An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/yurukusa/cc-safe-setup

One command to make Claude Code safe for autonomous operation. 658 example hooks ยท 14,096 tests ยท 1,000+ installs/day

agent agentic-coding ai-safety anthropic automation autonomous bash claude claude-code cli coding-agent database-protection developer-tools hooks llm-tools owasp pretooluse safety security token-consumption

Last synced: 17 Apr 2026

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/virb3/winsock-dump-proxy

A proxy DLL for Windows to dump Windows Socket connections

dll dump proxy reverse-engineering security windows winsock

Last synced: 24 Jun 2026

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/rezmoss/awesome-security-pipeline

๐Ÿ” A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/trilemma-dev/required

Parser and evaluator for Apple's Code Signing Requirement Language

codesign csreq macos secrequirement security

Last synced: 21 Oct 2025

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/tink-crypto/tink-go-awskms

Extension to Tink Go that provides AWS KMS integration

aws-kms crypto cryptography go golang golang-library security

Last synced: 27 Jan 2026

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/johnnykv/curiosum

Pcap recording of Heralding sessions

honeypot pcap security

Last synced: 13 Apr 2025

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/lewiszlw/notebooks

ๅญ˜ๆ”พๅญฆไน ็ฌ”่ฎฐใ€ๅ†™่ฟ‡็š„ๅšๅฎข็ญ‰~

algorithms blog distributed dubbo java kafka linux middleware mq mysql network op ops os python redis rpc security system-design thrift

Last synced: 27 Jul 2025

https://github.com/xinux-org/configs

โš™๏ธ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/IchHabRecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 31 Mar 2025

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/phpgt/csrf

Automatic protection from Cross-Site Request Forgery.

automatic-protection csrf csrf-protection csrf-protector csrf-tokens php-security phpgt security

Last synced: 04 Oct 2025

https://github.com/skx/remotehttp

Magic wrapper to deny HTTP-requests to to "local" resources.

go golang http library security transport utility wrapper

Last synced: 23 Apr 2025

https://github.com/iowacomputergurus/dnntelerikidentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 19 Apr 2025

https://github.com/dylibso/modsurfer-validate-action

Run `modsurfer validate` in a GitHub Action. Modsurfer helps to debug and observe WebAssembly modules and components.

action binary-scan ci linter security wasm webassembly

Last synced: 24 Aug 2025

https://github.com/bl4ck44/hashbox

Herramienta que sirve para saber si un programa es malicioso a partir del hash y comparรกndola con la lista de hashes mรกs peligrosos.

cracking hacking hash md5 md5-hash python python3 security security-tools sha256

Last synced: 12 Jul 2025

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/putyourlightson/craft-snaptcha

Automatically validates forms and prevents spam bots for Craft CMS.

craft-plugin craftcms forms security spam-protection validation

Last synced: 31 Jul 2025

https://github.com/vm32/firewall-rule-management-script

Bash script aids in the effective management of firewall rules

blue-team cyber-security firewall firewall-rules security

Last synced: 20 Jul 2025

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/saveourtool/osv4k

Kotlin and Java serialization schema for OSV

java kotlin osv security

Last synced: 23 Apr 2025

https://github.com/dev-hwang/flutter_security_checker

This plugin provides the ability to verify rooting and integrity on Android and iOS platforms.

android flutter ios root-checker security

Last synced: 21 Mar 2025

https://github.com/rafigk2v9c/APKdevastate

Advanced analysis software for APK payloads created by RATs.

aapt android apk apktool remoteaccesstrojan reverse-engineering security

Last synced: 25 Dec 2025

https://github.com/turbot/steampipe-mod-github-compliance

Run individual controls or full compliance benchmarks for across all of your GitHub resources using Powerpipe and Steampipe.

cis cis-benchmark compliance github hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/sondosaabed/intro-to-information-security

Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.

access-control buffer-overflow-attack course database-security firewalls information-security intrusion-detection-system malicious-software modern-malware os-security security udacity

Last synced: 20 Feb 2026

https://github.com/serverfarmer/compliance

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

compliance gdpr hipaa linux pci-dss security server-management

Last synced: 12 Jul 2025

https://github.com/mini-ware/file-locker

Keep your files obfuscated by locking them with XOR encryption

cli encryption hacking linux password security shell xor

Last synced: 03 Oct 2025

https://github.com/brainpolo/llmshield

Shields your confidential data in LLM prompts from third party AI providers, allowing you to send with confidence without compromising security and privacy.

ai llms privacy security

Last synced: 05 Mar 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/vapor-ware/sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

envelope kms sctl secrets security

Last synced: 14 Apr 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/hqarroum/arp-spoofer

๐Ÿ‘พ A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/clay-good/enklayve-ai

Enklayve is a free, local, private, and secure personal AI desktop application, built with Tauri and llama.cpp/Qwen, that provides robust document intelligence capabilities using fast embeddings.

document-intelligence llm local-ai personal-ai privacy rust security tauri

Last synced: 30 May 2026

https://github.com/jmhobbs/wordpress-scanner

CLI to scan plugin directories, and an HTTP server to scan zips from Wordpress.org

experimental security wordpress

Last synced: 14 Apr 2025

https://github.com/cokebeer/go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

cors go jsonp security sqli ssrf ssti xss xxe

Last synced: 26 Jul 2025

https://github.com/chaitin/veinmind-action

ๅŸบไบŽ veinmind-tools ๅฎž็Žฐ็š„ Github Action

action cloud container image security

Last synced: 07 Oct 2025

https://github.com/ladjs/mongoose-common-plugin

Common plugin for Mongoose with standard schema fields and localization support

common created helper i10n i18n id locale locales localization localized locals mongoose plugin plugins security timestamp updated virtual virtuals

