An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/lana-20/api-gateway-sdet

API Gateway from SDET Perspective

api-gateway load-balancer microservices security

Last synced: 19 Mar 2026

https://github.com/timescale/ressrf

Multi-platform SSRF prevention library

go nodejs python rust security ssrf ssrf-protection wasm webassembly

Last synced: 29 May 2026

https://github.com/philipturnbull/mithril

A re-implementation of hardening-check in Rust

elf security security-hardening

Last synced: 12 Mar 2025

https://github.com/shahradelahi/timing-safe-compare

🔐 Isomorphic constant-time string and buffer comparison to prevent timing attacks.

browser constant-time cryptography isomorphic nodejs security timing-attack

Last synced: 03 Apr 2026

https://github.com/kisscool-fr/simple-haveibeenpwned

A very simple class to check your password safety against 'Have I Been Pwned' API.

api-client easy easy-to-use have-i-been-pwned haveibeenpwned password security simple troyhunt

Last synced: 14 Jan 2026

https://github.com/maia-aedo/tp-final-backend

Trabajo final para prog. backend - con crud de usuarios y productos + paginación, guards y autenticación con jwt

crud guards jwt-authentication nestjs paginator prisma-orm security

Last synced: 27 Jan 2026

https://github.com/thrzl/antivanguard

simple tray application to kill valorant vanguard automatically when it's not needed

anti-cheat anticheat privacy riotgames security valorant vanguard

Last synced: 06 Oct 2025

https://github.com/ahmadjamil888/file-threat-finder

A software that goes through your files and detect potential threats.

file finder safety security threat virus

Last synced: 22 Feb 2026

https://github.com/jairtorres1003/eslint-plugin-sensitive-env

ESLint plugin to prevent sensitive values from being hardcoded in the codebase

environment eslint eslint-plugin npm secrets security sensitive

Last synced: 12 Feb 2026

https://github.com/davidyen1124/totp-website

🔐 A completely over-engineered React playground for generating 6-digit numbers every 30 seconds. Because apparently we need 47 dependencies to count to 6. Features: TOTP generation, QR codes, and existential dread.

authentication demo javascript over-engineered playground qr-code react security tailwindcss time-based-otp totp two-factor-auth vite web-development

Last synced: 02 May 2026

https://github.com/schlunsen/donna

Autonomous AI pentesting platform — orchestrates Claude Code agents via Temporal to continuously find and exploit vulnerabilities

ai autonomous-agents claude pentesting security temporal

Last synced: 01 Apr 2026

https://github.com/vishalshenoy2002/file-monitor

It is a security application. It Monitors the given list of files and if there are any changes detected it will notify you through mail 📧

code cyber-security cybersecurity file file-monitoring file-security filesystem monitoring project python python3 security

Last synced: 18 Apr 2026

https://github.com/sarvsav/devsecops-with-docker-and-k8s

This repository will contain the material for training course on devsecops with docker 🐳 and k8s ☸️

devops docker golang k8s kubernetes security

Last synced: 04 May 2026

https://github.com/antosser/base94-rs

Base94 Encoding Library: Convert binary data to a compact text-based format using Base94 encoding. Effortlessly encode and decode data for a wide range of use cases. 🔐🔍

algorithm base94 binary-to-text cryptography development encoding rust rust-library security text-format utility

Last synced: 24 Oct 2025

https://github.com/turbot/flowpipe-mod-reallyfreegeoip

Really Free Geo IP pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Really Free Geo IP to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines reallyfreegeoip security workflow workflow-automation workflow-engine

Last synced: 02 Feb 2026

https://github.com/the-resonance/claude-code-hetzner-vps

Provision secure, Claude Code-ready Hetzner VPS instances for ~$5/month. Free tool by Pete Sena.

automation claude-code cloud devops hetzner infrastructure plugin security vps

Last synced: 07 Jan 2026

https://github.com/pelock/radio-code-calculator-javascript

Radio Code Calculator is an online service along with Web API & SDK for generating car radio unlock codes for popular vehicle brands.

anti-theft api car car-hacking js navigation npm radio radio-code radio-codes security unlock vehicle

Last synced: 30 Jul 2025

https://github.com/ospab/ostp

Next-generation stealth transport protocol in Rust for bypassing DPI, featuring 0-RTT resumption and advanced congestion control.

