Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/servicenow/doomarena
DoomArena is a Framework for Testing AI Agents Against Evolving Security Threats
ai ai-safety attack browsergym defense llm machine machine-learning red-teaming security taubench web-agents
Last synced: 09 Oct 2025
https://github.com/deislabs/image-layer-provenance
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
container container-image containerization containers cve docker oci oci-image oras provenance security security-audit security-tools slsa slsaprovenance vulnerabilities vulnerability vulnerability-assessment vulnerability-management
Last synced: 06 Feb 2026
https://github.com/adorsys/datasafe
Datasafe - flexible and secure data storage and document sharing using cryptographic message syntax for data encryption
cloud-storage cryptographic-message-system cryptography data-encryption document-storage encrypted-store file-sharing graal-native java library privacy s3-encryption security vault
Last synced: 26 Oct 2025
https://github.com/guard0-ai/g0
The control layer for AI agents. 1,200+ rules, 12 domains, 10 frameworks, 4,000+ adversarial payloads. Discover. Assess. Test. Monitor. Comply.
ai ai-agents governance monitoring security
Last synced: 07 Apr 2026
https://github.com/ariary/TrojanSourceFinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 11 Jul 2025
https://github.com/jonathancross/jc-docs
📝 Tools & Documentation from Jonathan Cross
bitcoin bitcoin-mobile-privacy git gpg mac-osx pgp security tor yubikey-neo
Last synced: 20 Jun 2025
https://github.com/mageplaza/magento-2-security
Magento 2 Security extension FREE. Security extension gives store owners the ability to detect the IP addresses that are intentionally attacking their store at any given time. Therefore, they have timely measures to prevent this issue such as blocking those IP addresses or sending warning emails to store owners.
blacklist magento magento-2-extension magento-2-security magento2 magento2-extension magento2-extension-free magento2-module magento2-module-bootstrap magento2-module-free mageplaza-security security whitelist
Last synced: 04 Apr 2025
https://github.com/nickdiego/docker-ollvm
Easily build and package Obfuscator-LLVM into Android NDK.
android docker ndk o-llvm obfuscator obfuscator-llvm security
Last synced: 02 Aug 2025
https://github.com/ariary/trojansourcefinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 26 Apr 2025
https://github.com/dwisiswant0/look4jar
Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
golang log4j log4j2 rce security vulnerability
Last synced: 24 Mar 2025
https://github.com/nullhypothesis/sybilhunter
Hunting for Sybils and anomalies in archived Tor network data.
go security sybil tor tor-network
Last synced: 08 Mar 2026
https://github.com/frodox/execute-machine-code-from-memory
Proof of concept example: executing machine code from different memory areas: stack, heap, shared memory
c heap poc security security-testing shm stack
Last synced: 23 Aug 2025
https://github.com/kongbytes/joi-security
Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) 🔥
audits hapi joi js security sql-injection typescript validation web-security xss
Last synced: 25 Dec 2025
https://github.com/kairoaraujo/goca
Golang Certificate Authority (CA) package
certficate certificate certificate-authorities certificate-authority certificate-generation certs go go-api golang hacktoberfest pki security ssl-certificates
Last synced: 17 Mar 2025
https://github.com/lmammino/terraform-openvpn
A sample terraform setup for OpenVPN using Let's Encrypt and Certbot to generate certificates
automation example infrastructure network openvpn security terraform tutorial vpn
Last synced: 30 Apr 2025
https://github.com/RootUp/SmuggleShield
Basic protection against HTML smuggling attempts.
blueteam htmlsmuggling purpleteam redteam security
Last synced: 12 Jul 2025
https://github.com/mojtabatajik/sandbox-detection
Contains some tricks to detect Sandboxes and gradually completed
cpp sandbox sandbox-detection security
Last synced: 18 Mar 2025
https://github.com/duaraghav8/solium-plugin-security
The Official Security Plugin for Ethlint (formerly Solium)
ethereum linter security smart-contracts solidity solium soliumplugin
Last synced: 07 May 2025
https://github.com/alwalxed/juicyurls
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
automation bugbounty cli cybersecurity detection exploit golang malware open-source osint penetration-testing projectdiscovery recon reconnaissance scanner scanning security urlscan vulnerabilities
Last synced: 12 Apr 2025
https://github.com/jeffhacks/smbscan
SMBScan is a tool to enumerate file shares on an internal network.
