An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/yallie/jsonservices

Simple JSON-RPC service framework for C# and TypeScript

fleck json messages netmq rpc secure-remote-password security srp srp-6a typescript websockets zeromq

Last synced: 05 Oct 2025

https://github.com/securityfirst/Umbrella_ios

Open source Android, iOS and Web app for learning about and managing digital and physical security. From how to send a secure message to dealing with a kidnap. Umbrella has best practice guides in over 40 topics in multiple languages. Used daily by people working in high risk countries - journalists, activists, diplomats, business travelers etc.

infosec ios open-source safety security

Last synced: 03 May 2025

https://github.com/slippyex/data-guardian

Tiny, zero-dependencies, package which tries to mask sensitive data in arbitrary collections (map, set), errors, objects and strings.

auditing covering logging masking security sensitive-data sensitivity telemetry tracing

Last synced: 12 May 2025

https://github.com/webpwnized/gcp-audit

GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks

audit benchmark cloud cybersecurity google platform scripts security

Last synced: 03 May 2025

https://github.com/atrexus/ws-watcher

A PoC application that detects unauthorized external access to select memory regions.

cpp memory-management security windows x64

Last synced: 14 Apr 2025

https://github.com/oijkn/adguardhome-doh-dot

Official AdGuarHome docker with both DoH (DNS over HTTPS) and DoT (DNS over TLS) clients. Don't browse the Internet insecurely by sending your DNS requests in clear text !

adblocker adguard-home adguardhome cloudflare dns dns-over-https dns-over-tls docker docker-compose network privacy raspberry-pi security stubby unbound

Last synced: 12 May 2025

https://github.com/talsec/free-rasp-capacitor

Capacitor plugin for Android and iOS mobile devices. SDK providing app protection and threat monitoring. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jailbreak, Frida, emulators, bots, tampering and integrity issues, obfuscation, VPN usage, malware, and monitor device identification and fingerprint.

app-security capacitor capacitor-app-security capacitor-app-shielding capacitor-application-security capacitor-community capacitor-frida capacitor-plugin capacitor-rasp capacitor-reverse-engineering capacitor-root-detection capacitor-security capacitor-tampering capacitor-tampering-detection freerasp security

Last synced: 20 Feb 2026

https://github.com/houssemdellai/azure-network-course

Course for learning Azure Hub and Spoke implementation

azure dns egress firewall hub-spoke ingress network networktraffic security

Last synced: 09 May 2025

https://github.com/umutcamliyurt/droidcrypt

A file and text encryption tool for Android

aes-256-gcm android-encryption opsec privacy scrypt security security-tools

Last synced: 20 Aug 2025

https://github.com/heutelbeck/sapl-demos

Demo, tutorial, and benchmarks for the SAPL policy engine

access-control authorization benchmark demo examples java policies sapl security spring spring-security tutorial

Last synced: 27 Feb 2026

https://github.com/ambitus/racfu

RACFu (RACF universal) - A unified and standardized interface to RACF callable services.

automation json mainframe python racf racfu security simplification standardization zos

Last synced: 23 Jan 2026

https://github.com/koukyosyumei/rhoevm

symbolic EVM execution engine written in Rust

evm formal-methods rust security smart-contracts symbolic-execution

Last synced: 13 Oct 2025

https://github.com/tankerhq/spec

Technical specification of the Tanker SDK and protocol for end-to-end encryption

cryptography encryption end-to-end privacy sdk security specification tanker

Last synced: 07 Feb 2026

https://github.com/jojonas/db_nmap

Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.

metasploit metasploit-framework networks nmap security

Last synced: 14 Jan 2026

https://github.com/shelld3v/python-shell-cheat-sheet

Full python reverse shell and bind shell payloads

bind-shell cheat-sheet exploit hacking python python3 reverse-shell security shell

Last synced: 01 May 2026

https://github.com/merciagents/riphook

Deterministic security layer for Openclaw(Clawdbot), Cursor and Claude Code. Write secure code, prevent data exfil, and more

ai-agents clawdbot hooks moltbook moltbot openclaw openclaw-security security

Last synced: 15 Apr 2026

https://github.com/alexylon/ferrocrypt

FerroCrypt is a pure Rust library, CLI, and desktop application for encrypting and decrypting files and directories using password-based or key-pair-based encryption.

cli cryptography decryption encryption file-encryption gui hybrid-encryption rust rust-lang rustlang security security-tools slint symmetric-encryption

