An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/jmhobbs/wordpress-scanner

CLI to scan plugin directories, and an HTTP server to scan zips from Wordpress.org

experimental security wordpress

Last synced: 14 Apr 2025

https://github.com/samdphillips/racket-keyring

Racket Keyring Library

password racket security

Last synced: 11 Apr 2025

https://github.com/plazmaz/twitter-bots-list

A list of accounts that auto-retweet or like certain keywords

auto-retweet bots fun funny honeypot infosec keyword security tricks troll twitter twitter-bot

Last synced: 01 Mar 2026

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/johnnykv/curiosum

Pcap recording of Heralding sessions

honeypot pcap security

Last synced: 13 Apr 2025

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/xinux-org/configs

⚙️ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/avantasia/inventedAttack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 13 Mar 2025

https://github.com/techtoboggan/claude-desktop-hardened-linux

Security-focused Linux packaging of Claude Desktop with bubblewrap sandboxing, Wayland support, and Cowork (Local Agent Mode)

bubblewrap claude claude-desktop electron linux sandbox security wayland

Last synced: 11 Jun 2026

https://github.com/tomwechsler/linux_administration_security

Linux security with three different distributions (Ubuntu, openSUSE and Red Hat)!

linux opensuse redhat security ubuntu

Last synced: 27 Jul 2025

https://github.com/eddiechu/Ransomware-meets-loop

What if the ransomware meets an endless subfolder

infosec ransomware security

Last synced: 28 Mar 2025

https://github.com/oslabs-beta/testsudo

A one-stop testing suite offering a range of frontend, backend, and security metrics for your projects.

backend bearer frontend lighthouse measured optimization performance-testing security testing-tools

Last synced: 30 Apr 2025

https://github.com/datosh/pinned-actions

How many GitHub repositories actually pin by hash?

github-actions security supply-chain-security

Last synced: 07 May 2025

https://github.com/stratosphereips/aracne

A 100% autonomous AI agent that attacks, defends, admins and acts on SSH connections

agents security

Last synced: 16 May 2026

https://github.com/noplanman/wp-otp

OTP for WordPress (:exclamation: moved to https://git.feneas.org/noplanman/wp-otp)

authentication otp security totp two-factor-authentication wordpress wordpress-plugin

Last synced: 11 Apr 2025

https://github.com/hackfutsec/blitzssh

BlitzSSH is a multi-threaded SSH brute-force tool with Telegram integration for real-time notifications.

automation brute-force checker cybersecurity ethical-hacking multithreading paramiko pentesting python security ssh ssh-checher telegram-bot

Last synced: 07 May 2025

https://github.com/dotanuki-labs/android-oss-cves-research

An analysis on open-source Android apps intended to learn if they are harmed by vulnerable dependencies 🔒

cli gradle python security supply-chain-analytics

Last synced: 12 Apr 2025

https://github.com/jtyers/aws-policy-generator

Simple CLI-driven and YAML-driven AWS policy generation

aws iam security

Last synced: 22 Jun 2025

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/bl4ckstack/hedra

Hedra — Command-line tool to analyze HTTP security headers and detect missing protections like CSP, HSTS, and X-Frame-Options.

cli cybersecurity hedra http-headers information-security pentesting ruby rubygems security vulnerability-assessment web-security

Last synced: 04 Apr 2026

https://github.com/shenfe/function-sandbox

📦 Make a "sandbox" for a function.

function-sandbox security

Last synced: 07 Oct 2025

https://github.com/jeninsutradhar/kryptos

password manager built with Go and Fyne, designed to provide a secure and intuitive way to store and manage your passwords locally

aes-encryption fyne golang password-manager security

Last synced: 13 Oct 2025

https://github.com/kiliczsh/nosql-injection

The Power of Secure Coding Practices: Safeguarding MongoDB Against Exploitation

mongodb nosql-injection security

Last synced: 10 Apr 2025

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/pforemski/eip-generator

A new IPv6 address generator for Entropy/IP

entropy ip6 security

Last synced: 14 Jan 2026

https://github.com/txn2/txtoken

txToken creates an HS256 JWT token from JSON retrieved from a remote endpoint resulting from a proxied JSON request body.

authentication docker-image jwt jwt-server jwt-token kubernetes microservice security

Last synced: 04 Mar 2026

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/robertdebock/ansible-role-forensics

Install and configure forensics on your system.

ansible forensics molecule playbook security system tox

Last synced: 19 Sep 2025

https://github.com/auth0-blog/vue-auth0-aside

Aside: Vue with Auth0 and an authenticated Node API.

api app aside auth auth0 authentication node security vue vue-auth

Last synced: 27 Jul 2025

https://github.com/iowacomputergurus/dnntelerikidentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 19 Apr 2025

https://github.com/techjacker/diffence

Checks a git diff for offensive content

diff git-diff passwords secrets security

Last synced: 02 Sep 2025

https://github.com/skx/remotehttp

Magic wrapper to deny HTTP-requests to to "local" resources.