0-rtt bbr dpi-bypass networking noise-protocol privacy proxy rust rust-lang security stealth tokio udp vpn

Last synced: 30 May 2026

https://github.com/s44wn/the-watcher

A wep-app uses tensorflow to monitor a person presence.

ai nextjs nextjs14 security tailwindcss tensorflow typescript webcam

Last synced: 17 Apr 2026

https://github.com/ctkqiang/sqlfang

🚀 SQLFang 是一款用 Erlang 实现的轻量级 SQL 注入检测工具,专注于快速扫描网页参数,探测潜在的注入风险和数据库类型。适合想用 Erlang 玩安全检测的你,稳、准、狠。

china chinese ctkqiang erlang security sql sqlfang sqlinjection

Last synced: 02 Mar 2026

https://github.com/tankerhq/sdk-ruby

Tanker client-side encryption SDK for Ruby

cryptography encryption end-to-end privacy ruby sdk security tanker

Last synced: 09 Apr 2025

https://github.com/arachne/security

Authentication and authorization for Nette framework. Deals with cases that are difficult to implement with nette/security.

nette security

Last synced: 05 Oct 2025

https://github.com/morajabi/tiny-crypto-node

🔑 Modern Encrypt / decrypt strings (access tokens, secret names, etc) with a key for node

aes-256 aes-encryption crypto encryption nodejs security

Last synced: 27 Apr 2026

https://github.com/robertdebock/ansible-role-enpass

Install the Enpass password manager on your system.

ansible enpass molecule password passwordmanager playbook security tox

Last synced: 10 Jun 2025

https://github.com/h2337/ghostscan

A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)

antivirus linux-security malware-detection rootkit-detection scanner security security-scanner security-tools

Last synced: 09 Oct 2025

https://github.com/christianklisch/smartmask-spring-boot-starter

A unified data masking library for Spring Boot applications that consistently masks sensitive data in JSON responses and logs, reducing GDPR/DSGVO risks while enabling secure audit and security logging.

audit-logging compliance data-masking dsgvo gdpr jackson java json logging pii-masking privacy security spring-boot spring-boot-starter

Last synced: 13 Jan 2026

https://github.com/oglinuk/ken-thompsons-rott-quine

The original quine by Ken Thompson defined in his paper "Reflections on Trusting Trust".

c ken-thompson quine reflections-on-trusting-trust security

Last synced: 01 Sep 2025

https://github.com/protdos/zyphor

Zyphor: A quantum-safe, fully anonymous chat protocol ensuring complete security and metadata protection.

anonymity chat cryptography e2ee encryption messaging metadata perfect-forward-secrecy post-quantum-cryptography privacy protocol security zero-knowledge zero-trust

Last synced: 02 Mar 2026

https://github.com/brunopadz/mammoth

Audit-logging postgres proxy and jumpbox

auditing jumpbox postgres proxy security

Last synced: 14 Jan 2026

https://github.com/torx-chat/torx-flutter

Flutter client implementing the TorX Library

android anonymity apk chat-application flutter ios security tor

Last synced: 13 Apr 2026

https://github.com/geeknik/pink-sock

Pink Sock is a Brave browser extension that analyzes web pages for improper sandboxing of iframes and other related security vulnerabilities

brave-browser brave-extension browser-extension bug-bounty iframes infosec sandboxing security

Last synced: 18 Jan 2026

https://github.com/umaranis/public-key-cryptography-rsa

Demonstrate the working of Public Key Cryptography using RSA algorithm

security

Last synced: 21 Jan 2026

https://github.com/darkwizard242/ansible-role-sslscan

Ansible role for Sslscan. Available on Ansible Galaxy.

