An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/tweedge/ntlk

This package prevents a shockingly common typo for NLTK, preventing typosquatting. Update: this package was banned from PyPI - neat! ;)

nltk pypi security typo

Last synced: 03 Aug 2025

https://github.com/szgabsz91/oauth2-authorization-proxy-server-spring-boot

Library for easily securing REST API endpoints in a Spring Boot applications using the reactive Spring WebFlux stack

facebook google oauth2 security spring-boot

Last synced: 20 Feb 2026

https://github.com/volkansah/tor-scapy-application

This project is a simple example of using Stem and Scapy together to create an anonymized network analysis tool. The application can connect to a running Tor process or start a new one, send network packets through the Tor network, and rotate identities.

admins analytics defense hack hacking offensive python scapy script security stem tor wardrive

Last synced: 17 Aug 2025

https://github.com/amirhnajafiz-university/s3et01

English as Technical language final project.

air-gap research security

Last synced: 17 Feb 2026

https://github.com/vstanchev/wafty

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads

go golang libinjection security waf

Last synced: 12 Jan 2026

https://github.com/bocaletto-luca/fileintegritychecker

FileIntegrityChecker Author: Bocaletto Luca FileIntegrityChecker is a Linux application written in Python with a Tkinter GUI that monitors critical files or entire directories by calculating and comparing their SHA256 hashes. By detecting any unauthorized modifications, it helps maintain file integrity and alerts you to changes. The project comes..

admin-tool bocaletto-luca english file-integrity-check file-integrity-checker gui italian linux monitor-critical-files multilanguages opensource python security security-tool sha256 tkinter

Last synced: 03 Aug 2025

https://github.com/hockeyinjune/check-security

checksec for Windows

security verification windows

Last synced: 18 May 2026

https://github.com/seisvelas/SAN-Scanner

Burp Suite extension for passively discovering Subject Alt Names in SSL/TLS certificates

burp burp-extensions burpsuite security security-tools ssl-certificates

Last synced: 13 May 2025

https://github.com/bombinisecurity/bombini

WIP: eBPF security monitoring agent based on Aya

aya bpf ebpf security

Last synced: 21 Sep 2025

https://github.com/jonaslejon/apt10

APT / Cloud Hopper Yara rules

malware malware-analysis security security-incidents

Last synced: 25 Jan 2026

https://github.com/chonkie-inc/littrs

πŸ–οΈπŸ›‘οΈ Keep your LLM's πŸ’© code where it belongs β€” in a sandbox.

ai-agents bytecode llm pyo3 python rust sandbox security tool-use wasm

Last synced: 10 Mar 2026

https://github.com/pelock/stringencrypt-vscode-extension

Encrypt and hide plain text strings & file contents within your source code in a secure & encrypted form with the help of a polymorphic engine, generating random-looking decryption code every time.

cryptography encryption file-encryption polymorphic-engine security string-encoding string-encryption string-generator

Last synced: 30 Jul 2025

https://github.com/pushkar-anand/folder-encrypter

Encrypts your Folders

encryption security

Last synced: 09 Sep 2025

https://github.com/redshiftzero/scrubber

Simple tool to scrub metadata from images βœ¨πŸ›

anonymity metadata security

Last synced: 30 Aug 2025

https://github.com/hamidurrahman1/news-portal

A RESTful Webservice built with Spring Boot, Spring Security, Spring AOP, and H2. This is also for learning and practicing purposes only.

h2-database rest-api security spring-aop spring-boot spring-security

Last synced: 10 Aug 2025

https://github.com/obfusk/gradle-wrapper-verify

gradle-wrapper-verify - verify gradle-wrapper.jar sha256sum against published releases

android gradle security verify wrapper

Last synced: 13 Apr 2025

https://github.com/serverfarmer/sf-detect-suspicious

Lightweight suspicious/unwanted activity detector, that alerts about cryptocurrency mining software, P2P file sharing software and ngrok tunnels.

bittorrent btc cryptocurrency-mining detection devops devops-tools mining network-tunnel ngrok p2p security security-audit security-automation security-hardening security-scanner security-tools torrent xmrig