pentest redteam security security-audit security-tools smb
Last synced: 13 Apr 2025
https://github.com/Saluki/joi-security
Detect security flaws in Joi validation schemas (XSS, SQL injection, ...) 🔥
audits hapi joi js security sql-injection typescript validation web-security xss
Last synced: 05 Mar 2025
https://github.com/federicoceratto/nim-libsodium
Nim wrapper for the libsodium library
cryptography library libsodium nacl nim nim-lang nim-language security wrapper
Last synced: 12 Apr 2025
https://github.com/timokoessler/easy-waf
An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.
javascript mit-license nodejs security typescript waf web-application-firewall web-application-security
Last synced: 07 Apr 2025
https://github.com/banzaicloud/anchore-image-validator
Anchore Image Validator lets you automatically detect or block security issues just before a Kubernetes pod starts.
cloud-native golang kubernetes security
Last synced: 13 Apr 2025
https://github.com/microsoft/AuthJanitor
Manage the lifecycle of application tokens, keys, and secrets in Azure
application-lifecycle-management application-secret application-security azure azure-functions blazor key-vault secrets secrets-management security
Last synced: 18 Apr 2025
https://github.com/tg12/phantomstars
Automated detection and tracking of fake engagement on GitHub — daily CI, zero infrastructure
astroturfing automation bot-detection fake-engagement fake-stars github github-actions github-trending infosec osint python security spam-detection sybil-detection threat-intelligence
Last synced: 30 May 2026
https://github.com/armourbird/csf
ArmourBird CSF - Container Security Framework
bash blackhat django django-framework django-rest-framework docker docker-security python security
Last synced: 26 Oct 2025
https://github.com/jonalvarezz/platzi-plantpedia
Proyectos de la saga de Next.js de Platzi
authentication environment-variables i18n javascript locales next-auth nextjs platzi preview-mode security
Last synced: 01 Apr 2026
https://github.com/planetis-m/libfuzzer
Thin interface for libFuzzer, an in-process, coverage-guided, evolutionary fuzzing engine.
fuzzing hacking security unit-testing
Last synced: 06 Jul 2025
https://github.com/boitatech/cyber-security-roadmap
O repositório Cyber Security Roadmap é uma iniciativa para ajudar a comunidade de segurança da informação a se orientar sobre o que estudar.
boitatech cyber-security cybersecurity infosec roadmad security
Last synced: 06 Oct 2025
https://github.com/bhvbhushan/vibecop
AI code quality toolkit — deterministic linter for the AI coding era. 22 detectors, GitHub Action PR gate, zero LLM required.
ai ai-code-quality ast ast-grep ci-cd code-quality code-review code-smell developer-tools eslint-alternative github-action javascript linter pull-request python security static-analysis tree-sitter typescript vibe-coding
Last synced: 07 Apr 2026
https://github.com/oke-py/npm-audit-action
GitHub Action to run `npm audit`
github-action npm security vulnerability
Last synced: 28 Jan 2026
https://github.com/deliciousinsights/mongoose-pii
A Mongoose plugin that lets you transparently cipher stored PII and use securely-hashed passwords
bcrypt mongodb mongoose mongoose-plugin password passwords pii pii-ciphering security
Last synced: 27 Oct 2025
https://github.com/itemir/thundersec
ThunderSec is a security plugin for Mozilla Thunderbird that creates several pieces of additional security functionality, including DNSBL, RBL, SURBL, DKIM and SPF.
dkim dnsbl security spf surbl thunderbird thunderbird-extension
Last synced: 05 Mar 2026
https://github.com/rix4uni/xssrecon
XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characters are handled (allowed, blocked, or converted).
