An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/cymmetria/honeycomb_plugins

The plugin repository for Honeycomb, the honeypot framework by Cymmetria

honeycomb python security security-tools

Last synced: 04 Apr 2026

https://github.com/yvesago/imap-honey

IMAP or SMTP honeypot written in Golang

golang honeypot imap security security-tools smtp

Last synced: 04 Apr 2026

https://github.com/easybill/easypwned

offline haveibeenpwned HIBP check and downloader, rest api, easybill

haveibeenpwned hibp password security

Last synced: 02 Apr 2026

https://github.com/jameswoolfenden/terraform-cloudflare-adblock

This module helps you set up Adblocking for your devices (PC/Mac Android/Apple) using Cloudflare - similar to a PiHole

adblock mobile pihole security

Last synced: 13 Oct 2025

https://github.com/0xAkashsky/sub-scout

Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)

bugbounty cybersecurity infosec infosectools security tools

Last synced: 10 Mar 2025

https://github.com/volkansah/gpt-security-best-practices

The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.

ajax ajax-request chatgpt chf code-security html js php security security-risks server-side serverside-rendering vulnerabilities vulnerabilities-fix

Last synced: 12 Apr 2025

https://github.com/mxlint/mxlint-cli

A set of tools to enhance Mendix app development workflows. They are mainly designed for professionals but should be usable for everybody.

best-practices golang linting mendix mxlint opa policies rego security xunit

Last synced: 04 Oct 2025

https://github.com/kurobeats/sparkler

The tool creates a Microsoft Active Directory Domain with a structure and objects for learning.

active-directory educational security

Last synced: 23 May 2026

https://github.com/jxnet/jxnet

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

capture-packets java jni libpcap network-security network-security-monitoring npcap packet-analyzer packet-capture packet-crafting packet-sniffer pcap-library security security-audit security-scanner sending-packets winpcap

Last synced: 09 Jul 2025

https://github.com/jenkinsci/ownership-plugin

Jenkins plugin. Provides explicit ownership of jobs and agents

adopt-this-plugin jenkins jenkins-plugin jenkins-security ownership plugin security ui

Last synced: 30 Sep 2025

https://github.com/madhuakula/spotter

Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations, and compliance violations across your Kubernetes clusters, manifests, and CI/CD pipelines.

cloud cloud-security kubernetes policy security

Last synced: 04 Sep 2025

https://github.com/linuxchata/fido2

Shark WebAuthn library for .NET. WebAuthn allows users to authenticate with cryptographic key pairs, where the private key remains securely stored on the user's device. This makes authentication resistant to phishing, credential stuffing, and data breaches.

fido2 fido2-standard passkeys passwordless passwordless-authentication security webauthn

Last synced: 14 Jan 2026

https://github.com/ebarti/cortex-xdr-client

A python-based API client for Cortex XDR API.

api client cortex cortex-xdr paloaltonetworks python security xdr xql

Last synced: 12 Jan 2026

https://github.com/0llirocks/cvss-suite

CvssSuite - This Ruby gem helps you to process the vector of the Common Vulnerability Scoring System.

cvss ruby-gem security

Last synced: 04 Oct 2025

https://github.com/m3ssap0/gitlab_rce_cve-2022-2884

Exploits GitLab authenticated RCE vulnerability known as CVE-2022-2884.

cve-2022-2884 exploit gitlab security security-tools vulnerability vulnerability-scanners

Last synced: 25 Jun 2025

https://github.com/typo3/html-sanitizer

HTML sanitizer, written in PHP, aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values.

html parser php sanitization security xss

Last synced: 08 May 2025

https://github.com/baroshem/next-security

🛡 Security plugin for Next.js based on OWASP and Helmet

basicauthentication cors csrf ddos headers helmet nextjs owasp rate-limiting security xss

Last synced: 29 Jun 2025

https://github.com/xentra-ai/kube-guardian

A Kubernetes tool leveraging eBPF for advanced Kubernetes security, auto-generating Network Policies, Seccomp Profiles, and more.

kubernetes security

Last synced: 16 May 2025

https://github.com/caronc/ha-ultrasync

Interlogix ZeroWire and Hills ComNav (NX-595E) UltraSync Security Panel for Integration for Home Assistant Comunity Store (HACS)

comnav hacs homeassistant homeassistant-custom-component homeassistant-integration interlogix nx-595e security ultrasync