Last synced: 12 Jul 2025

https://github.com/astrid-project/lcp

In each local agent, the control plane is responsible for programmability, i.e., changing the behaviour of the data plane at run-time.

agent beats control data ebpf elasticsearch log logstash management programmability security

Last synced: 06 Apr 2025

https://github.com/shirshadatta/server-hardening

Ansible Playbooks for Server Hardening, these playbooks have been tested in AWS servers to provide and configure security in multiple servers.

ansible ansible-galaxy ansible-playbook ansible-role automation hacktoberfest hacktoberfest2020 nginx-server security testing

Last synced: 19 May 2026

https://github.com/ahmed-alnassif/metasploit-termux-installer

The Metasploit-Termux-Installer script automates the setup of Metasploit Framework on Termux, enabling penetration testing on Android. It updates packages, installs dependencies, fetches Metasploit, and configures the environment for seamless use, allowing you to run Metasploit tools like `msfconsole` directly from your terminal.

ahmed-al-nassif android automation bash-script cybersecurity ethical github hacking installation-guide metasploit metasploit-framework penetration-testing script security termux vulnerability-assessment

Last synced: 09 Mar 2026

https://github.com/yowainwright/intrinsic-dependencies

a simple utility ensuring invisible but required node dependencies aren't removed

ci dependencies performance security

Last synced: 22 Apr 2025

https://github.com/bodadotsh/npm-security-best-practices

A list to stay safe from NPM supply chain attacks

deno javascript list nodejs npm pnpm security yarn

Last synced: 27 Sep 2025

https://github.com/zebrunner/carina-crypto

Cryptographic Java Library. Provides an interface for encrypting / decrypting based on Cipher. Part of the Carina Framework

carina carina-framework cryptography java security

Last synced: 30 Apr 2025

https://github.com/yhs0602/android-capstone-example

Example of capstone disassrmbly engine java bindings on android, using jna.

android capstone example-project java java-native-access jna reverse-engineering security tool tutorial

Last synced: 18 May 2026

https://github.com/architecpoint/plesk-scripts

Standalone automation scripts for Plesk server management (Windows & Linux) β€” MySQL backups, WordPress cleanup, malware scanning, PCI-DSS header checks, and more. Self-updating bash scripts with PID locking and detailed logging.

automation backup bash linux malware-scanner mysql pci-dss plesk security shell-script windows wordpress

Last synced: 22 Jun 2026

https://github.com/ispique/keylogger

All loggers in one! Every 10 seconds, you get Keystrokes, Mouse Coordinates, Photo (if target has a WebCam), ScreenShot and Microphone inputs from target computer and send to your mail.

cyber-security cybersecurity hacking hacking-code hacking-tool keylogger keylogging logger mime mime-types offensive-scripts penetration-testing pentesting python security

Last synced: 31 Jul 2025

https://github.com/BansheeTech/AgnosticWipe

AgnosticWipe is a utility function that safely removes all child nodes of a given DOM element, avoiding the use of innerHTML to clear content. It includes configurable debugging capabilities (log and warn), similar to other Agnostic modules, to assist with troubleshooting during development.

agnostic-wipe agnosticwipe clean dom dom-manipulation firstchild innerhtml javascript removechild security targetselector vanilla-javascript vanilla-js wipe xss

Last synced: 11 May 2025

https://github.com/krishkumar/agentguard

Work safely with AI agents like Claude Code, Cursor, Kiro

agents ai-safety claude cli developer-tools kiro kiro-cli kiroween security

Last synced: 20 Jan 2026

https://github.com/mendel5/security

Overview of cyber security topics and links

cybersecurity infosec security

Last synced: 03 Feb 2026

https://github.com/thomas-dev7/finwallet

finWallet Γ© uma aplicaΓ§Γ£o fullstack desenvolvida com Laravel para gestΓ£o financeira pessoal. Inclui funcionalidades de cadastro, autenticaΓ§Γ£o, depΓ³sitos, transferΓͺncias e histΓ³rico de transaΓ§Γ΅es, com foco em seguranΓ§a, validaΓ§Γ΅es e cΓ³digo limpo.

alpinejs breeze challenge cripto css deployment framework fullstack laravel mobile mysql php responsive-design security tailwindcss wallet