ansible ansible-galaxy ansible-role security sslscan sslscanner system

Last synced: 27 Feb 2026

https://github.com/stagas/safe-npm

safe npm time travel installs

npm security time-travel

Last synced: 25 Apr 2026

https://github.com/bormaxi8080/nmap-scanner

Nmap packet domain list scanner to find exploited vulnerabilities

nmap pentesting security shell

Last synced: 23 Nov 2025

https://github.com/circle-rd/upki-ca

A small PKI dedicated to be used in internal infrastructures and Docker deployment using Traefik

certificate certificates docker mcp mcp-server openssl pki python security traefik

Last synced: 23 Apr 2026

https://github.com/atensecurity/thoth

Thoth MCP governance proxy endpoint security sidecar

ai-agents governance headless mcp proxy security thoth

Last synced: 10 May 2026

https://github.com/mohamedelbachir/group-8-system-security-and-network

Group 8 for course System Security and Network

attack attack-defense network security

Last synced: 19 Mar 2026

https://github.com/csharper63/pihole_dnscrypt_config

This repository contains a working docker configuration for pihole and dnscrypt that support DoH.

dns-over-https dnscrypt pihole pihole-dnscrypt pihole-over-doh pihole-over-https privacy security

Last synced: 11 Feb 2026

https://github.com/trcyberoptic/openvas-tracker

Vulnerability management dashboard for OpenVAS/Greenbone — automated ticketing, scan comparison, LDAP auth, risk acceptance rules. Single Go binary with embedded React UI.

active-directory cve cybersecurity dashboard devsecops go golang greenbone gvm infosec ldap nist openvas react security ticket-management vulnerability-assessment vulnerability-management vulnerability-scanner vulnerability-tracking

Last synced: 06 Jun 2026

https://github.com/escape-technologies/escape-rules

A community-driven list of custom Escape rules. Test your API security with rules that automatically adapt for you.

api-security api-security-testing escape-custom-rules-templates escape-rules security vulnerability-detection

Last synced: 19 Mar 2026

https://github.com/the-swarm-corporation/custom-swarms-spec-template

Build your dream AI agent swarm with enterprise-grade reliability and scalability. This repository contains our official specification template for custom swarm development using the powerful Swarms Framework.

agents ai data-pipelines enterprise enterprise-grade fintech healthcare insurance ml multi-agent multi-agent-collaboration quant radiology security security-tools soc2 soc3 swarms swarms-agents swarms-of-agents

Last synced: 16 Feb 2026

https://github.com/lovasoa/sha_hashes

Collection of sha hashes of common passwords

cracking cryptography security sha1 website whitehat

Last synced: 28 Jan 2026

https://github.com/crocs-muni/scrutiny-fabric

Decentralized security metadata protocol built on Nostr for binding certifications, test results, and vulnerability data to products.

decentralized metadata nostr protocol security svelte verification

Last synced: 31 Jan 2026

https://github.com/careydevelopment/jwt-security

Handles security for the Carey Development ecosystem.

java json jwt security spring spring-boot

Last synced: 13 Apr 2026

https://github.com/vatshayan/final-year-diffie-hellman-key-algorithm-project

Diffie–Hellman Key Exchange Method (hereafter called the D-H method) allows two parties agree upon a shared secret number, a symmetric key, over an insecure communications channel

btech btechproject communication diffie-hellman diffie-hellman-algorithm diffie-hellman-key project security semester semproject

Last synced: 15 Oct 2025

https://github.com/gyulyvgc/crosswall

Cross-platform interface to built-in firewalls

firewall firewall-management network-programming networking rust security

Last synced: 01 Mar 2026

https://github.com/abdellatif-temsamani/cryptjs

`cryptjs` is a JavaScript/TypeScript library that brings cryptographic functionality from Dart to the web

crypt-lib cryptography hash javascript password-hashing security sha-256 sha-512 sha512 typescript

Last synced: 22 Jan 2026

https://github.com/gaurabb/secureheaderscanner

Simple Python module to scan a list of web urls and provide a summary of security focussed HTTP response headers used.