Last synced: 17 Mar 2025

https://github.com/briandfoy/cpan-security-advisory

CPAN Security Advisory Database

cve data-pack perl security

Last synced: 02 Apr 2026

https://github.com/michaelgrafnetter/webauthn-interop

Passkeys/FIDO2/WebAuthn .NET Library for Windows Desktop and CLI Applications

authenticator dotnet dotnet-core fido2 interop nuget-package passkeys security webauthn winapi windows-hello

Last synced: 05 Jun 2026

https://github.com/trusera/ai-bom

AI Bill of Materials — discover every AI agent, model, and API in your infrastructure

ai ai-security bill-of-materials cyclonedx github-actions llm sarif sbom security

Last synced: 14 Feb 2026

https://github.com/shuffle/singul

Singul: Connect to your favorite services with a Singul line of code.

ai api api-client automation data llm normalization open security source standardization standards

Last synced: 07 May 2026

https://github.com/levidurfee/gowafp

A Web Application Firewall for PHP written in Go

fastcgi fpm go golang php security waf

Last synced: 05 Oct 2025

https://github.com/fabianacampanari/average-calculator

📊 Creation of a Grade Average calculator to find out if the final grade was sufficient or not for approval.

code-review css3 github github-actions github-pages html5 javascript license love-and-joy math photoshop programming security sponsors

Last synced: 28 Apr 2025

https://github.com/infineon/optiga-tpm

Infineon OPTIGA™ TPM 2.0

iot security tpm2

Last synced: 06 Feb 2026

https://github.com/jotygill/privacy-fighter

Easy to install, privacy protection browser setup. A collection of best browser extensions and configurations to help you fight for your online privacy.

browser chrome firefox privacy privacy-protection privacy-tools python python3 security

Last synced: 09 Oct 2025

https://github.com/cretezy/masterpassx

A deterministic stateless password generator.

password password-generator security

Last synced: 15 Apr 2025

https://github.com/akunzai/windows-secure-auditor

PowerShell script to generate daily audit report, like Logwatch for Windows

audit iso27001 logwatch powershell security windows

Last synced: 16 Jan 2026

https://github.com/feliz-szk/neutron

Powerful and smart Traffic Anonymizer using tor as a transparent proxy

anonymizer archlinux debian iptables kali-linux manjaro privacy proxy security tor tor-proxy transparent-proxy

Last synced: 03 May 2025

https://github.com/s8sg/docker-firecracker

Generic container for launching a firecracker microVM inside a Docker container

container docker firecracker firecracker-microvms golang security

Last synced: 14 Apr 2025

https://github.com/javaee/security-api

Java EE Security (JSR-375) API

java javaee jsr-375 security

Last synced: 14 Jan 2026

https://gitlab.com/coroner/cryptolyzer

CryptoLyzer is a fast, flexible, and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI.

DNSSEC HASSH HTTP headers JA3 LMTP MySQL/MariaDB POP3 RDP TLSv1.3 audit auditing certificate-transparency cryptography cybersecurity tools forward security ftp imap jabber ldap library mailsieve nntp openvpn pentest postgresql python root certificate scanner-cli security security scan security tools security-scanner security-tools sieve smtp ssh ssh keys sshkeys ssl tls tls13 vulnerability scanning xmpp xmpp-transport

Last synced: 30 Apr 2025

https://github.com/perkss/tinklj

A Cryptographic Clojure Api for the Google Tink library

clojure crypto cryptography encryption encryption-algorithms encryption-decryption security

Last synced: 12 Apr 2025

https://github.com/turbot/steampipe-mod-microsoft365-compliance

Run individual controls or full compliance benchmarks for CIS across all of your Microsoft 365 and Office 365 tenants using Powerpipe and Steampipe.

azuread cis cis-benchmark compliance hacktoberfest microsoft365 office365 powerpipe powerpipe-mod security steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/dajiaji/python-cwt

A Python implementation of CWT/COSE.

cbor cose cryptography cwt hcert hpke jose jwk jwt python security

Last synced: 09 Apr 2025

https://github.com/zapalm/prestashop-security-vulnerability-checker

PrestaShop security vulnerability checker for known vulnerabilities.

cve hacktoberfest php-library prestashop security vulnerability

Last synced: 04 Sep 2025

https://github.com/letstri/permix

🔒 Permix is a lightweight, framework-agnostic, type-safe permissions management library for JavaScript applications on the client and server sides.

permissions security type-safe typescript

Last synced: 15 Apr 2025

https://github.com/ravi-teja-konda/network_traffic_analyzer

A Python-based network traffic analyzer for PCAP files, providing insights into protocol distribution, IP communications, and potential port scanning activities.

network-monitoring network-traffic-analysis pcap-analyzer python scapy security traffic-analysis