Last synced: 24 May 2026

https://github.com/kaivyy/perseus

AI-powered security assessment for your codebase. Multi-language (JS, Go, Python, Rust, Java, PHP, Ruby, C#). Works with Claude Code, Codex, OpenCode.

ai-security claude claude-code code-review cybersecurity devsecops penetration-testing security security-audit static-analysis vulnerability-scanner

Last synced: 15 Feb 2026

https://github.com/openziti/ziti-sdk-js

A JavaScript-based SDK for delivering secure browser-based web applications over a Ziti Network

appsec javascript netsec openziti sdk security zero-trust zero-trust-network zero-trust-network-access zero-trust-security zerotrust ztna

Last synced: 29 Jul 2025

https://github.com/hadiazt/sosis-sec

Source Of SoSiS Security

discord-bot discordjs-v13 security

Last synced: 23 Aug 2025

https://github.com/itinerisltd/trellis-disable-xml-rpc

Disable WordPress XML RPC on Trellis sites

ansible-galaxy security trellis wordpress xml-rpc

Last synced: 24 Apr 2025

https://github.com/m-mizutani/lurker

Scalable security network sensor as low interaction honeypot

go honeypot monitoring packets security

Last synced: 01 Jul 2025

https://github.com/stdevel/linux-host-security

Talk about Linux host security and various code examples

aide ansible devsec linux presentation security talk

Last synced: 23 Apr 2025

https://github.com/sap-samples/s4hana-hana-audit-policies

Templates for SAP HANA audit policies of SAP S/4HANA systems.

audit s4hana sample sap-hana sap-s4hana security templates

Last synced: 05 Mar 2025

https://github.com/m-mizutani/dns-gazer

DNS passive monitoring tool

cpp dns fluentd libpcap packet-sniffer security

Last synced: 27 Apr 2025

https://github.com/charlesportwoodii/libsodium-uwp

libsodium for Universal Windows Platform (UWP) - A secure cryptographic library

cryptography hash hkdf libsodium nacl nuget security sodium uwp

Last synced: 24 Jun 2025

https://github.com/checkedc/checkedc-llvm-project

This was a fork of Checked C clang used from 2021-2024. The changes have been merged into the original Checked C clang repo, which is now at https://github.com/checkedc/checkedc-clang.

c clang compilers llvm security

Last synced: 13 Jul 2025

https://github.com/mariosergiosl/memusage

This tool displays the memory usage of processes on a Linux system, including total system memory, free memory, and used memory. It also shows the memory usage of each process in a hierarchical tree format.

automation automations devops linux memory-usage process-monitoring psutil python security security-tools sysadmin troubleshooting

Last synced: 16 Jan 2026

https://github.com/infineon/remote-attestation-optiga-tpm

Setup and operation guide for OPTIGA™ TPM backed remote attestation on a Linux system

raspberry-pi security tpm2

Last synced: 06 Apr 2025

https://github.com/apal21/target-blank-vulnerabilities-features

Examples of some features and the vulnerabilities that can exploit any webpage if target="_blank" is used without rel="noopener"

css html javascript security vulnerability

Last synced: 14 Apr 2025

https://github.com/banhao/autospamemailscan

AutoSpamEmailScan.ps1 is used to monitor a specific mailbox that enterprise users can forward suspicious spam emails to a specific mailbox.

automation esa ews-api google-safe-browsing ironport mdatp minemeld phishing phishing-detection quarantine securex security security-automation soar spam spam-detection spam-emails virustotal workflow

Last synced: 26 Apr 2025

https://github.com/costela/wile

Stripped down letsencrypt (ACME) client

acme certificate cli client python security ssl

Last synced: 09 Apr 2025

https://github.com/cyb3rmx/badpig

A compilation of snort rules for detecting malware traffic.

intrusion-detection malware-detection network-security security snort snort-rules

Last synced: 02 Jan 2026

https://github.com/arch3rpro/securityrss

A Collection of Security RSS Feeds OMPL 网络安全资讯RSS订阅源

cybersecurity opml rss-feed security

Last synced: 26 Jan 2026

https://github.com/securestackco/actions-log4j

A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.

devsecops github-actions java java-vulnerability java8 jre log4j log4j-rce log4j2 log4js log4shell scanning security security-automation security-tools software-composition-analysis static-analysis vulnerabilities vulnerability-assessment vulnerability-scanner

Last synced: 30 Jul 2025

https://github.com/dxc-0/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 16 May 2025

https://github.com/muntashirakon/sun-security-android

Use the Android-private sun.security library

android-library keystore-provider security

Last synced: 13 Apr 2025

https://github.com/mxschmitt/react-have-i-been-pwned

React component for: Have I Been Pwned?