headers http security

Last synced: 14 Jan 2026

https://github.com/m3dzik/libcrypto

Cryptographic utilities for Java and JavaScript

aes aes-gcm argon2 crypto cryptography curve25519 encryption hashing security x25519

Last synced: 09 Apr 2025

https://github.com/b4fun/turtle

🐢 Turtle is a toolkit for simulating and validating application layer denial-of-service attacks in both live and unit testing environments.

golang-http-attack security slowloris slowloris-attack

Last synced: 31 Mar 2025

https://github.com/eaceto/swiftysimplekeychain

A wrapper (written only in Swift) to make it really easy to deal with iOS, macOS, watchOS and Linux Keychain and store your user's credentials securely.

ios linux macos security swift swift5 watchos

Last synced: 03 May 2026

https://github.com/xthezealot/saar

Saar is a bug bounty script combining the best tools for a smooth recon workflow

bugbounty dns http hunting nuclei pentesting recon redteam scanner security subdomain vulnerability

Last synced: 05 Jul 2025

https://github.com/rarestype/swift-user-agents

on the internet nobody knows you’re a swiftie

autosync security swift-server user-agent-parser

Last synced: 24 Apr 2026

https://github.com/mrwong99/gitscanner

Gitscanner is used to perform a variety of security checks against Git repositories and is expandable. Feel free to add your own checks.

cli clone git golang scan security ui

Last synced: 16 Jan 2026

https://github.com/simonkowallik/irulescan-action

:shield: irulescan-action is a static security analyzer for iRules for use with Github Actions

ci cicd devsecops f5 f5-bigip f5networks irules security security-tools

Last synced: 07 Jul 2025

https://github.com/tijme/grand-theft-filezilla

A tiny cross-platform Python script that steals saved & cached FileZilla credentials.

credentials file-transfer filezilla login passwords security stealing

Last synced: 15 Oct 2025

https://github.com/turbot/flowpipe-mod-gcp

GCP pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect GCP to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod gcloud gcloud-cli gcp hacktoberfest integrations low-code orchestration pipelines security workflow workflow-automation workflow-engine

Last synced: 25 Feb 2026

https://github.com/kmotoko/desktop-guideline

A Debian/Ubuntu desktop/notebook guide focusing on security while maintaining usability

debian guide hardening privacy security ubuntu

Last synced: 10 Jun 2026

https://github.com/0xyg3n/claude-c2

AI-Powered Command & Control Framework using Claude's Model Context Protocol (MCP)

c2 claude command-and-control implant mcp offensive-security penetration-testing rat red-team security

Last synced: 16 Apr 2026

https://github.com/muchiny/mcp-ssh-bridge

MCP server for secure SSH remote management — 337 tools across 74 groups for DevOps, Docker, Kubernetes, databases, systemd, Windows, cloud, compliance & more. Built in Rust.

ai-tools air-gapped automation claude claude-code compliance devops docker infrastructure kubernetes mcp mcp-server model-context-protocol monitoring multi-protocol remote-management rust security ssh windows

Last synced: 26 Apr 2026

https://github.com/target/strelka-docs

Autodocumentation for the Strelka System

cfc detection mkdocs mkdocs-material security target-cfc

Last synced: 28 Feb 2026

https://github.com/gusenov/nist-sp-800-95-web-portals

Требования стандарта NIST 800-95 к обеспечению безопасности web-порталов.

identity-provider information-security nist saml security service-provider soa sso web-portal ws-security

Last synced: 19 Mar 2026

https://github.com/e107inc/twofactorauth

Two-Factor Authenthication (2FA) for e107

2fa e107 plugin security two-factor-auth twofactorauth

Last synced: 24 Oct 2025

https://github.com/turbot/steampipe-mod-terraform-gcp-compliance

Run compliance and security controls to detect Terraform GCP resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

compliance gcp hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 04 Feb 2026

https://github.com/turbot/flowpipe-mod-uptimerobot

UptimeRobot pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect UptimeRobot to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines security uptimerobot uptimerobot-api workflow workflow-automation workflow-engine