bug-bounty bugbounty bugbountytips hacking infosec masshuntxss osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools vulnerability xss xss-automation xssrecon
Last synced: 04 Mar 2026
https://github.com/marmelab/ra-in-memory-jwt
Manage React-admin authentication with jwt in memory, not in local storage
Last synced: 24 Oct 2025
https://github.com/celenityy/Phoenix
Phoenix is a suite of configurations & advanced modifications for Mozilla Firefox, designed to put the user first - with a focus on privacy, security, freedom, & usability.
anti-tracking browser firefox firefox-based firefox-browser gecko hardened hardening mozilla mozilla-firefox privacy private secure security settings speed tracking user-js userjs web-browser
Last synced: 19 Mar 2026
https://github.com/abhinandan-khurana/my-crtp-notes
This Repository contains my CRTP cum Red Teaming Active Directory attack and Defence preparation notes.
active-directory active-directory-exploitation active-directory-security activedirectory activedirectorysecurity attack-defense crtp gitbook notes pentesting powershell redteam redteam-infrastructure redteaming security
Last synced: 03 Nov 2025
https://github.com/oslabs-beta/guardenoql
Simple and customizable security middleware for GraphQL servers in Deno.
deno graphql open-source opine security
Last synced: 30 Apr 2025
https://github.com/dopplerhq/cli-action
GitHub Action for installing the Doppler CLI
doppler-cli environment-variables secret-management secrets secrets-manager security
Last synced: 15 Jul 2025
https://github.com/ciehanski/onionbox
Send and receive files securely through Tor.
file- file-sharing go golang journalism onion-routing onion-service privacy security tor tor-network
Last synced: 03 Feb 2026
https://github.com/jolle/expired-tweets
🐦 Find tweets that contain expired or claimable URLs from your Twitter archive.
cli electron expired-tweets gui nodejs security takeover tweets twitter twitter-archive
Last synced: 05 Mar 2026
https://github.com/gpestana/notes
notes, ideas and whatnot
brain-dump decentralized dev-diary metadata notes p2p security til
Last synced: 07 Jan 2026
https://github.com/fivexl/terraform-aws-sso-elevator
Slack bot to temporary assign AWS SSO Permission set to a user
aws aws-lambda iam-identity-center just-in-time-access python security slack sso terraform terraform-module
Last synced: 09 Apr 2025
https://github.com/ganehag/open-modbusgateway
Modbus over MQTT in a secure manner
Last synced: 17 Jan 2026
https://github.com/telekom-security/tpotmobile
🛜 T-Pot Mobile - The All In One Wireless Honeypot Solution 🍯
deception honeypot mobile raspberrypi security t-pot telekom
Last synced: 28 Oct 2025
https://github.com/theodo-group/awesome-security-automation
Awesome links to automate your cybersecurity checks
security security-audit security-automation security-tools
Last synced: 02 Feb 2026
https://github.com/SomeKirill/wordlist_generator
Unique wordlist generator of unique wordlists.
bugbounty bugbounty-tool information-gathering pentesting reconnaissance security wordlist
Last synced: 11 Jul 2025
https://github.com/echo-devim/litewaf
Lightweight In-App Web Application Firewall for PHP
attack-log attack-prevention php sanity-check security sqlinjection waf xss
Last synced: 06 Sep 2025
https://github.com/andifalk/oidc-workshop-spring-io-2019
Workshop at Spring I/O 2019 on "Securing Microservices with OpenID Connect and Spring Security 5.1"
jwt oauth2 oidc openid-connect security spring-boot spring-security
Last synced: 12 Apr 2025
https://github.com/mrgswift/laravel-encryptenv
Encrypt your .env (or custom config file) in Laravel
configuration configuration-files encrypt-files encryption environment-variables laravel security
Last synced: 13 Jan 2026
https://github.com/gui774ume/network-security-probe
A process level network security monitoring and enforcement project for Kubernetes, using eBPF
ebpf enforcement kubernetes linux network-security profile security
Last synced: 29 Jun 2025
https://github.com/konnected-io/noonlight-hass
HomeAssistant integration for Noonlight
alarm homeassistant homeassistant-components monitoring noonlight security
Last synced: 16 Jan 2026
https://github.com/lucor/fyne-opensnitch
An OpenSnitch UI in Go using Fyne
application-firewall firewall fyne go golang gui linux networking opensnitch security
Last synced: 22 Aug 2025
https://github.com/perry-mitchell/iocane
An odorless, tasteless NodeJS crypto library that dissolves instantly in liquid
crypto-js decryption encoding encryption hmac nodejs pbkdf2 security subtlecrypto web
Last synced: 14 Apr 2025
https://github.com/yiisoft/security
A set of classes to handle common security-related tasks
decryption encryption hacktoberfest masking password random security signature tampering token yii3
Last synced: 09 Apr 2025
https://github.com/callebtc/electronwall
A tiny firewall for LND that allows or denies channel openings and payment routings.
