An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/pfirmstone/jgdms

Infrastructure for providing secured micro services, that are dynamically discoverable and searchable over ipv6 networks

distributed-computing iot java osgi-services security

Last synced: 10 Apr 2025

https://github.com/ukhomeoffice/policy-admission

Kubernetes admission controller

admission-controllers kubernetes security

Last synced: 08 Apr 2025

https://github.com/ambitus/racfu

RACFu (RACF universal) - A unified and standardized interface to RACF callable services.

automation json mainframe python racf racfu security simplification standardization zos

Last synced: 23 Jan 2026

https://github.com/dataplat/dbadisa

🦅 DISA STIG automation module for SQL Server

automation disa powershell security sqlserver stig

Last synced: 04 Apr 2025

https://github.com/brickmakersgmbh/aspsecurityheaders

A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers

asp-net asp-net-core brickmakers csharp csp dotnet dotnet-core hsts http-headers https security security-headers

Last synced: 24 Apr 2025

https://github.com/pelock/stringencrypt-python

StringEncrypt allows you to encrypt strings and files using a randomly generated algorithm, generating a unique decryption code (so-called polymorphic code) each time in the selected programming language.

code-generation code-generator cryptography encryption encryption-tool file file-encryption polymorphic-engine python python-3 python3 security string string-encryption

Last synced: 13 Jun 2025

https://github.com/cybozu/prompt-hardener

Prompt Hardener is a tool designed to evaluate and enhance the securify of system prompts for RAG systems.

ai generative-ai llm security security-tools system-prompt-hardener

Last synced: 28 Apr 2025

https://github.com/merciagents/riphook

Deterministic security layer for Openclaw(Clawdbot), Cursor and Claude Code. Write secure code, prevent data exfil, and more

ai-agents clawdbot hooks moltbook moltbot openclaw openclaw-security security

Last synced: 15 Apr 2026

https://github.com/krishealty/hidemeplease

HideMePlease is a new generation tool to hide phising web links into legitimate web links with original domains (eg: facebook.com, instagram.com) using ccTLD Disguise method.

cybersecurity hacking hacking-tool hacking-tools phishing-script phising phising-link security vulnerability

Last synced: 14 Jul 2025

https://github.com/aquiladev/remix-mythx-plugin

The plugin allows executing security check via MythX in Remix IDE

ethereum mythx plugin remix security smart-contracts solidity

Last synced: 06 May 2025

https://github.com/atrexus/ws-watcher

A PoC application that detects unauthorized external access to select memory regions.

cpp memory-management security windows x64

Last synced: 14 Apr 2025

https://github.com/slippyex/data-guardian

Tiny, zero-dependencies, package which tries to mask sensitive data in arbitrary collections (map, set), errors, objects and strings.

auditing covering logging masking security sensitive-data sensitivity telemetry tracing

Last synced: 12 May 2025

https://github.com/webpwnized/gcp-audit

GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks

audit benchmark cloud cybersecurity google platform scripts security

Last synced: 03 May 2025

https://github.com/m-mizutani/lurker

Scalable security network sensor as low interaction honeypot

go honeypot monitoring packets security

Last synced: 01 Jul 2025

https://github.com/mirego/absinthe_security

AbsintheSecurity provides utilities to improve the security posture of APIs built with Absinthe GraphQL.

absinthe absinthe-graphql elixir elixir-lang security

Last synced: 14 Aug 2025

https://github.com/umutcamliyurt/droidcrypt

A file and text encryption tool for Android

aes-256-gcm android-encryption opsec privacy scrypt security security-tools

Last synced: 20 Aug 2025

https://github.com/sap-samples/s4hana-hana-audit-policies

Templates for SAP HANA audit policies of SAP S/4HANA systems.

audit s4hana sample sap-hana sap-s4hana security templates

Last synced: 05 Mar 2025

https://github.com/talsec/free-rasp-capacitor

Capacitor plugin for Android and iOS mobile devices. SDK providing app protection and threat monitoring. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jailbreak, Frida, emulators, bots, tampering and integrity issues, obfuscation, VPN usage, malware, and monitor device identification and fingerprint.