Last synced: 15 Apr 2025

https://github.com/ariary/hack-weak-strcmp-code

A description of a basic hack over a C files using strcmp function

hack reverse-engineering security

Last synced: 02 Jul 2025

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025

https://github.com/rehypejs/camomile

Node.js HTTP image proxy to route images through SSL

camo camomile image node proxy rehype security ssl unified

Last synced: 01 Jul 2025

https://github.com/turbot/steampipe-mod-alicloud-compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS across all of your Alibaba Cloud accounts using Powerpipe and Steampipe.

alibaba-cloud alibabacloud alicloud cis cis-benchmark compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/rix4uni/unew

A tool combined of 2 commands features in 1 sort and tee for adding new lines to files, skipping duplicates

bug-bounty bugbounty bugbountytips duplicates hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 15 Apr 2025

https://github.com/pforemski/eip-generator

A new IPv6 address generator for Entropy/IP

entropy ip6 security

Last synced: 14 Jan 2026

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/ichhabrecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 09 Mar 2026

https://github.com/zainabed/web-security-soteria

Single page application security (Typescript authorization library)

authorization security typescript

Last synced: 24 Jul 2025

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025

https://github.com/sjinks/roundcube_recaptcha

Adds reCAPTCHA to the RoundCube login form

captcha login recaptcha roundcube-plugin security

Last synced: 07 Mar 2026

https://github.com/qbrusa/Windows-Security-Event-ID-Helper

This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).

audit eventid events logging security windows

Last synced: 08 May 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/ekaone/javascript-awesome-packages

๐Ÿ˜Ž ๐Ÿ“ƒ Javascript Awesome Packages List, start from ๐Ÿšฆ State Management, ๐Ÿงช Testing, ๐Ÿ›  Utilities, ๐ŸŒˆ Design System, ๐Ÿ“ˆ Chart, ๐Ÿ–ฅ Server, ๐Ÿ” Security, ๐Ÿ—„ ORM and Query Builder

database orm security server state-management testing

Last synced: 04 Mar 2025

https://github.com/rhargreaves/knock-knock

Port knocking implementation in eBPF

ebpf security

Last synced: 29 Aug 2025

https://github.com/adrien2p/accumulator

:rocket: Send a load of requests with nodejs using cluster and with/without Tor for anonymisation :see_no_evil:

ddos ddos-attacks ddos-tool load-testing nodejs onion security tor

Last synced: 08 May 2025

https://github.com/aenondynamics/x509-tool

:wrench: Single-File-Utility to create X509 Certificates/PKI Structure for your OpenVPN Server or any TLS based communication.

authentication certificate cli communication openssl openvpn pki-structure security ssl-certificates tls verify-certificates webserver x509

Last synced: 19 Jun 2025

https://github.com/cloudposse/terraform-aws-global-accelerator

Terraform module to configure AWS Global Accelerator

compliance security terraform

Last synced: 29 Apr 2025

https://github.com/dotanuki-labs/android-oss-cves-research

An analysis on open-source Android apps intended to learn if they are harmed by vulnerable dependencies ๐Ÿ”’

cli gradle python security supply-chain-analytics

Last synced: 12 Apr 2025

https://github.com/techtoboggan/claude-desktop-hardened-linux

Security-focused Linux packaging of Claude Desktop with bubblewrap sandboxing, Wayland support, and Cowork (Local Agent Mode)

bubblewrap claude claude-desktop electron linux sandbox security wayland

Last synced: 11 Jun 2026

https://github.com/dhhruv/fleck-pro

Prototype of Data Hiding Software for your personal files in your Laptop/PC. (Windows OS)

batch batch-script batchfile cli data data-hiding fleck-pro framework hacktoberfest hacktoberfest2021 security shell software terminal windows

Last synced: 03 May 2025

https://github.com/graniet/gofuzz

A Request fuzzer written in Go

api fuzzer fuzzing hacking rest security

Last synced: 11 Apr 2025

https://github.com/dnszlsk/muad-dib

Real-time npm/PyPI supply-chain threat detection. Production sensor with gVisor sandbox, behavioral analysis, and 200+ heuristic rules.

ast dependency-scanner malware mitre-attack npm pypi python sarif scanner security shai-hulud shai-hulud2 supply-chain supply-chain-security typosquatting

Last synced: 25 May 2026

https://github.com/ralish/keepass

Source code mirror of KeePass v2.x releases

keepass mirror password-manager security

Last synced: 10 Jun 2025

https://github.com/teamdefronix/defroxpot

DefroxPot is a honeypot project designed to detect, monitor, and analyze malicious activity in a controlled environment. This project aims to provide cybersecurity enthusiasts and professionals with a powerful tool to study attack patterns, improve defensive strategies, and enhance security awareness.

cybersecurity defronix defroxpot django flask hacker hacking hacking-tool honeypot python python-hacking-tools python3 security

Last synced: 05 May 2025