Last synced: 07 Mar 2026

https://github.com/customcommander/xss-lang

An experimental grammar for parsing XSS attacks

grammar javascript nearley parser security xss

Last synced: 25 Aug 2025

https://github.com/staticdev/ansible-role-brave

Ansible role to install Brave browser.

ansible brave browser internet playbook privacy secure security

Last synced: 21 Jul 2025

https://github.com/kulkansecurity/mindthegap

A Python-based tool specifically designed for users to identify the "patch gap" in their Ubuntu release - the delay between the disclosure of a vulnerability and the patch release. By querying Ubuntu's CVE system, it provides a clearer picture of the current security standing of different Ubuntu versions.

cve patchgap security ubuntu

Last synced: 14 Mar 2025

https://github.com/stackitcloud/certbot-dns-stackit

The Certbot DNS-Stackit Authenticator Plugin is an advanced utility designed to streamline the acquisition of SSL/TLS certificates from Let's Encrypt with Certbot. This plugin facilitates automated certificate issuance and rejuvenation by employing the DNS-01 challenge protocol.

automation certbot-plugin cloud-services devops dns-01-challenge lets-encrypt python security ssl-certificates stackit

Last synced: 11 Feb 2026

https://github.com/abhinandan-khurana/encryptguard

Encounter a superior layer of security with this file encryption and decryption tool written in go. This utility offers advanced protection mechanisms to safeguard your sensitive data with ease and reliability.

advance-encryption-standard aes aes-encryption aes-gcm cli-tool cybersecurity encryption-decryption file-decryption file-encryption golang security security-tools sha512 sha512-crypt symmetric-key-cryptography

Last synced: 05 Jun 2026

https://github.com/antaresproject/acl

:white_check_mark: Antares Project Acl Module. Whole area management with Login As User option.

acl antares antares-acl antares-changelog antares-documentation antaresproject area authentication laravel level login module permissions php rbac roles security user-management

Last synced: 16 Jan 2026

https://github.com/davidmoremad/azure-security-templates

Useful templates of security policies, roles and runbooks to protect your Azure account

azure cloud-security security

Last synced: 24 Sep 2025

https://github.com/protosec-research/tree-of-ast

Tree-of-AST: Python Security Analysis framework inspired by ToT (Tree-of-Thoughts) of Deliberate Code analysing states using ToT-based ways.

ai gpt-4 ml python security security-audit security-tools source-to-sink static-code-analysis tree-of-thoughts

Last synced: 04 Sep 2025

https://github.com/benderscript/owasp_llm_analysis

Large Language Models Security Analsysis

analysis llm owasp security top10

Last synced: 12 Feb 2026

https://github.com/rsksmart/reproducible-builds

Reproducible builds of RSKj's dependencies

blockchain reproducible-builds rsk security smart-contracts

Last synced: 02 Jan 2026

https://github.com/gitanat/securepickle

Secure pickling. Arbitrary code execution be gone

authentication encryption pickle pickled-data python security unpickle

Last synced: 26 Jun 2025

https://github.com/padok-team/yatas-gcp

Plugin for YATAS that audits GCP projects for misconfiguration and security issues

audit gcp hardening misconfiguration security yatas

Last synced: 13 May 2025

https://github.com/t94j0/mwnn

IRC, but with privacy - Also a way to help me learn Go

gpg irc messenger security

Last synced: 04 Nov 2025

https://github.com/thisdougb/go-fsvault

Easy to use filesystem datastore, with encryption, for Go

cli datastore encryption golang golang-cli golang-package security

Last synced: 02 Jan 2026

https://github.com/atbashee/jsf-renderer-extensions

Extensions on the JSF renderer to have advanced validation and security

java javaee jsf security validation

Last synced: 28 Jun 2025

https://github.com/jankapunkt/js-class-privacy

Create a given ES6 class with private members using Proxy and closures. Keeps class code clean, encourages SRP and DRY.

abstract-factory es6-class es6-classes es6-javascript es6-proxy factory-method-pattern javascript private-members security