Last synced: 23 Sep 2025

https://github.com/lostintangent/github-security-alerts

VS Code extension to view and resolve the security alerts for your GitHub repositories 🔒

github security vscode-extension

Last synced: 14 Apr 2025

https://github.com/whoopscs/scoop-security

用于渗透测试和网络安全相关工具下载、安装和自动更新的Scoop软件仓库。Scoop bucket for Penetration Testing and Cybersecurity related tools.

cybersecurity cybersecurity-tools pentesting pentesting-tools scoop scoop-bucket security security-tools windows

Last synced: 31 Oct 2025

https://github.com/Baroshem/next-security

🛡 Security plugin for Next.js based on OWASP and Helmet

basicauthentication cors csrf ddos headers helmet nextjs owasp rate-limiting security xss

Last synced: 30 Aug 2025

https://github.com/drtychai/research101

General tips and advice for becoming interested in research, finding a suitable topic, and setting goals.

howto research security thesis

Last synced: 10 Apr 2026

https://github.com/matro7sh/yelaa

Obtain a clean-cut architecture at the launch of a mission and run some tests ( subdomain search, fuzzing, make screenshots on a given perimeter )

go golang nuclei pentest-scripts pentest-tool security

Last synced: 12 Jan 2026

https://github.com/nwtgck/web-ssh-keygen

🔒🔑 Generate a key-pair of ssh-keygen for Web browser

browser secure security ssh-keygen web webcrypto

Last synced: 15 Apr 2025

https://github.com/gremwell/qsslcaudit

test SSL/TLS clients how secure they are

certificate certificate-validation dtls openssl security ssl tls

Last synced: 30 Apr 2025

https://github.com/anlominus/anlominus

GitHub Is the HOME ! 🔱 We believe in God, everyone else is suspicious 🔱

computer-science config development github github-config hacking management profile readme security toolset

Last synced: 28 Jul 2025

https://github.com/jeremylong/malicious-dependencies

Demonstrates how a malicious dependency could negatively impact the build output.

demonstration-project malicious-code reproducible-builds security

Last synced: 11 Apr 2025

https://github.com/penmast/chameleon

A Windows application-specific VPN and network monitoring tool

cplusplus dll-hooking dll-injection matplotlib monitoring network nmap openvpn pyqt5 pyqtgraph python scapy security vpn windows

Last synced: 09 Jul 2025

https://github.com/securestackco/actions-sbom

A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements, and has the SBOM to show it!

automation-testing bill-of-materials deployment deployment-automation o sbom sbom-distribution sbom-generator sbom-repository sbom-tool security security-audit security-automation

Last synced: 12 Jul 2025

https://github.com/ranguli/ioccheck

A tool for simplifying the process of researching IOCs.

blueteam hacking hacktoberfest ioc security

Last synced: 12 Jul 2025

https://github.com/lissy93/permissionator

🐧 A Linux chmod calculator, for generating safe file permissions

calculator chmod chmod-calculator filesystem linux permissions security

Last synced: 28 Oct 2025

https://github.com/lirantal/pie-my-vulns

Visualize your project security vulnerabilities as a pie chart in the terminal

nodejs npm npx security security-tools snyk

Last synced: 30 Apr 2025

https://github.com/mozilla-services/foxsec-pipeline

Log analysis pipeline utilizing Apache Beam

apache-beam dataflow log-analysis security

Last synced: 11 Apr 2025

https://github.com/jenkinsci/folder-auth-plugin

Authorization Plugin for Jenkins that works on folders

authorization folder gsoc-2019 jenkins security

Last synced: 03 Apr 2025

https://github.com/ItsIgnacioPortal/hacker-scoper

Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.

bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity

Last synced: 11 Jul 2025

https://github.com/1farz1/ecommerce-api-nodejs

This full E-Commerce API build using Express and MongoDb, and other Npm Packages listed below , for learning purposes. Here it contains all the required functionalities of a full-fledged E-commerce API

api bcryt clean-code ecommerce ecommerce-api ecommerce-website express helmetjs mongodb mvc-architecture nodejs rest-api security solid-principles

Last synced: 12 Apr 2025

https://github.com/gyulyvgc/nullnet-firewall

Rust-based firewall for network drivers

firewall network-programming networking rust security

Last synced: 17 Mar 2025

https://github.com/chen-keinan/lxd-probe

Open Source runtime scanner for Linux containers (LXD / LXC), It performs security audit checks based on CIS Linux containers Benchmark specification

audit cis-benchmark containers linux linuxcontainers lxd security

Last synced: 17 Mar 2025

https://github.com/kylmakalle/devicecheck

Reduce fraudulent use of your services by managing device state and asserting app integrity via Apple DeviceCheck API with this Python wrapper.

