An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/sireto/offlinepass

Self Service Password Manager

password password-generator password-manager security

Last synced: 04 Apr 2026

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026

https://github.com/aiven-open/aiven-pg-security

Aiven PostgreSQL® add-on for adding some DBaaS security

add-on postgresql security security-tools

Last synced: 29 Apr 2025

https://github.com/skx/remotehttp

Magic wrapper to deny HTTP-requests to to "local" resources.

go golang http library security transport utility wrapper

Last synced: 23 Apr 2025

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/luckman212/cscheck

outputs codesigning info for macOS binaries

macos security

Last synced: 18 Oct 2025

https://github.com/deepunk42/seclaw

SecLaw is an OpenClaw plugin that provides real-time security auditing for AI Agent tool calls.

openclaw-plugin security

Last synced: 03 Apr 2026

https://github.com/sub1to/ctninja

Compile-time string encryption and import obfuscation for Windows PE32(+) binaries

compile compile-time cplusplus encryption imports joaat joaat64 ninja obfuscation pe32 pe32plus peb peb-walking security stealth string time windows xorstr

Last synced: 19 Apr 2025

https://github.com/aenondynamics/x509-tool

:wrench: Single-File-Utility to create X509 Certificates/PKI Structure for your OpenVPN Server or any TLS based communication.

authentication certificate cli communication openssl openvpn pki-structure security ssl-certificates tls verify-certificates webserver x509

Last synced: 19 Jun 2025

https://github.com/noplanman/wp-otp

OTP for WordPress (:exclamation: moved to https://git.feneas.org/noplanman/wp-otp)

authentication otp security totp two-factor-authentication wordpress wordpress-plugin

Last synced: 11 Apr 2025

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/samdphillips/racket-keyring

Racket Keyring Library

password racket security

Last synced: 11 Apr 2025

https://github.com/tomwechsler/linux_administration_security

Linux security with three different distributions (Ubuntu, openSUSE and Red Hat)!

linux opensuse redhat security ubuntu

Last synced: 27 Jul 2025

https://github.com/techtoboggan/claude-desktop-hardened-linux

Security-focused Linux packaging of Claude Desktop with bubblewrap sandboxing, Wayland support, and Cowork (Local Agent Mode)

bubblewrap claude claude-desktop electron linux sandbox security wayland

Last synced: 11 Jun 2026

https://github.com/louib/nix2sbom

nix2sbom extracts the CycloneDX and SPDX SBOM (Software Bill of Materials) from a Nix derivation

cyclonedx github-actions nix nixos purl sbom sbom-generator security software-bill-of-materials spdx supply-chain supply-chain-security

Last synced: 24 Mar 2025

https://github.com/bocaletto-luca/ip-port-scanner

The IP Port Scanner software is a Python application based on Tkinter that allows users to scan IP addresses and ports within a local network. This application provides an intuitive user interface for performing IP scans and checking the status of open or closed ports on a specific host.

cybersecurity desktop-application gui ip-scanner ip-scanning network-scanning network-security open-source python security tkinter

Last synced: 05 Jan 2026

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/withsecurelabs/shadowhammer

Tools related to 'shadowhammer' attack, https://securelist.com/operation-shadowhammer/89992

countercept malware security

Last synced: 25 Jun 2025

https://github.com/sjinks/roundcube_recaptcha

Adds reCAPTCHA to the RoundCube login form

captcha login recaptcha roundcube-plugin security

Last synced: 07 Mar 2026

https://github.com/pyperanger/gorootcheck

Standalone rootcheck by OSSEC wrtitten in Go ( rootkit detection )

cortex golang linux misp ossec rootkit security

Last synced: 20 Jan 2026

https://github.com/zeyad-azima/n0pspoof

A tool to bypass and evade Portspoof solution

bypass ids network nmap rustscan security

Last synced: 04 Apr 2025

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT

chainstack chatgpt dlp security

Last synced: 13 Apr 2025

https://github.com/oslabs-beta/testsudo

A one-stop testing suite offering a range of frontend, backend, and security metrics for your projects.

backend bearer frontend lighthouse measured optimization performance-testing security testing-tools