app-security capacitor capacitor-app-security capacitor-app-shielding capacitor-application-security capacitor-community capacitor-frida capacitor-plugin capacitor-rasp capacitor-reverse-engineering capacitor-root-detection capacitor-security capacitor-tampering capacitor-tampering-detection freerasp security

Last synced: 20 Feb 2026

https://github.com/houssemdellai/azure-network-course

Course for learning Azure Hub and Spoke implementation

azure dns egress firewall hub-spoke ingress network networktraffic security

Last synced: 09 May 2025

https://github.com/theodo/accent

Access Control Checker Easy Neat Thorough

access-control security

Last synced: 18 Jul 2025

https://github.com/kaivyy/perseus

AI-powered security assessment for your codebase. Multi-language (JS, Go, Python, Rust, Java, PHP, Ruby, C#). Works with Claude Code, Codex, OpenCode.

ai-security claude claude-code code-review cybersecurity devsecops penetration-testing security security-audit static-analysis vulnerability-scanner

Last synced: 15 Feb 2026

https://github.com/JosephTLucas/lintML

A security-first linter for code that shouldn't need linting

linter machine-learning security

Last synced: 18 Apr 2025

https://github.com/charlesportwoodii/libsodium-uwp

libsodium for Universal Windows Platform (UWP) - A secure cryptographic library

cryptography hash hkdf libsodium nacl nuget security sodium uwp

Last synced: 24 Jun 2025

https://github.com/veeqtoh/secure-code

A Laravel package for generating and managing n-digit random secure codes for your app.

access-control door-controller laravel php security

Last synced: 07 Sep 2025

https://github.com/banhao/autospamemailscan

AutoSpamEmailScan.ps1 is used to monitor a specific mailbox that enterprise users can forward suspicious spam emails to a specific mailbox.

automation esa ews-api google-safe-browsing ironport mdatp minemeld phishing phishing-detection quarantine securex security security-automation soar spam spam-detection spam-emails virustotal workflow

Last synced: 26 Apr 2025

https://github.com/m-mizutani/dns-gazer

DNS passive monitoring tool

cpp dns fluentd libpcap packet-sniffer security

Last synced: 27 Apr 2025

https://github.com/jojonas/db_nmap

Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.

metasploit metasploit-framework networks nmap security

Last synced: 14 Jan 2026

https://github.com/tankerhq/spec

Technical specification of the Tanker SDK and protocol for end-to-end encryption

cryptography encryption end-to-end privacy sdk security specification tanker

Last synced: 07 Feb 2026

https://github.com/itinerisltd/trellis-disable-xml-rpc

Disable WordPress XML RPC on Trellis sites

ansible-galaxy security trellis wordpress xml-rpc

Last synced: 24 Apr 2025

https://github.com/matthiastjong/shellgate

Self hosted secure gateway for AI agents. One token. Full control. Complete audit trail.

ai ai-agents api-gateway claude-code credential-management mcp mcp-server model-context-protocol open-source proxy security self-hosted ssh ssh-proxy

Last synced: 03 Jun 2026

https://github.com/rek7/patchy

Automated Persistence and Lateral Movement using GCP Patch Management

cloud-native-se cloud-security gcp penetration-testing red-team security

Last synced: 26 Feb 2026

https://github.com/y-miyazaki/terraform-aws-base

Initially set base configuration created by Terraform.

aws metrics monitoring security terraform terraform-aws

Last synced: 17 Jan 2026

https://github.com/labd/python-param-store

Python module to store secrets in secret stores

aws python security

Last synced: 30 Aug 2025

https://github.com/devgateway/ansible-ldap-auth

Configure LDAP authentication & authorization with parametrized user/host/project lookups

ansible ansible-role ldap ldap-authentication ldap-server linux nss pam security ssh ssh-server

Last synced: 23 Jul 2025

https://github.com/tenable/accurics-action

The Accurics GitHub Action scans Infrastructure as Code files checked into the respository to help ensure that cloud resources are secure and compliant from creation.

cicd devops security

Last synced: 15 Apr 2025

https://github.com/bitsofinfo/testssl.sh-alerts

Alerting engine (slack etc) for testssl.sh JSON result output files

alerting alerts certificates continuous-integration security slack ssl testssl

Last synced: 13 Apr 2025

https://github.com/redhat-actions/crda

Scan your project's dependencies with Code Ready Dependency Analytics

crda github-actions sarif-report security security-analysis security-automation

Last synced: 26 Jun 2025

https://github.com/dahall/securityeditor

Standard Windows security editor dialog for .NET derived from CommonDialog and implementing the Windows EditSecurity API.