hibp javascript passwords react security

Last synced: 19 Apr 2025

https://github.com/gchan/password_blocklist

Ruby gem to check a password against a blocklist of commonly used passwords

password-blocklist pasword ruby ruby-gem ruby-on-rails rubygem security

Last synced: 11 Nov 2025

https://github.com/typisttech/wp-cloudflare-guard

Connecting WordPress with Cloudflare firewall, protect your WordPress site at DNS level. Automatically create firewall rules to block dangerous IPs

cloudflare firewall security wordpress wordpress-plugin

Last synced: 13 Jan 2026

https://github.com/X0RBYT3/OSINT-Tools

An Online Collection of Open Source Intelligence Tools

css html osint repository security security-audit security-scan security-tools

Last synced: 12 Jul 2025

https://github.com/bitsofinfo/testssl.sh-alerts

Alerting engine (slack etc) for testssl.sh JSON result output files

alerting alerts certificates continuous-integration security slack ssl testssl

Last synced: 13 Apr 2025

https://github.com/labd/python-param-store

Python module to store secrets in secret stores

aws python security

Last synced: 30 Aug 2025

https://github.com/jnaulty/multi-yubikey-helper

Same Subkeys, Many Yubikeys...

gpg hsm security yubikey

Last synced: 13 Aug 2025

https://github.com/ibasebcast/ha-alarmdotcom

Modernized Alarm.com integration for Home Assistant with ongoing maintenance and fixes.

alarm-com alarmdotcom hacs hacs-integration home-assistant home-assistant-integration home-security homeassistant security

Last synced: 21 Apr 2026

https://github.com/alejandroesquivel/node-pastebin-scraper

Minimalistic Pastebin Scraper for Node.js. A way to scrape pastebin's recent paste feed without requiring a LIFETIME PRO account and using their API. A good tool for those that want to ensure that their accounts have not been compromised during a recent hack.

client leaks node-pastebin-scraper pastebin scraper security

Last synced: 13 Feb 2026

https://github.com/chamodanethra/biometric_signature

Hardware-backed biometric authentication for Flutter. Create cryptographic signatures using device biometrics with keys stored in Secure Enclave/StrongBox/Windows Hello.

android biometric-authentication cryptography flutter ios macos secure-enclave security strongbox windows windows-hello

Last synced: 01 Apr 2026

https://github.com/pcjbird/quicksecuritycode

A security or sms verify code input control. 一个安全码/短信验证码输入控件,支持4位或6位数字的安全码/短信验证码。

code input mobile phone security sms textfield verify

Last synced: 10 Apr 2025

https://github.com/tabmk/2fa-hotp-totp

Zero dependency HOTP/TOTP 2FA

2fa hotp otp security totp typescript

Last synced: 13 Apr 2025

https://github.com/topscoder/nuclei-zero-day

This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.

bugbounty infosec nuclei nuclei-templates security

Last synced: 06 Mar 2026

https://github.com/cleantalk/php-usp

UniForce - Universal Security plugin and Firewall for websites

attack-defense firewall security waf

Last synced: 11 Apr 2025

https://github.com/parsiya/evil-electron

Backdoored Electron app.asar

electron security

Last synced: 11 Apr 2025

https://github.com/y-miyazaki/terraform-aws-base

Initially set base configuration created by Terraform.

aws metrics monitoring security terraform terraform-aws

Last synced: 17 Jan 2026

https://github.com/qnib/doxy

Docker unix-socket proxy to provide unharmful, read-only API calls

docker docker-engine golang security

Last synced: 14 Jan 2026

https://github.com/gacts/gitleaks

🚀 GitHub action for running gitleaks/gitleaks (no license key is required)

code-scanning github-actions gitleaks security

Last synced: 20 Mar 2025

https://github.com/wakeful/veil

Verified Entity Identity Lock (Expose hidden trust paths in your AWS IAM setup before they become security risks.)

aws blue blue-team blue-team-tool blueteam blueteam-tools cybersecurity penetration-testing recon security security-auditing security-automation security-testing security-tools

Last synced: 30 Dec 2025

https://github.com/neosmart/lastpassto1password

A LastPass to 1Password converter.

