Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2025-05-10 00:26:25 UTC
- JSON Representation
https://github.com/JFreegman/toxic
A Tox-based instant messaging and video chat client.
audiochat decentralization decentralized-applications dht dht-network filesharing instant-messaging instant-messaging-client ncurses p2p privacy privacy-tools security securitytools tox tox-client tui videochat
Last synced: 18 Nov 2024
https://github.com/sorah/envchain
Environment variables meet macOS Keychain and gnome-keyring <3
credentials gnome-keyring keychain secret security
Last synced: 07 Apr 2025
https://github.com/markets/invisible_captcha
🍯 Unobtrusive and flexible spam protection for Rails apps
anti-spam captcha honeypot honeypot-field rails security spam-detection
Last synced: 23 Apr 2025
https://github.com/dkopecek/usbguard
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
blacklist c-plus-plus hacktoberfest linux rule-language security security-hardening usb usb-devices whitelist
Last synced: 26 Apr 2025
https://github.com/vincentcox/bypass-firewalls-by-DNS-history
Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.
bugbounty bypassing dns-record network-security security security-tools
Last synced: 08 Apr 2025
https://github.com/Viralmaniar/Passhunt
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
cybersecurity default-credentials default-password password penetration-testing pentest-tool security security-testing
Last synced: 27 Nov 2024
https://github.com/dwisiswant0/go-dork
The fastest dork scanner written in Go.
bing-dorks bugbounty bugbounty-tool crawler dork-scanner dorking golang google-dorking google-dorks infosec security shodan-dorks vulnerability-scanners
Last synced: 08 Apr 2025
https://github.com/newaetech/chipwhisperer
ChipWhisperer - the complete open-source toolchain for side-channel power analysis and glitching attacks
chipwhisperer security side-channel
Last synced: 10 Apr 2025
https://github.com/damienbod/angular-auth-oidc-client
npm package for OpenID Connect, OAuth Code Flow with PKCE, Refresh tokens, Implicit Flow
angular auth authentication authn identity implicit-flow npm oauth2 oidc openid openidconnect security
Last synced: 23 Apr 2025
https://github.com/genuinetools/bane
Custom & better AppArmor profile generator for Docker containers.
apparmor apparmor-profile cli containers docker linux opencontainers security
Last synced: 14 Apr 2025
https://github.com/anti-ddos/anti-ddos
🔒 Anti DDOS | Bash Script Project 🔒
anti-ddos anti-ddos-protection bash bash-script configuration ddos-attacks linux linux-app linux-desktop linux-distribution linux-security linux-security-module linux-server security security-tools shell shell-script shell-scripts shellscript tool
Last synced: 06 Apr 2025
https://github.com/beerisgood/windows11_hardening
a collection about Windows 11
defender-application-guard defender-credential-guard hardening microsoft security security-hardening windows windows-defender windows10 windows11
Last synced: 13 Apr 2025
https://github.com/anti-ddos/Anti-DDOS
🔒 Anti DDOS | Bash Script Project 🔒
anti-ddos anti-ddos-protection bash bash-script configuration ddos-attacks linux linux-app linux-desktop linux-distribution linux-security linux-security-module linux-server security security-tools shell shell-script shell-scripts shellscript tool
Last synced: 02 Apr 2025
https://github.com/httpvoid/writeups
appsec security security-vulnerability
Last synced: 27 Mar 2025
https://github.com/blst-security/cherrybomb
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
api api-security best-practices blst business-logic cli cyber cybersecurity firecracker http open-source openapi openapi3 security security-tools web-sec-scanner web-security websecurity
Last synced: 10 Apr 2025
https://github.com/aserto-dev/topaz
Cloud-native authorization for modern applications and APIs
abac access-control api authorization cloud-native golang opa rbac rebac security zanzibar
Last synced: 11 Apr 2025
https://github.com/fabpot/local-php-security-checker
PHP security vulnerabilities checker
composer packagist php security
Last synced: 24 Jan 2025
https://github.com/hausec/powerzure
PowerShell framework to assess Azure security
azure infosec powershell security windows
Last synced: 06 Apr 2025
https://github.com/janusec/janusec
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。
