/sam-k/pager-sec

Hacking hospital pagers, then building an encrypted solution.

arduino encryption pagers sdr security

Last synced: 02 Aug 2025

https://github.com/turbot/steampipe-export

Steampipe Export is a zero-ETL CLI to fetch data from cloud services and APIs. Hundreds of plugins with thousands of documented examples.

aws azure backup data devsecops etl gcp golang kubernetes security steampipe steampipe-engine zero-etl

Last synced: 31 Jul 2025

https://github.com/existenznl/permcheck

PermCheck is a little tool that checks if the files in a PHP project have the executable bit set properly.

executable executable-file php security security-tools security-vulnerability

Last synced: 14 Apr 2025

https://github.com/denis-g/firefox-user.js

🦊 Firefox user.js – based on arkenfox/user.js with additional UI fixes.

firefox firefox-css firefoxcss ghacks mozilla mozilla-firefox privacy security settings userchrome userchromecss userjs

Last synced: 12 Apr 2025

https://github.com/andrew-tsegaye/password_generator

A simple password generator app is a helpful tool for anyone who wants to improve the security of their online accounts and protect their sensitive information from potential breaches.

css3 html5 javascript password-generator security

Last synced: 28 Jul 2025

https://github.com/markwalet/laravel-hashed-route

A Laravel package that replaces the default route model binding for a safer version.

laravel php php-library security

Last synced: 11 Mar 2026

https://github.com/yasenstar/archimate_sabsa

Learn & Practice of Modeling SABSA with the ArchiMate Specification

archimate architect architecture compliance enterprise model modeling opengroup sabsa security specification

Last synced: 11 Feb 2026

https://github.com/edvincodes/instagramunfollowers

Instagram Unfollowers 2026: Free Script to see who isn't following you back. Safe, Open Source & No Login required. Works on Mobile & Desktop.

automation instagram instagram-follower instagram-followers instagram-following instagram-tool instagram-unfollowers javascript open-source privacy script security unfollow unfollowers

Last synced: 02 Apr 2026

https://github.com/houarizegai/aes

AES algorithm implementation in Java

aes aes-encryption cryptography information-security security

Last synced: 16 Mar 2026

https://github.com/geritol/write-guard

Github Action to enforce file level write access for monorepos

access-control github-actions monorepos security

Last synced: 14 Jan 2026

https://github.com/cipherstash/protectjs

Encrypt and protect data using industry standard algorithms, field level encryption, a unique data key per record, bulk encryption operations, and decryption level identity verification. Powered by CipherStash Encryption.

data data-security encryption javascript postgres postgresql security typescript

Last synced: 29 Oct 2025

https://github.com/katexochen/govulncheck-nixpkgs

Scanning nixpkgs for vulnerabilities in Go packages

go golang nix nixos nixpkgs security

Last synced: 26 Oct 2025

https://github.com/firesphere/silverstripe-haveibeenpwnd

Check user passwords and emails against the HaveIBeenPwnd database

hacktoberfest haveibeenpwned password security silverstripe silverstripe-4 silverstripe-module

Last synced: 07 Oct 2025

https://github.com/qiwi/masker

Composite data masking utility

security

Last synced: 27 Apr 2025

https://github.com/JannisHoch/copro

(ML) model for computing conflict risk from climate, environmental, and societal drivers.

climate conflict environment projection risk security

Last synced: 20 Jul 2025

https://github.com/riteshpuvvada/anonymous-board

Create a forum, chat or replay anonymously.

anonymous-chat board helmetjs javascript message mocha node-js security

Last synced: 12 Oct 2025

https://github.com/unlock-security/wshell

A handy interactive shell through {code,command,template} injection

ctf-tools penetration-testing penetration-testing-tools rce security security-tools shell webshell

Last synced: 18 Jan 2026

https://github.com/lebe-dev/pw

A secure secret-sharing service with end-to-end encryption. All data is encrypted directly in the browser.

security security-tools

Last synced: 01 Mar 2026

https://github.com/contextforge-org/cpex

A composable enforcement framework for AI agents and toolchains

a2a agents ai extensibility framework hooks library llm mcp plugins safety security tools