csharp dotnet permissions security windows winforms

Last synced: 01 Sep 2025

https://github.com/skosachiov/remediations-gendbuntu

The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.

ansible automation centos compliance debian group-policy laps linux redhat remote-assistance sccm security security-audit security-automation ubuntu

Last synced: 15 May 2025

https://github.com/dxc-0/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 16 May 2025

https://github.com/MathiasRenner/optimize-ubuntu

Optimize Ubuntu for usability, security, privacy and stability

linux privacy reliability security ubuntu

Last synced: 07 Sep 2025

https://github.com/zelon88/workstation_usb_monitor

Know whenever a domain user plugs in a USB storage device. Log & email when storage devices get attached to your network.

admin-tools administration email-notifications gpo monitor notifications security security-automation security-tools sendmail storage storage-devices storage-monitor usb usb-monitor vbs

Last synced: 07 Jan 2026

https://github.com/lionheart/django-pwnedpasswords-validator

Django password validator that checks for passwords in known data breaches.

django django-passwords library password-validation password-validator passwords python python-library security

Last synced: 15 Sep 2025

https://github.com/madhuakula/hacked-emails

Command line hacked-emails

go golang hacked-emails infosec security

Last synced: 11 Aug 2025

https://github.com/mxschmitt/react-have-i-been-pwned

React component for: Have I Been Pwned?

hibp javascript passwords react security

Last synced: 19 Apr 2025

https://github.com/0xricksanchez/sploitget

A wrapper script for https://sploitus.com to scrape query results for tools and exploits

ctf exploit exploitation pentest-tool security wrapper-api

Last synced: 13 Apr 2025

https://github.com/gchan/password_blocklist

Ruby gem to check a password against a blocklist of commonly used passwords

password-blocklist pasword ruby ruby-gem ruby-on-rails rubygem security

Last synced: 11 Nov 2025

https://github.com/mythkiven/mkappleopensourcedownload

Apple opensource source image,download source code from Apple's website.

apple corefoundation developer dyld foundation gcc ios kit lldb llvm open security

Last synced: 18 Mar 2025

https://github.com/cyb3rmx/badpig

A compilation of snort rules for detecting malware traffic.

intrusion-detection malware-detection network-security security snort snort-rules

Last synced: 02 Jan 2026

https://github.com/gcmurphy/osv

Rust implementation of ossf osv specification

rust security vulnerability-scanners

Last synced: 11 Mar 2026

https://github.com/tylerchr/pwnedpass

Package pwnedpass is a Go package for querying a local instance of Troy Hunt's Pwned Passwords database.

golang haveibeenpwned hibp offline pwnedpasswords security selfhosted

Last synced: 14 Jan 2026

https://github.com/jnaulty/multi-yubikey-helper

Same Subkeys, Many Yubikeys...

gpg hsm security yubikey

Last synced: 13 Aug 2025

https://github.com/toshke/aws-keys-sectool

Command line to list and IP whitelist active AWS credentials

access-control aws security security-tools

Last synced: 14 Dec 2025

https://github.com/tink-crypto/tink-go-gcpkms

Extension to Tink Go that provides Google Cloud KMS integration

crypto cryptography gcp-kms go golang golang-library google-cloud-kms security tink

Last synced: 12 Jan 2026

https://github.com/jasondrawdy/amaterasu

Lightweight licensing library for .NET applications which allows the managing of licenses via web based scripts and on-the-fly code compilation.

amaterasu antebyte code-generation compiler cryptography csharp dotnet dynamic encryption hacking library license license-management memory-management networking on-the-fly scripting security web windows

Last synced: 22 Apr 2025

https://github.com/chinmina/chinmina-bridge

Allows Buildkite agents to use ephemeral GitHub tokens to authenticate their interactions. Avoids deploy keys and long-lived PATs.