Last synced: 20 Jan 2026

https://github.com/destan0098/ipshow

This tool checks and show domains IP to you

ip security security-tools tcp-ip

Last synced: 03 Mar 2025

https://github.com/ibrahmsql/discoursemap-plugin

A comprehensive professional security auditing plugin for Discourse. This plugin provides automated security assessment capabilities to identify vulnerabilities, misconfigurations, and security issues in your Discourse installation

discourse discourse-plugin discourse-secuirty discoursemap forum-security red-team ruby ruby-on-rails security security-testing security-tools vulnerability-scanner

Last synced: 18 May 2026

https://github.com/sylvainmouquet/pydantic2-settings-vault

A Pydantic v2 settings extension for secure configuration management using HashiCorp Vault OpenSource (OSS) and Enterprise

configuration enterprise hashicorp opensource pydantic python secrets-management security settings vault

Last synced: 02 Aug 2025

https://github.com/tynik/ethereum-smart-contracts-analyzer

Aggregated statistic by verified Ethereum smart contracts from mainnet

blockchain ethereum security smart-contracts solidity statistics swc

Last synced: 17 Feb 2026

https://github.com/brittonhayes/defangle

πŸ§› Defangle is the gleam link defanger. Make URLs, IPs, and Emails safe to share.

defang erlang gleam infosec security

Last synced: 09 Feb 2026

https://github.com/lreimer/hands-on-distroless

Demo repository to showcase the usage of Google's Distroless base images.

distroless docker example golang payara-micro security showcase spring-boot

Last synced: 23 Jul 2025

https://github.com/achedeuzot/temporar.io

A client-side encrypted pastebin backed by Phoenix & Elixir

elixir pastebin phoenix security sjcl

Last synced: 04 Feb 2026

https://github.com/grapheneos-archive/kernel_google_crosshatch_drivers_staging_qcacld-3.0

Pixel 3, Pixel 3 XL, Pixel 3a and Pixel 3a XL Wi-Fi kernel driver sources.

android grapheneos security

Last synced: 04 Oct 2025

https://github.com/eriksjolund/empty-argv-segfault-check

Test if an executable segfaults when started with an empty argv. The script may be used as a vulnerability-scanner to find setuid executables having buggy code (but it will probably not find any direct security vulnerabilities).

security segfault setuid vulnerability-scanners

Last synced: 06 Apr 2025

https://github.com/le0pard/mpw.js

MPW.js is a JavaScript implementation of the Master Password App algorithm

algorithm javascript mpw security

Last synced: 20 Jun 2025

https://github.com/nouralmulhem/cipher-sphere

πŸ•΅οΈβ€β™€οΈ an implementation of the Dell Hackathon game steganography

deep-learning eagles foxes machine-learning problem-solving riddles security staganography trigger-word-detection

Last synced: 12 May 2025

https://github.com/homoluctus/ecranner

Scan the vulnerability of Docker images stored in ECR

aws docker ecr python security trivy

Last synced: 31 Oct 2025

https://github.com/sgofferj/mailblocklist

List of IP addresses which attacked my mailservers in the last 30 days

blocklist blocklist-data firewall-rules security

Last synced: 14 Feb 2026

https://github.com/somniasum/crimsonhat

Fedora performance script. For linux beginners and hobbyist who want the most out of their system.

automation beginner beginner-friendly fedora linux performance security

Last synced: 03 May 2026

https://github.com/isaacpeel/solesonic-mcp-server

An enterprise-grade MCP server with built-in federated identity support for SSO across providers and secure, scalable access management.

ai identity java mcp mcp-security mcp-server mcp-tools security spring-boot-ai

Last synced: 01 Mar 2026

https://github.com/jeckel/eloquent-signature

Add signature check on your Eloquent models

eloquent laravel security signature

Last synced: 21 Apr 2026

https://github.com/sorah/vault2kube

manage Vault lease on Kubernetes secrets and keep it fresh

hashicorp-vault kubernetes security vault

Last synced: 30 Apr 2026

https://github.com/camjac251/tool-gates

Intelligent tool permission gate for AI coding assistants. Bash AST parsing, file guards, configurable tool blocking

ai-tools claude-code cli gemini-cli hooks permissions rust security tree-sitter

Last synced: 30 Apr 2026

https://github.com/marc2332/defender-demo

A security/helper app UI idea

android apk defender design idea java security

Last synced: 05 May 2026

https://github.com/alexw00/secured-env

Utility script to source environment variables from 1Password.