acme application-gateway application-security cookie-banner cookie-compliance gateway golang gslb janusec janusec-application-gateway k8s-ingress-controller load-balance port-forwarding security sql-injection waf web-application-firewall web-application-security web-ssh
Last synced: 13 Apr 2025
https://github.com/nixawk/labs
Vulnerability Labs for security analysis
cve exploit security vulnerability
Last synced: 09 Apr 2025
https://github.com/mehrdadrad/radvpn
Decentralized VPN
cbc crypto decentralized gcm golang security vpn
Last synced: 12 Apr 2025
https://github.com/Janusec/janusec
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。
acme application-gateway application-security cookie-banner cookie-compliance gateway golang gslb janusec janusec-application-gateway k8s-ingress-controller load-balance port-forwarding security sql-injection waf web-application-firewall web-application-security web-ssh
Last synced: 30 Mar 2025
https://github.com/Janusec/Application-Gateway
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。
acme application-gateway application-security cookie-banner cookie-compliance gateway golang gslb janusec janusec-application-gateway k8s-ingress-controller load-balance port-forwarding security sql-injection waf web-application-firewall web-application-security web-ssh
Last synced: 05 Apr 2025
https://github.com/nozaq/terraform-aws-secure-baseline
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
aws aws-auditing cis-benchmark devops hardening security security-hardening security-tools terraform terraform-module terraform-modules
Last synced: 11 Apr 2025
https://github.com/blacklanternsecurity/trevorspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
365 autodiscover email exchange hacking microsoft oauth office password passwords proxy python security socks spray spraying trevor
Last synced: 29 Apr 2025
https://github.com/hectorm/otpauth
One Time Password (HOTP/TOTP) library for Node.js, Deno, Bun and browsers.
auth authenticator browser bun deno google-authenticator hotp javascript node node-js nodejs otp otpauth security totp two-factor two-factor-authentication two-step two-step-authentication
Last synced: 24 Apr 2025
https://github.com/snovvcrash/usbrip
Tracking history of USB events on GNU/Linux
forensics security usb-devices usb-events usb-history
Last synced: 18 Jan 2025
https://github.com/scito/extract_otp_secrets
Extract one time password (OTP) secrets from QR codes exported by two-factor authentication (2FA) apps such as "Google Authenticator". The exported QR codes from authentication apps can be captured by camera, read from images, or read from text files. The secrets can be exported to JSON or CSV, or printed as QR codes to console.
2fa csv google-authenticator json mfa otp otpauth proto3 protobuf python qr-codes qrcode recovery security security-tools standwithukraine tfa totp two-factor two-factor-authentication
Last synced: 13 Apr 2025
https://github.com/eliasgranderubio/dagda
a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
detecting-anomalous-activities docker malware-detection security static-analysis vulnerabilities
Last synced: 08 Apr 2025
https://github.com/stackrox/stackrox
The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.
containers hacktoberfest k8s kubernetes security
Last synced: 11 Apr 2025
https://github.com/delight-im/php-auth
Authentication for PHP. Simple, lightweight and secure.
auth authentication authorization login php registration security
Last synced: 13 Apr 2025
https://github.com/nikitastupin/clairvoyance
Obtain GraphQL API schema even if the introspection is disabled
bug-bounty graphql penetration-testing security
Last synced: 11 Apr 2025
https://github.com/techjacker/repo-security-scanner
CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
golang security security-audit
Last synced: 09 Apr 2025
https://github.com/SecurityFTW/cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
aws-audit aws-security azure azure-audit azure-security cloud-security gcp gcp-audit-report security security-audit security-tools
Last synced: 08 Apr 2025
https://github.com/securityftw/cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
aws-audit aws-security azure azure-audit azure-security cloud-security gcp gcp-audit-report security security-audit security-tools
Last synced: 08 Apr 2025
https://github.com/google/fuzzbench
FuzzBench - Fuzzer benchmarking as a service.