go golang http library security transport utility wrapper

Last synced: 23 Apr 2025

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/clay-good/enklayve-ai

Enklayve is a free, local, private, and secure personal AI desktop application, built with Tauri and llama.cpp/Qwen, that provides robust document intelligence capabilities using fast embeddings.

document-intelligence llm local-ai personal-ai privacy rust security tauri

Last synced: 30 May 2026

https://github.com/asos/snyker

An opinionated, heavy-handed wrapper around Snyk.

cli security snyk snyk-cli vulnerabilities vulnerable-paths

Last synced: 09 Mar 2026

https://github.com/thewh1teagle/checksum

Github reusable action for create checksum.txt for release assets

actions github security workflow

Last synced: 10 Aug 2025

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/bcrowe/cakephp-encrypted-type

:lock_with_ink_pen: CakePHP plugin that provides field-level (column) encryption within the application layer before data is stored or transmitted to the database, supporting regulatory compliance, zero-trust security, end-to-end encryption, and contextual awareness.

cakephp cakephp-plugin data-encryption data-security database encryption end-to-end-encryption field-level-encryption field-level-security gdpr hipaa pci pci-compliance pci-dss php regulatory-compliance security zero-trust zero-trust-security

Last synced: 08 Mar 2026

https://github.com/ladjs/mongoose-common-plugin

Common plugin for Mongoose with standard schema fields and localization support

common created helper i10n i18n id locale locales localization localized locals mongoose plugin plugins security timestamp updated virtual virtuals

Last synced: 15 Apr 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/vapor-ware/sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

envelope kms sctl secrets security

Last synced: 14 Apr 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/ichhabrecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 09 Mar 2026

https://github.com/nicolast/landlock-hs

Haskell bindings for the Linux Landlock API

haskell haskell-library landlock linux sandbox sandboxing security

Last synced: 09 Apr 2025

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/franckferman/satan2_cleaner

Secure Anti-Forensics and Total Annihilation of iNformation. Advanced counter-forensics tool to make storage data unrecoverable. Multi-pass wiping, encryption, metadata corruption, file signature masking, and more. Modular, evolving, and privacy-focused.

bash-scripting counter-forensic counter-forensics counter-forensics-attack encryption encryption-decryption encryption-tool go golang nuke privacy rust satan satanic satanism security shred shredding wipe-disk wipe-files

Last synced: 09 Apr 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/putyourlightson/craft-snaptcha

Automatically validates forms and prevents spam bots for Craft CMS.

craft-plugin craftcms forms security spam-protection validation

Last synced: 31 Jul 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/erseco/ugr_tfg

Trabajo de Fin de Grado - Análisis de plataforma de recursos de apoyo a la docencia Prado2

accessibility availability hacktoberfest moodle prado2 security thesis ugr usability

Last synced: 26 Dec 2025

https://github.com/cokebeer/go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

cors go jsonp security sqli ssrf ssti xss xxe

Last synced: 26 Jul 2025

https://github.com/lucaangioloni/fileencrypt

Simple open source App to encrypt files, based on Qt

cryptography encrypted-files files-encrypted openssl qt security

Last synced: 23 Apr 2025

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/bl4ck44/hashbox

Herramienta que sirve para saber si un programa es malicioso a partir del hash y comparándola con la lista de hashes más peligrosos.

cracking hacking hash md5 md5-hash python python3 security security-tools sha256

Last synced: 12 Jul 2025

https://github.com/vatshayan/final-year-college-project

Final Year Cryptography Project for Secure Communication System. Python Programming is done. Easy to understand and Implement.

btech btech-project cipher communication crpyt cryptocurrency cryptography cryptonote dataset encryption final final-project finalyearproject ieee machine-learning paper python secure security year

Last synced: 28 Oct 2025

https://github.com/ralish/keepass

Source code mirror of KeePass v2.x releases

keepass mirror password-manager security

Last synced: 10 Jun 2025

https://github.com/dnszlsk/muad-dib

Real-time npm/PyPI supply-chain threat detection. Production sensor with gVisor sandbox, behavioral analysis, and 200+ heuristic rules.

ast dependency-scanner malware mitre-attack npm pypi python sarif scanner security shai-hulud shai-hulud2 supply-chain supply-chain-security typosquatting

Last synced: 25 May 2026

https://github.com/vm32/firewall-rule-management-script

Bash script aids in the effective management of firewall rules

blue-team cyber-security firewall firewall-rules security

Last synced: 20 Jul 2025

https://github.com/adrien2p/accumulator

:rocket: Send a load of requests with nodejs using cluster and with/without Tor for anonymisation :see_no_evil:

ddos ddos-attacks ddos-tool load-testing nodejs onion security tor

Last synced: 08 May 2025

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025