Last synced: 16 Dec 2025
https://github.com/squareboat/security-guidelines
Squareboat's best practices for building highly secure websites and apps.
Last synced: 04 Apr 2026
https://github.com/step-security/agent
Purpose-built security agent for hosted runners
Last synced: 02 Apr 2026
https://github.com/nirdiamant/moltbook-agent-guard
Real-time security for AI agents on Moltbook
ai-agents llm moltbook prompt-injection security
Last synced: 11 Feb 2026
https://github.com/covert-encryption/covert
An encryption format offering better security, performance and ease of use than PGP. File a bug if you found anything where we are worse than our competition, and we will fix it.
crypto cryptography encryption gpg purb security
Last synced: 27 Mar 2026
https://github.com/barseghyanartur/ska
Sign data using symmetric-key algorithm encryption. Validate signed data and identify possible validation errors. Uses sha-(1, 224, 256, 385 and 512)/hmac for signature encryption. Custom hash algorithms are allowed. Useful shortcut functions for signing (and validating) dictionaries and URLs.
data-encryption data-hash django django-rest-framework django-rest-framework-addon encryption password-less-authentication python security
Last synced: 16 Mar 2025
https://github.com/girste/mcp-cybersec-watchdog
🐕 Cybersecurity monitoring and analysis for Linux servers via MCP
devops linux mcp monitoring python security
Last synced: 30 Jan 2026
https://github.com/jacksongl/npm-vuln-poc
Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
cve javascript node-js npm proof-of-concept security vulnerabilities
Last synced: 21 Aug 2025
https://github.com/zitchcode/securehttpclient
Cross-platform HttpClientHandler with TLS1.2 and Certificate Pinning
android c-sharp certificate-pinning dotnet httpclient ios maui security tls xamarin
Last synced: 07 Mar 2026
https://github.com/hellokoding/hello-sso-jwt-auth
Single Sign On (SSO) Example with JSON Web Token (JWT), Spring Boot
authentication java jwt security spring-boot sso
Last synced: 15 Jun 2025
https://github.com/jackgu1988/dsploit-scripts
Scripts that could be injected in MITM attacks using dSploit
dsploit dsploit-scripts mitm security
Last synced: 09 Jul 2025
https://github.com/syss-research/slig
Siemens LOGO!8 PLC Password Hacking Proof-of-Concept-Tool
it-security logo8 nmap-scripts security security-vulnerability siemens-logo tool
Last synced: 10 Apr 2025
https://github.com/puremachinery/carapace
A secure, stable Rust alternative to openclaw/moltbot/clawdbot
ai-assistant anthropic chatbot discord-bot gemini llm llm-agent local-first ollama openai privacy security self-hosted signal slack-bot telegram-bot venice-ai vertex-ai wasm wasm-plugin
Last synced: 06 Apr 2026
https://github.com/kyverno/policy-reporter-ui
Policy Reporter UI
monitoring observability security
Last synced: 05 Jan 2026
https://github.com/benibela/nasty-files
Some files with nasty names
backup-files files lists security security-testing
Last synced: 08 Mar 2026
https://github.com/escape-technologies/api-threat-matrix
A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
api security threatmatrix threats
Last synced: 04 Aug 2025
https://github.com/brainfucksec/brainfucksec.github.io
My blog about Cybersecurity, Privacy and Systems :)
brainfucksec cyber-security github-pages jekyll-blog privacy security
Last synced: 22 Mar 2025
https://github.com/crowdsecurity/cs-wordpress-bouncer
CrowdSec is an open-source cyber security tool. This plugin blocks detected attackers or display them a captcha.