benchmark-framework benchmarking evaluation fuzzing security
Last synced: 11 Apr 2025
https://github.com/ZupIT/horusec
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities
Last synced: 01 Apr 2025
https://github.com/zupit/horusec
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities
Last synced: 11 Apr 2025
https://github.com/usbguard/usbguard
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
blacklist c-plus-plus hacktoberfest linux rule-language security security-hardening usb usb-devices whitelist
Last synced: 08 Apr 2025
https://google.github.io/fuzzbench/
FuzzBench - Fuzzer benchmarking as a service.
benchmark-framework benchmarking evaluation fuzzing security
Last synced: 01 Apr 2025
https://github.com/nette/latte
☕ Latte: the safest & truly intuitive templates for PHP. Engine for those who want the most secure PHP sites.
content-aware html latte nette nette-framework php safety security security-hole template-engine xss
Last synced: 08 Apr 2025
https://github.com/conardli/conardli.github.io
ConardLi blogs
blog javascript react security
Last synced: 08 Apr 2025
https://github.com/ConardLi/ConardLi.github.io
ConardLi blogs
blog javascript react security
Last synced: 28 Mar 2025
https://github.com/netflix/repokid
AWS Least Privilege for Distributed, High-Velocity Deployment
Last synced: 14 Apr 2025
https://github.com/deepfence/FlowMeter
⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐
awesome data-science data-science-projects forensics-tools hacktoberfest infosectools machine-learning machine-learning-projects machinelearning machinelearningproject network-analysis network-security packet-analyser pcap security security-tools tcpdump-like
Last synced: 30 Mar 2025
https://github.com/jxy-s/herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
antivirus antivirus-evasion exploit exploit-development exploit-framework exploitation exploits process-doppelganging process-herpaderping process-hollowing process-migration security security-vulnerability vulnerability windows windows-10 windows-7 windows-defender
Last synced: 09 Apr 2025
https://github.com/adysec/nuclei_poc
Nuclei POC,每日更新 | 自动整合全网Nuclei的漏洞POC,实时同步更新最新POC,保存已被删除的POC。通过批量克隆Github项目,获取Nuclei POC,并将POC按类别分类存放,使用Github Action实现(已有19w+POC,已校验有效性并去重)
daily exploit exploits fingerprint hack-tools hacker hacking nuclei nuclei-templates poc scanner security security-scanner
Last synced: 12 Apr 2025
https://github.com/ivanilves/xiringuito
SSH-based "VPN for poors"
access aws bastion-host network security ssh vpn
Last synced: 12 Apr 2025
https://github.com/al0ne/suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
ids security signatures suricata suricata-rule
Last synced: 24 Mar 2025
https://github.com/deepfence/flowmeter
⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐
awesome data-science data-science-projects forensics-tools hacktoberfest infosectools machine-learning machine-learning-projects machinelearning machinelearningproject network-analysis network-security packet-analyser pcap security security-tools tcpdump-like
Last synced: 18 Jan 2025
https://github.com/alichtman/stronghold
Easily configure macOS security settings from the terminal.
command-line command-line-tool hardening macos macos-setup osx security security-hardening
Last synced: 08 Apr 2025
https://github.com/iamcryptoki/snowden-archive
💥 A collection of all documents leaked by former NSA contractor and whistleblower Edward Snowden.
edward-snowden nsa security sidtoday snowden snowden-archive surveillance whistleblowing
Last synced: 25 Mar 2025
https://github.com/uber-common/metta
An information security preparedness tool to do adversarial simulation.