Last synced: 30 Apr 2025

https://github.com/rogelioolarte/multiple-auth-api

Spring Boot App that focuses on implementing multiple authentication methods using OAuhth2 and JWT.

jwt multiple-authentication oauth2 register-login security spring spring-boot

Last synced: 16 Aug 2025

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/dotanuki-labs/android-oss-cves-research

An analysis on open-source Android apps intended to learn if they are harmed by vulnerable dependencies 🔒

cli gradle python security supply-chain-analytics

Last synced: 12 Apr 2025

https://github.com/auth0-blog/vue-auth0-aside

Aside: Vue with Auth0 and an authenticated Node API.

api app aside auth auth0 authentication node security vue vue-auth

Last synced: 27 Jul 2025

https://github.com/robertdebock/ansible-role-forensics

Install and configure forensics on your system.

ansible forensics molecule playbook security system tox

Last synced: 19 Sep 2025

https://github.com/cokebeer/go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

cors go jsonp security sqli ssrf ssti xss xxe

Last synced: 26 Jul 2025

https://github.com/bl4ck44/hashbox

Herramienta que sirve para saber si un programa es malicioso a partir del hash y comparándola con la lista de hashes más peligrosos.

cracking hacking hash md5 md5-hash python python3 security security-tools sha256

Last synced: 12 Jul 2025

https://github.com/rafigk2v9c/APKdevastate

Advanced analysis software for APK payloads created by RATs.

aapt android apk apktool remoteaccesstrojan reverse-engineering security

Last synced: 25 Dec 2025

https://github.com/itslab-kyushu/sss

A simple implementation of Shamir's Secret Sharing

go golang grpc secret-sharing security storage

Last synced: 12 Jan 2026

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/phpgt/csrf

Automatic protection from Cross-Site Request Forgery.

automatic-protection csrf csrf-protection csrf-protector csrf-tokens php-security phpgt security

Last synced: 04 Oct 2025

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/rehypejs/camomile

Node.js HTTP image proxy to route images through SSL

camo camomile image node proxy rehype security ssl unified

Last synced: 01 Jul 2025

https://github.com/rhargreaves/knock-knock

Port knocking implementation in eBPF

ebpf security

Last synced: 29 Aug 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/port19x/deadsniper

A fast, specialized dead-link checker

broken-links dead-links github-actions security seo seo-optimization

Last synced: 01 Apr 2025

https://github.com/zainabed/web-security-soteria

Single page application security (Typescript authorization library)

authorization security typescript

Last synced: 24 Jul 2025

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/bocaletto-luca/browser-temporary-files-delete

Browser Temporary Files Delete is a Python application that helps users remove temporary files from web browsers. It allows users to select the browsers to scan and clean up unnecessary temporary files. The software dynamically detects the cache paths of common web browsers, enabling users to perform cleanup operations with ease.

automation cache cleanup optimization privacy python security utility web-browser

Last synced: 18 Oct 2025

https://github.com/mini-ware/file-locker

Keep your files obfuscated by locking them with XOR encryption

cli encryption hacking linux password security shell xor

Last synced: 03 Oct 2025

https://github.com/rooted-io/ctfs

Collection of CTF Labs 🏳️ 🏴

ctf ctf-challenges ctf-walkthroughs ctf-writeups kubernetes security

Last synced: 03 Oct 2025

https://github.com/rix4uni/unew

A tool combined of 2 commands features in 1 sort and tee for adding new lines to files, skipping duplicates

bug-bounty bugbounty bugbountytips duplicates hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 15 Apr 2025

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/ladjs/mongoose-common-plugin

Common plugin for Mongoose with standard schema fields and localization support

common created helper i10n i18n id locale locales localization localized locals mongoose plugin plugins security timestamp updated virtual virtuals

Last synced: 15 Apr 2025

https://github.com/dylibso/modsurfer-validate-action

Run `modsurfer validate` in a GitHub Action. Modsurfer helps to debug and observe WebAssembly modules and components.

action binary-scan ci linter security wasm webassembly

Last synced: 24 Aug 2025

https://github.com/lorenzodifuccia/watchmyback

An easy-to-use defense tool against "Shoulder Surfing" attacks, which allows you to immediately lock the screen of your computer if someone is behind you or if you move away from the computer without locking it.