anti-hacking ban-hosts ban-management captcha captcha-generation captcha-generator captcha-image captcha-service crowdsec crowdsec-bouncer firewall hacker-protection ip-address ip-blocker ip-blocking ip-database ip-range-check ip-scanner security wordpress
Last synced: 12 Jan 2026
https://github.com/alecgn/crypthash-net
CryptHash.NET is a .NET multi-target library to encrypt/decrypt/hash/encode/decode strings and files, with an optional .NET Core multiplatform console utility.
aes argon2 authentication bcrypt c-sharp cbc cryptography csharp decode decryption dotnet dotnet-core dotnet-standard encode encryption gcm hash hmac password security
Last synced: 31 Jul 2025
https://github.com/oliverbebber/az-104-study-notes
Microsoft AZ-104: Azure Administrator Associate Study Notes
Last synced: 25 Sep 2025
https://github.com/forderud/runinsandbox
Launch Windows executables & COM servers in a sandboxed or elevated environment.
Last synced: 31 Oct 2025
https://github.com/contrast-security-oss/safelog4j
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
iast java log4j log4shell rasp security security-testing vulnerability vulnerability-scanner
Last synced: 11 Sep 2025
https://github.com/noraj/the-hacking-trove
The hacker technical cheat sheet
cheat-sheet cheatsheet cybersecurity documentation hacking infosec security
Last synced: 10 Feb 2026
https://github.com/akto-api-security/tests-library
Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
api-misconfigutation api-security-testing bola broken-authentication broken-authorization hackerone hacktoberfest hacktoberfest2023 owasp-top-10 security security-testing
Last synced: 12 Mar 2026
https://github.com/xward/phoenix_ddos
ddos protection for elixir phoenix project
Last synced: 21 Feb 2026
https://github.com/404notf0und/ai-for-security-testing
My AI security testing projects
ai deeplearning machine-learning security security-testing
Last synced: 12 Apr 2025
https://github.com/snyk/serverless-snyk
Serverless plugin for securing your dependencies with Snyk
security serverless snyk vulnerabilities
Last synced: 02 May 2025
https://github.com/johannschopplich/kirby-locked-pages
🔐 Password-protect pages, Panel blueprint included
kirby kirby-plugin password password-lock security
Last synced: 10 Jul 2025
https://github.com/ispras/rop-benchmark
ROP Benchmark is a tool to compare ROP compilers
benchmark payload return-oriented-programming rop rop-chain rop-compilers rop-gadgets security
Last synced: 10 Apr 2025
https://github.com/Contrast-Security-OSS/safelog4j
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
iast java log4j log4shell rasp security security-testing vulnerability vulnerability-scanner
Last synced: 11 Jul 2025
https://github.com/tophat-cloud/cumulus
Cumulus is web application weakness monitoring, works with just 3 code lines
javascript security vulnerability weakness weakness-reporting
Last synced: 11 Jul 2025
https://github.com/enlightn/laravel-security-checker
Scan your Laravel app dependencies for known security vulnerabilities.
laravel security vulnerability-scanner
Last synced: 26 Oct 2025
https://github.com/jonirinta-kahila/wpcracker
WordPress pentest tool
attack brute-force brute-force-attacks console-application csharp hacking-tool linux penetration-testing pentesting security user-enumeration windows wordpress wordpress-site
Last synced: 24 Oct 2025
https://github.com/kubearmor/kubearmor-client
KubeArmor cli tool aka kArmor :robot:
cli kubearmor kubernetes management security tool
Last synced: 04 Apr 2025