adversarial celery infosec network networking python redis security simulation uber vagrant virtualbox yaml
Last synced: 12 Apr 2025
https://github.com/robthree/twofactorauth
PHP library for Two Factor Authentication (TFA / 2FA)
multi-factor php qrcode security totp two-factor twofactorauth
Last synced: 23 Apr 2025
https://github.com/masatokinugawa/filterbypass
Browser's XSS Filter Bypass Cheat Sheet
cheatsheet pentest security xss
Last synced: 23 Mar 2025
https://github.com/Netflix/repokid
AWS Least Privilege for Distributed, High-Velocity Deployment
Last synced: 13 Mar 2025
https://github.com/Netflix/Repokid
AWS Least Privilege for Distributed, High-Velocity Deployment
Last synced: 02 Apr 2025
https://github.com/nascentxyz/simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contract development
crypto security security-tools smart-contracts solidity
Last synced: 08 Apr 2025
https://github.com/p3gleg/whaler
Program to reverse Docker images into Dockerfiles
docker-image docker-security dockerfile passwords reverse-engineering secrets security security-tools
Last synced: 11 Apr 2025
https://github.com/beerisgood/Windows11_Hardening
a collection about Windows 11
defender-application-guard defender-credential-guard hardening microsoft security security-hardening windows windows-defender windows10 windows11
Last synced: 19 Nov 2024
https://github.com/P3GLEG/Whaler
Program to reverse Docker images into Dockerfiles
docker-image docker-security dockerfile passwords reverse-engineering secrets security security-tools
Last synced: 15 Mar 2025
https://github.com/brainfuckSec/kalitorify
Transparent proxy through Tor for Kali Linux OS
bash-script iptables kali-linux kalitorify security tor tor-proxy transparent-proxy
Last synced: 09 May 2025
https://github.com/athena-os/athena
Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!
archlinux cybersecurity hacking learning linux os payload pentesting security security-tools
Last synced: 13 Apr 2025
https://github.com/seashell/drago
☁️ Securely connect anything with WireGuard® and manage all your networks from a single place.
api client-server cloud configuration edge-computing golang iot linux mesh-networks networking rest-api security tunneling tuntap ui vpn wg-quick wireguard
Last synced: 12 Apr 2025
https://github.com/brainfucksec/kalitorify
Transparent proxy through Tor for Kali Linux OS
bash-script iptables kali-linux kalitorify security tor tor-proxy transparent-proxy
Last synced: 08 Apr 2025
https://github.com/kolide/fleet
A flexible control server for osquery fleets
hacktoberfest host-instrumentation infosec macadmin osquery security
Last synced: 18 Jan 2025
https://github.com/nccgroup/featherduster
An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction
cryptanalysis crypto cryptography encryption exploit exploitation exploitation-framework exploits python security
Last synced: 12 Apr 2025
https://github.com/cryptocat/cryptocat
Secure chat software for your computer.
chat cryptocat cryptography messaging secure security
Last synced: 12 Apr 2025
https://github.com/gorilla/csrf
Package gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services 🔒
csrf csrf-protection csrf-tokens go golang gorilla gorilla-web-toolkit middleware security xsrf
Last synced: 23 Apr 2025
https://github.com/hausec/PowerZure
PowerShell framework to assess Azure security
azure infosec powershell security windows
Last synced: 15 Apr 2025
https://github.com/lmammino/jwt-cracker
Simple HS256, HS384 & HS512 JWT token brute force cracker.
alphabet brute-force brute-force-attacks bruteforce command command-line cracker javascript jwt jwt-cracker nodejs secrets security
Last synced: 11 Apr 2025
https://github.com/blacklanternsecurity/TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
365 autodiscover email exchange hacking microsoft oauth office password passwords proxy python security socks spray spraying trevor
Last synced: 18 Jan 2025
https://github.com/Athena-OS/athena
Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!
archlinux cybersecurity hacking learning linux os payload pentesting security security-tools
Last synced: 14 Mar 2025
https://github.com/delight-im/PHP-Auth
Authentication for PHP. Simple, lightweight and secure.