api apple appsec devicecheck ios macos python security swift

Last synced: 28 Oct 2025

https://github.com/greenboxal/wifi-hijack

Wifi DNS hijacker

dns dns-spoof hijack security wifi

Last synced: 11 Jul 2025

https://github.com/fabianacampanari/top-trumps

🃏 Creation of the Top Trumps game where the theme and cards were inspired by great names responsible for the technology revolution and I dedicate it to Ada Lovelace to honor her contributions to humanity as one of the leading women in science and math.

css3 figma github github-action github-pages html5 javascript license-management love-and-joy photoshop programming security

Last synced: 05 May 2025

https://github.com/odwyersoftware/azure-ad-verify-token

Verify JWT issued by Azure Active Directory B2C in Python 🐍

authentication azure azure-active-directory-b2c jwt-authentication python-library security

Last synced: 11 Apr 2025

https://github.com/citp/anomalous-tor-keys

Analysis of archived Tor relay RSA public keys

cryptography factorization hidden-services security tor-network

Last synced: 03 Jan 2026

https://github.com/vzhou842/definitely-secure-bank

A definitely (read: not) secure online banking site. Built for demo purposes as an example of common security vulnerabilities / what NOT to do.

csrf csrf-attacks csrf-prevention demo security web-security

Last synced: 27 Mar 2025

https://github.com/hungtruong/deadringer

A proof of concept iPhone X lock screen spoof

apple iphone passcode security

Last synced: 09 Jul 2025

https://github.com/traut/jupyter-widget-stixview

STIX2 graph widget for Jupyter notebooks, powered by stixview library

cti cyber-security cyber-threat-intelligence cybersecurity graph jupyter jupyter-notebook jupyter-widget security stix2

Last synced: 05 Oct 2025

https://github.com/sigstore/rekor-tiles

Signature Transparency Log designed for ease of use, low cost, and minimal maintenance

provenance security supply-chain transparency-log

Last synced: 17 Jan 2026

https://github.com/elastic/camera-hacks

PoC exploits and tools for conducting vulnerability research against AJCloud Wi-Fi security camera products

ajcloud camera exploit hacking iot security wansview

Last synced: 13 Jun 2025

https://github.com/nextcloud/limit_login_to_ip

Nextcloud app that lets you Limit login to IP ranges

allowlist nextcloud open-source security

Last synced: 11 Mar 2026

https://github.com/t94j0/nmap

Golang wrapper library for nmap.

api golang network-security nmap security

Last synced: 07 Mar 2026

https://github.com/nanlabs/terraform-aws-starter

Get started quickly with AWS infrastructure using a robust Terraform starter kit incorporating secure state management, VPC configuration, security groups, RDS provisioning, secrets management, SSM parameter store, and GitHub Actions integration!

aws boilerplate documentdb eks github-actions hacktoberfest infrastructure-as-code mongodb-atlas rds-aurora rds-database secrets-manager security terraform terraform-module terraform-modules vpc

Last synced: 10 Apr 2025

https://github.com/juancarlospaco/nim-firejail

Firejail wrapper for Nim, Isolate your Production App before its too late!

firejail hardened hardening infosec nim nim-lang secure secure-by-default security security-hardening security-tools

Last synced: 21 Mar 2025

https://github.com/FreshSupaSulley/Auto-2FA

Login through Duo Mobile in your browser

browser-extension duo duo-mobile security

Last synced: 23 Aug 2025

https://github.com/JonasKruckenberg/rollup-plugin-sri

Add subresource integrity tags to all your html files 🔒

integrity rollup-plugin rollup-plugin-rsi security subresource-integrity

Last synced: 11 May 2025

https://github.com/adamyordan/offbyslash-django-dumper

A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.

django dumper exploit nginx poc security source-code vulnerability web-security

Last synced: 29 Jun 2025

https://github.com/enquo/active_enquo

ActiveRecord extension for encrypted query operations

activerecord cryptography encryption enquo hacktoberfest rails ruby security

Last synced: 30 Aug 2025

https://github.com/aidantwoods/swift-paseto

Platform-Agnostic Security Tokens implementation in Swift

paseto security swift token

Last synced: 22 Mar 2025

https://github.com/john-science/exif_delete

Secure your photographs by stripping them of all the EXIF data.

exif exif-deletion image-processing images photos privacy python security security-tools

Last synced: 07 May 2026