1password environment environment-variables op security

Last synced: 13 Feb 2026

https://github.com/netcode/oauthgoat

Vulnerable dockerized environment designed to test OAuth vulnerabilities

oauth-client oauth2 oauth2-server security security-labs vulnerability

Last synced: 14 Feb 2026

https://github.com/lucadibello/virtualsafe

πŸ”’ Crypt your directories and make your files completely unreadable!

cryptography fernet privacy-tools python security security-tool

Last synced: 06 Jun 2026

https://github.com/kw-soft/threatintelligence

RSS feed aggregator that collects security-related news and advisories from multiple sources and posts them to designated Discord channels via webhooks

discord feed forensics malware-analysis malware-research python security security-tools threat-hunting threat-intelligence

Last synced: 01 Mar 2026

https://github.com/ryarmst/fuzzdeep

An Android Deep Link Fuzzer

android appsec fuzzing pentest security

Last synced: 30 Apr 2026

https://github.com/bouke/clibsodium

Swift overlay for libsodium

encryption libsodium security

Last synced: 13 May 2026

https://github.com/lirantal/pypi-security-best-practices

Collection of PyPI registry package manager Security Best Practices featuring uv and pip

awesome awesome-list best-practices pypi python security suppy-chain uv uvx vulnerabilities

Last synced: 29 Apr 2026

https://github.com/c0oki3s/veilgate

Asymmetric defense against AI red-team agents. VeilGate scores every request, diverts likely agents into a per-IP-coherent fake application, and measures the cost it imposes on the attacker.

ai-security deception golang honeypot ja3 ja4 llm-security pentest prompt-injection reverse-proxy security trapit

Last synced: 21 Jun 2026

https://github.com/dinanathdash/envault

Auditable .env secret manager featuring aggressive CLI safeguards and GitHub JIT access.

cli developer-tools devsecops dotenv jit-access secret-manager secrets-management security

Last synced: 20 Apr 2026

https://github.com/thirdkeyai/symbiont-sdk-python

Python DSK for Symbiont DSL and agent framework.

agent agents ai python sdk security symbiont

Last synced: 22 Apr 2026

https://github.com/kevcui/passgen

:key: Sync-less password manager generating password from a string and a file

bash bash-script passgen password password-generator password-hash password-manager password-safety password-store security security-tools

Last synced: 03 May 2026

https://github.com/alvinwan/motiosecure

toy security platform with motion detection implementation for cheap, low-quality camera lens

desktop ios mac mobile motion-detection python security swift

Last synced: 01 May 2026

https://github.com/aadrianleo/python-login-system

Login system application is use for login page for desktop application it registers the users id and password and use it for logging in to the system.

login python security

Last synced: 03 May 2026

https://github.com/gmoqa/paranoik

HTTP Request integrity verifier middleware for Node.js

checksum express javascript middleware nodejs security

Last synced: 01 May 2026

https://github.com/vhscom/birdcage

Secure remote access for personal AI

acme go remote-access reverse-proxy security self-hosted single-user wireguard

Last synced: 04 Jun 2026

https://github.com/turbot/flowpipe-mod-teams

Microsoft Teams pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Microsoft Teams to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code microsoft-teams orchestration pipelines security teams workflow workflow-automation workflow-engine

Last synced: 28 Feb 2026

https://github.com/alvarezops/privacy-shield

DNS Infrastructure with AdBlocking and Recursive Resolution #Pihole #RaspberryPi #Unbound

adblock dns docker docker-compose homelab networking pi-hole privacy raspberry-pi recursive-dns security sovereignty unbound

Last synced: 04 May 2026

https://github.com/javded-itres/holix

Helix is ​​a powerful self-learning AI agent with memory, skills, and the ability to recall tools. It learns from successful tasks and creates reusable skills for the future.

agent-skills ai assistant claude-code hermes hermes-agent llm llm-agents ouroboros python russian security self-hosted

Last synced: 12 Jun 2026

https://github.com/jaegertracing/security-audits

Jaeger security audits

cncf security

Last synced: 02 Mar 2026