auth authentication authorization login php registration security
Last synced: 14 Mar 2025
https://github.com/decalage2/vipermonkey
A VBA parser and emulation engine to analyze malicious macros.
emulation macros malware-analysis parser pyparsing python security vba
Last synced: 08 Apr 2025
https://github.com/cyberark/kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
agent c2 command-and-control containers golang http2 kubernetes penetration-testing-framework penetration-testing-tools post-exploitation red-teams redteam-tools security security-tools
Last synced: 18 Jan 2025
https://github.com/nix-community/lanzaboote
Secure Boot for NixOS [maintainers=@blitz @raitobezarius @nikstur]
efi nix nix-community-buildbot nixos nixpkgs rust security uefi
Last synced: 10 Apr 2025
https://github.com/USBGuard/usbguard
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
blacklist c-plus-plus hacktoberfest linux rule-language security security-hardening usb usb-devices whitelist
Last synced: 15 Mar 2025
https://github.com/XmirrorSecurity/OpenSCA-cli
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
cyclonedx devsecops license-compliance sbom sca security software-bill-of-materials software-composition-analysis software-supply-chain software-supply-chain-security spdx static-analysis swid vulnerabilities
Last synced: 26 Apr 2025
https://github.com/bareos/bareos
Bareos is a cross-network Open Source backup solution (licensed under AGPLv3) which preserves, archives, and recovers data from all major operating systems.
archiving backup backup-solution backup-utility bareos ceph compression cross-platform disaster-recovery encrypt gluster mysql postgresql python recover restore s3 security vmware
Last synced: 29 Apr 2025
https://github.com/wyatu/perun
Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架
pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners
Last synced: 02 Apr 2025
https://github.com/xmirrorsecurity/opensca-cli
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
cyclonedx devsecops license-compliance sbom sca security software-bill-of-materials software-composition-analysis software-supply-chain software-supply-chain-security spdx static-analysis swid vulnerabilities
Last synced: 13 Apr 2025
https://github.com/WyAtu/Perun
Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架
pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners
Last synced: 19 Nov 2024
https://github.com/decalage2/ViperMonkey
A VBA parser and emulation engine to analyze malicious macros.
emulation macros malware-analysis parser pyparsing python security vba
Last synced: 29 Dec 2024
https://github.com/virb3/magisk-frida
🔐 Run frida-server on boot with Magisk, always up-to-date
android exploitation frida magisk reverse-engineering root security
Last synced: 13 Apr 2025
https://github.com/fuatakgun/eufy_security
Home Assistant integration to manage Eufy Security devices as cameras, home base stations, doorbells, motion and contact sensors.
camera eufy eufycam eufysecurity home-assistant homeassistant homeassistant-integration rtsp security
Last synced: 13 Apr 2025
https://github.com/utkusen/wholeaked
a file-sharing tool that allows you to find the responsible person in case of a leakage
file-sharing osint privacy privacy-tools security
Last synced: 12 Apr 2025
https://github.com/MegaManSec/SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
bash cybersecurity exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation redteam scanner security security-tools shell ssh ssh-hacking vulnerability-scanner worm
Last synced: 11 Apr 2025
https://github.com/koutto/jok3r
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
automation automation-framework docker exploiting-vulnerabilities framework hacking hacking-tool network pentest scan-tool scanner security security-audit security-tools toolbox toolbox-management vulnerability-scanners web-hacking
Last synced: 08 Apr 2025
https://github.com/wireghoul/htshells
Self contained htaccess shells and attacks
apache exploit htaccess penetration-testing polyglot security webshell
Last synced: 12 Apr 2025
https://github.com/burghardt/easy-wg-quick
Creates Wireguard configuration for hub and peers with ease
config configuration encryption generator ipv6 privacy qrcode security self-hosted vpn vpn-server wg-quick wireguard
Last synced: 08 Apr 2025