Last synced: 28 Feb 2026

https://github.com/antelcat/claimserialization

Auto generate serialization implements to/from Claim

claim claims identity mapping netcore security serialization

Last synced: 09 Apr 2025

https://github.com/cryptohazard/kdfn

miscellaneous on hacking/securiy

hack hacking kdfn security

Last synced: 19 Mar 2026

https://github.com/tum-i4/disa-windows-server-2016

This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.

benchmark configuration-management scap scapolite security

Last synced: 17 Jan 2026

https://github.com/khaouiti-apps/cdn

A tutorial-based project that walks you through the process of building a YouTube-like video streaming system using Spring Boot, securing video access with signed URLs. This project will help you implement video content delivery with token-based authentication, which ensures secure and time-limited access to video streams.

security spring-boot streaming urls youtube youtube-api

Last synced: 01 Apr 2025

https://github.com/azu/mongoose-serialization-proxy-plugin

Mongoose plugin that hide mongo model fields when JSON.stringify

express mongo mongoose plugin security serialize

Last synced: 18 Apr 2026

https://github.com/ravenastar-js/gd

💚 Base de dados de contatos úteis para denúncias.

phishing-report phishing-reports ravenastar report secguide security

Last synced: 04 Feb 2026

https://github.com/arthurgregorio/shiro-ee

JEE extension for Apache Shiro Security Framework

framework java jee jsf security shiro-security

Last synced: 14 Jan 2026

https://github.com/enricodeleo/jscryptor-cli

:shipit: JSCryptor (RNCryptor's javascript implementation) in a command line flavor

cli encryption nodejs rncryptor security tool

Last synced: 09 Feb 2026

https://github.com/cossacklabs/security-guides

Tips, tricks, useful links on building and breaking secure systems

appsec hardware risks security ssdlc

Last synced: 14 Feb 2026

https://github.com/p10ns11y/arch-machine

**The only Arch Linux setup that audits itself harder than your ex audits your text messages 👀💔**. Meet arch-machine 🛡️🤖 — your AI-forged, profile-based Arch Linux fortress 🏰 that turns a fresh install into a paranoid, self-healing, ML/AI-ready workstation ⚡ faster than you can say “yay/paru/pacman … oh god why is it still compiling” 😩�

agents ai archlinux devex installers ml security sentinels shell system-audit tools virusscan vulenrability

Last synced: 30 May 2026

https://github.com/gregl83/comandare

TCP Command Line Execution

backdoor rust security tcp

Last synced: 09 Apr 2025

https://github.com/miccy/dont-be-shy-hulud

🪱 NPM Worm Defense Guide: Detection, remediation & prevention for Shai-Hulud 2.0 and beyond!

article bun defense detection devops malware malware-detection ncident-response nodejs npm security security-audit security-tools shai-hulud shai-hulud-detector supply-chain worm

Last synced: 13 Jan 2026

https://github.com/didrod205/jwtlens

Decode, audit & verify JWTs entirely offline — stop pasting live tokens into jwt.io. Local signature verification (HS/RS/PS/ES/EdDSA) with your own secret/PEM/JWK, plus a security lint (alg:none, exp, aud/iss). Deterministic CLI, JSON/MD reports.

appsec auth authentication cli json-web-token jws jwt jwt-cli jwt-decode node offline security token typescript verify

Last synced: 16 Jun 2026

https://github.com/pronzzz/awesome-android-foss

A curated "Awesome" list of Free and Open Source Software (FOSS) Android applications, categorized by utility and privacy features. The collection includes tools like NetGuard, KISS Launcher, and other privacy-focused apps, complete with direct links to F-Droid and source code.

android android-apps apps awesome awesome-list curated-list f-droid foss open-source privacy security

Last synced: 22 Feb 2026

https://github.com/didrod205/entropass

Generate strong, bias-free passwords (random/pronounceable/PIN) and measure strength — entropy & crack time — 100% locally. Zero deps. Web app + library.

crypto csprng entropy passphrase password password-generator password-strength secure-random security zero-dependency

Last synced: 16 Jun 2026