Last synced: 27 Jun 2026

https://github.com/ozbillwang/keycloak-compose

Run keycloak and keycloak cluster with docker compose - Up and Running in Seconds

authentication devops docker docker-compose keycloak keycloak-cluster security

Last synced: 25 Apr 2025

https://github.com/tetratelabs/zta-demo-2022

Demo delivered at the 2022 ZTA and DevSecOps for Cloud Native Applications NIST conference

ngac security service-mesh wasm zero-trust

Last synced: 26 Apr 2025

https://github.com/mishal/jwt

JWT (JSON Web Tokens) for PHP

json jwt php security webtoken

Last synced: 09 Mar 2026

https://github.com/potato-industries/dartrs

portable dart based reverse shell

dart reverse-shell security

Last synced: 24 Oct 2025

https://github.com/tikajhq/passwrd.in

A secure & simple password generator, that makes life easy.

encryption hash password password-generator passwrd security security-tools sys-admin

Last synced: 27 Feb 2025

https://github.com/imduffy15/k8s-gke-service-account-assigner

Provides different Google Service Accounts and Scopes for pods running on Kubernetes

google google-cloud-platform google-compute-engine google-kubernetes-engine iam kube2iam kubernetes security service-account

Last synced: 28 Jan 2026

https://github.com/cx330blake/zype

ZYPE: Your Payload Encryptor. MSFvenom shellcode got detected? ZYPE encrypt and obfuscate the shellcode for you!

cybersecurity encryption hacking hacking-tools malware malware-analysis malware-research obfuscation red-team security shellcode zig

Last synced: 14 May 2026

https://github.com/evervault/evervault-js

Evervault JavaScript SDK.

encryption javascript security

Last synced: 13 Feb 2026

https://github.com/rifuki/dokuru

Agent-based Docker security audit platform with CIS Benchmark v1.8.0 compliance. Real-time WebSocket monitoring, automated vulnerability scanning, and interactive remediation

audit cis-benchmark compliance container container-security docker security

Last synced: 28 Jun 2026

https://github.com/turbot/steampipe-mod-terraform-azure-compliance

Run compliance and security controls to detect Terraform Azure resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

azure compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 22 Apr 2025

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/renatoathaydes/gohash_mobile_app

go-hash official mobile app (Android and iOS)

flutter flutter-apps password-manager security

Last synced: 28 Oct 2025

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/bl4ckstack/hedra

Hedra — Command-line tool to analyze HTTP security headers and detect missing protections like CSP, HSTS, and X-Frame-Options.

cli cybersecurity hedra http-headers information-security pentesting ruby rubygems security vulnerability-assessment web-security

Last synced: 04 Apr 2026

https://github.com/port19x/deadsniper

A fast, specialized dead-link checker

broken-links dead-links github-actions security seo seo-optimization

Last synced: 01 Apr 2025

https://github.com/saveourtool/osv4k

Kotlin and Java serialization schema for OSV

java kotlin osv security

Last synced: 23 Apr 2025

https://github.com/txn2/txtoken

txToken creates an HS256 JWT token from JSON retrieved from a remote endpoint resulting from a proxied JSON request body.

authentication docker-image jwt jwt-server jwt-token kubernetes microservice security

Last synced: 04 Mar 2026

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/saccofrancesco/lock

Secure local password manager with CustomTkinter UI and cross-platform support

cross-platform customtkinterr desktop-app encryption gui nord-theme open-source password-manger privacy python security tkinter

Last synced: 04 Apr 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/cityofnewyork/nyco-wp-boilerplate

Local development suite for creating and running instances of WordPress sites and managing them on WP Engine. Maintained by @NYCOpportunity

composer docker nyc-opportunity nycopportunity security wordpress wp-cli wp-engine wpengine

Last synced: 12 May 2025

https://github.com/embetrix/stm32mp-sign-tool

The stm32mp-sign-tool is an utility for signing and verifying firmware images compatible with STM32MP MPUs

cpp cryptography ecdsa-cryptography embedded-systems hsm lightweight pkcs11 security signing-keys signing-tool stm32mp1 stm32mpu

Last synced: 24 Apr 2025

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026