buildkite github github-app oidc security

Last synced: 27 May 2026

https://github.com/s4u/pgp-keys-map

PGP keys map to maven artifacts

hacktoberfest java maven-plugin pgp pgp-key security

Last synced: 11 Oct 2025

https://github.com/x0rbyt3/osint-tools

An Online Collection of Open Source Intelligence Tools

css html osint repository security security-audit security-scan security-tools

Last synced: 07 Aug 2025

https://github.com/jpetrucciani/bandit-check

github action to run the bandit security linter

action bandit github-action hacktoberfest lint python security

Last synced: 09 Oct 2025

https://github.com/typisttech/wp-cloudflare-guard

Connecting WordPress with Cloudflare firewall, protect your WordPress site at DNS level. Automatically create firewall rules to block dangerous IPs

cloudflare firewall security wordpress wordpress-plugin

Last synced: 13 Jan 2026

https://github.com/alejandroesquivel/node-pastebin-scraper

Minimalistic Pastebin Scraper for Node.js. A way to scrape pastebin's recent paste feed without requiring a LIFETIME PRO account and using their API. A good tool for those that want to ensure that their accounts have not been compromised during a recent hack.

client leaks node-pastebin-scraper pastebin scraper security

Last synced: 13 Feb 2026

https://github.com/lambdacasserole/hack-this

A collection of common web programming security mistakes.

education hacking php security sql-injection vulnerabilities

Last synced: 09 Feb 2026

https://github.com/webreflection/csp

Because Security Matters, and Web libraries, tools, and projects, should be more informative about their state.

badge csp security

Last synced: 15 Feb 2026

https://github.com/varunon9/fakelock

An android app for extra privacy. It will protect selected apps by adding a lock screen above them until correct password is entered. (Not complete, In active development process. PRs are welcomed)

android android-custom-lockscreen android-protect-apps privacy security

Last synced: 14 Mar 2026

https://github.com/rung/go-safecast

Go Library for safe type conversion to prevent integer overflow

go golang security

Last synced: 26 Jan 2026

https://github.com/zb3/tiandy-research

This repository contains the results of my August 2020 research of Tiandy's IPC/NVR firmware. I found two vulnerabilities that could be used to remotely recover the administrator password and gain root access to the device.

full-disclosure security

Last synced: 17 Jan 2026

https://github.com/costela/wile

Stripped down letsencrypt (ACME) client

acme certificate cli client python security ssl

Last synced: 09 Apr 2025

https://github.com/k4yt3x/network-security-checklist

A checklist for defending private or corporate networks.

checklist networking security

Last synced: 09 Mar 2025

https://github.com/sigstore/sigstore-a2a

Sigstore A2A Agent Signing

agent cryptography security sigstore

Last synced: 22 Feb 2026

https://github.com/avishayil/cf-signer

Tool for signing and verifying the integrity of CloudFormation templates

aws cloudformation integrity security signing

Last synced: 01 Apr 2025

https://github.com/arch3rpro/securityrss

A Collection of Security RSS Feeds OMPL 网络安全资讯RSS订阅源

cybersecurity opml rss-feed security

Last synced: 26 Jan 2026

https://github.com/chamodanethra/biometric_signature

Hardware-backed biometric authentication for Flutter. Create cryptographic signatures using device biometrics with keys stored in Secure Enclave/StrongBox/Windows Hello.

android biometric-authentication cryptography flutter ios macos secure-enclave security strongbox windows windows-hello

Last synced: 01 Apr 2026

https://github.com/duomarket/userless

A client and server side solution for zero knowledge authentication, in Go

authentication encryption golang openbazaar security

Last synced: 14 Jan 2026

https://github.com/roboflow/rickblocker

Audio visual mitigation of Rickrolls using computer vision.

april-fools computer-vision rickroll roboflow security

Last synced: 21 Jun 2025

https://github.com/securestackco/actions-log4j

A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.

devsecops github-actions java java-vulnerability java8 jre log4j log4j-rce log4j2 log4js log4shell scanning security security-automation security-tools software-composition-analysis static-analysis vulnerabilities vulnerability-assessment vulnerability-scanner

Last synced: 30 Jul 2025

https://github.com/andresriancho/aws-backup

AWS Backup implementation in terraform

aws backup security terraform

Last synced: 10 Apr 2025

https://github.com/alishahidi/apantos

Apantos is a fast and simple framework based on php with security methods and dedicated orm. Modularly

fast framework lightweight php security

Last synced: 13 Jan 2026