face-detection mediapipe security shoulder-surfing tobii-aware tobii-eye-tracker

Last synced: 04 Aug 2025

https://github.com/turbot/steampipe-mod-github-compliance

Run individual controls or full compliance benchmarks for across all of your GitHub resources using Powerpipe and Steampipe.

cis cis-benchmark compliance github hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/serverfarmer/compliance

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

compliance gdpr hipaa linux pci-dss security server-management

Last synced: 12 Jul 2025

https://github.com/erseco/ugr_tfg

Trabajo de Fin de Grado - Análisis de plataforma de recursos de apoyo a la docencia Prado2

accessibility availability hacktoberfest moodle prado2 security thesis ugr usability

Last synced: 26 Dec 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/elastic/llm-detection-proxy

A proxy tool for detecting and logging LLM queries to Elasticsearch.

elastic enrichment flask kibana llm proxy security

Last synced: 13 Jul 2025

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/putyourlightson/craft-snaptcha

Automatically validates forms and prevents spam bots for Craft CMS.

craft-plugin craftcms forms security spam-protection validation

Last synced: 31 Jul 2025

https://github.com/belane/codeauditor

Take notes and categorize issues during a source code audit.

audit code-audit security vscode vscode-extension

Last synced: 12 May 2025

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/nicolast/landlock-hs

Haskell bindings for the Linux Landlock API

haskell haskell-library landlock linux sandbox sandboxing security

Last synced: 09 Apr 2025

https://github.com/namuan/oauth2-proxy-httpbin

Secure applications using OAuth2 Proxy

docker docker-compose httpbin oauth2 security

Last synced: 19 Apr 2025

https://github.com/trilemma-dev/required

Parser and evaluator for Apple's Code Signing Requirement Language

codesign csreq macos secrequirement security

Last synced: 21 Oct 2025

https://github.com/saropa/saropa_lints

2100+ advanced lint rules for Flutter & Dart. Catches memory leaks, security flaws (OWASP), and runtime crashes that standard linters miss. Optimized for AI coding assistants.

accessibility bloc code-quality compliance dart dev-tools flutter linter memory-leaks owasp riverpod security static-analysis

Last synced: 01 Jun 2026

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/franckferman/satan2_cleaner

Secure Anti-Forensics and Total Annihilation of iNformation. Advanced counter-forensics tool to make storage data unrecoverable. Multi-pass wiping, encryption, metadata corruption, file signature masking, and more. Modular, evolving, and privacy-focused.

bash-scripting counter-forensic counter-forensics counter-forensics-attack encryption encryption-decryption encryption-tool go golang nuke privacy rust satan satanic satanism security shred shredding wipe-disk wipe-files

Last synced: 09 Apr 2025

https://github.com/eliranmaman/elro-security-project

ELRO-Security is an advance & free WAF (Web Application Firewall), It is using to defend servers and especially websites around the internet. It is very easy to install and allow websites owner to add their own website via a web application interface which makes it accessible for almost everyone regardless of the level of codding.

firewalls security waf web web-application-firewall web-application-security web-application-security-scanner web-secure web-security webapplication webapplicationhacking

Last synced: 26 Apr 2025

https://github.com/semgrep/skills

A collection of skills for AI coding agents from Semgrep

agents claude-code security skills

Last synced: 05 Mar 2026

https://github.com/bcrowe/cakephp-encrypted-type

:lock_with_ink_pen: CakePHP plugin that provides field-level (column) encryption within the application layer before data is stored or transmitted to the database, supporting regulatory compliance, zero-trust security, end-to-end encryption, and contextual awareness.

cakephp cakephp-plugin data-encryption data-security database encryption end-to-end-encryption field-level-encryption field-level-security gdpr hipaa pci pci-compliance pci-dss php regulatory-compliance security zero-trust zero-trust-security

Last synced: 08 Mar 2026

https://github.com/shenfe/function-sandbox

📦 Make a "sandbox" for a function.

function-sandbox security

Last synced: 07 Oct 2025

https://github.com/pforemski/eip-generator

A new IPv6 address generator for Entropy/IP

entropy ip6 security

Last synced: 14 Jan 2026