1password lastpass security

Last synced: 10 Apr 2025

https://github.com/vincentkoc/ostemper

All in one script for hardening and applying common tweaks to Mac OS systems

apple macos macosx security security-hardening security-tools

Last synced: 11 Apr 2025

https://github.com/Cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 27 Mar 2025

https://github.com/xenocoderce/netseal

A revamp of the good old NetSeal licensing system, with security !

dotnet license-management managed security

Last synced: 11 Apr 2025

https://github.com/madhuakula/hacked-emails

Command line hacked-emails

go golang hacked-emails infosec security

Last synced: 11 Aug 2025

https://github.com/gcmurphy/osv

Rust implementation of ossf osv specification

rust security vulnerability-scanners

Last synced: 11 Mar 2026

https://github.com/devgateway/ansible-ldap-auth

Configure LDAP authentication & authorization with parametrized user/host/project lookups

ansible ansible-role ldap ldap-authentication ldap-server linux nss pam security ssh ssh-server

Last synced: 23 Jul 2025

https://github.com/tenable/accurics-action

The Accurics GitHub Action scans Infrastructure as Code files checked into the respository to help ensure that cloud resources are secure and compliant from creation.

cicd devops security

Last synced: 15 Apr 2025

https://github.com/dahall/securityeditor

Standard Windows security editor dialog for .NET derived from CommonDialog and implementing the Windows EditSecurity API.

csharp dotnet permissions security windows winforms

Last synced: 01 Sep 2025

https://github.com/skosachiov/remediations-gendbuntu

The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.

ansible automation centos compliance debian group-policy laps linux redhat remote-assistance sccm security security-audit security-automation ubuntu

Last synced: 15 May 2025

https://github.com/tink-crypto/tink-go-gcpkms

Extension to Tink Go that provides Google Cloud KMS integration

crypto cryptography gcp-kms go golang golang-library google-cloud-kms security tink

Last synced: 12 Jan 2026

https://github.com/mrtc0/cxray

Tracing security events in container with BPF

bcc bpf container devsecops ebpf security trace

Last synced: 08 Mar 2026

https://github.com/chinmina/chinmina-bridge

Allows Buildkite agents to use ephemeral GitHub tokens to authenticate their interactions. Avoids deploy keys and long-lived PATs.

buildkite github github-app oidc security

Last synced: 27 May 2026

https://github.com/frmoretto/hardstop

Don't let AI destroy your hard work! HardStop is a rock-solid protection for AI-generated commands. Pre-execution safety validation for Claude Code, Claude Cowork. Catches dangerous commands before they run: whether from AI mistakes, hallucinations, prompt injection, or misunderstood instructions. Seatbelts for the agentic AI era.

agentic-ai ai-safety claude claude-ai claude-code claude-code-hooks claude-code-plugin claude-code-plugin-marketplace claude-code-plugins claude-code-plugins-marketplace claude-cowork cowork developer-tools llm pre-commit-hook prompt-injection security

Last synced: 14 Feb 2026

https://github.com/0xricksanchez/sploitget

A wrapper script for https://sploitus.com to scrape query results for tools and exploits

ctf exploit exploitation pentest-tool security wrapper-api

Last synced: 13 Apr 2025

https://github.com/krisnova/.net

Compiled Works: Computer Science, Engineering, Analysis, Research

analysis computer-science kernel linux research security

Last synced: 14 Apr 2025

https://github.com/psenger/jersey2-security-jwt

Jersey 2 with JWT Token Security

jersey2 jwt jwt-token security

Last synced: 14 Apr 2025

https://github.com/zelon88/workstation_usb_monitor

Know whenever a domain user plugs in a USB storage device. Log & email when storage devices get attached to your network.

admin-tools administration email-notifications gpo monitor notifications security security-automation security-tools sendmail storage storage-devices storage-monitor usb usb-monitor vbs

Last synced: 07 Jan 2026

https://github.com/MathiasRenner/optimize-ubuntu

Optimize Ubuntu for usability, security, privacy and stability

linux privacy reliability security ubuntu

Last synced: 07 Sep 2025

https://github.com/lionheart/django-pwnedpasswords-validator

Django password validator that checks for passwords in known data breaches.

django django-passwords library password-validation password-validator passwords python python-library security

Last synced: 15 Sep 2025

https://github.com/avishayil/cf-signer

Tool for signing and verifying the integrity of CloudFormation templates

aws cloudformation integrity security signing

Last synced: 01 Apr 2025

https://github.com/alishahidi/apantos

Apantos is a fast and simple framework based on php with security methods and dedicated orm. Modularly

fast framework lightweight php security

Last synced: 13 Jan 2026

https://github.com/x0rbyt3/osint-tools

An Online Collection of Open Source Intelligence Tools

css html osint repository security security-audit security-scan security-tools

Last synced: 07 Aug 2025