An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/deepunk42/seclaw

SecLaw is an OpenClaw plugin that provides real-time security auditing for AI Agent tool calls.

openclaw-plugin security

Last synced: 03 Apr 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/txn2/txtoken

txToken creates an HS256 JWT token from JSON retrieved from a remote endpoint resulting from a proxied JSON request body.

authentication docker-image jwt jwt-server jwt-token kubernetes microservice security

Last synced: 04 Mar 2026

https://github.com/saccofrancesco/lock

Secure local password manager with CustomTkinter UI and cross-platform support

cross-platform customtkinterr desktop-app encryption gui nord-theme open-source password-manger privacy python security tkinter

Last synced: 04 Apr 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/tink-crypto/tink-go-awskms

Extension to Tink Go that provides AWS KMS integration

aws-kms crypto cryptography go golang golang-library security

Last synced: 27 Jan 2026

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/kevcui/totp

:1234: Yet another minimal TOTP generator in 5 lines of Bash

2fa bash bash-script cryptography hotp security totp totp-generator

Last synced: 15 Oct 2025

https://github.com/saropa/saropa_lints

2100+ advanced lint rules for Flutter & Dart. Catches memory leaks, security flaws (OWASP), and runtime crashes that standard linters miss. Optimized for AI coding assistants.

accessibility bloc code-quality compliance dart dev-tools flutter linter memory-leaks owasp riverpod security static-analysis

Last synced: 01 Jun 2026

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026

https://github.com/jeninsutradhar/kryptos

password manager built with Go and Fyne, designed to provide a secure and intuitive way to store and manage your passwords locally

aes-encryption fyne golang password-manager security

Last synced: 13 Oct 2025

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/brainpolo/llmshield

Shields your confidential data in LLM prompts from third party AI providers, allowing you to send with confidence without compromising security and privacy.

ai llms privacy security

Last synced: 05 Mar 2026

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/nexusone23/noid-privacy-linux

🛡️ Privacy & Security Audit for Linux Desktops — 300+ checks, 42 sections, zero dependencies, pure Bash. AI-powered fixes with --ai flag.

ai-tools audit bash cybersecurity debian desktop-security fedora hardening linux linux-desktop linux-security noid-privacy privacy privacy-audit privacy-tools security security-audit shell-script ubuntu zero-dependencies

Last synced: 31 May 2026

https://github.com/renatoathaydes/gohash_mobile_app

go-hash official mobile app (Android and iOS)

flutter flutter-apps password-manager security

Last synced: 28 Oct 2025

https://github.com/blackiq/secure-telegrambot

This is a bot from Mehran Alam. I didn't create this. TNX Mehran.

api bot security telegram

Last synced: 28 Oct 2025

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/dev-hwang/flutter_security_checker

This plugin provides the ability to verify rooting and integrity on Android and iOS platforms.

android flutter ios root-checker security

Last synced: 21 Mar 2025

https://github.com/zainabed/web-security-soteria

Single page application security (Typescript authorization library)

authorization security typescript

Last synced: 24 Jul 2025

https://github.com/skx/remotehttp

Magic wrapper to deny HTTP-requests to to "local" resources.

go golang http library security transport utility wrapper

Last synced: 23 Apr 2025

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/bl4ck44/hashbox

Herramienta que sirve para saber si un programa es malicioso a partir del hash y comparándola con la lista de hashes más peligrosos.

cracking hacking hash md5 md5-hash python python3 security security-tools sha256

Last synced: 12 Jul 2025

https://github.com/cityofnewyork/nyco-wp-boilerplate

Local development suite for creating and running instances of WordPress sites and managing them on WP Engine. Maintained by @NYCOpportunity

composer docker nyc-opportunity nycopportunity security wordpress wp-cli wp-engine wpengine

Last synced: 12 May 2025

https://github.com/jorianwoltjer/subsolver

CLI tool to Solve Substitution Ciphers using a wordlist

cli crypto security solver substitution-cipher wordlist

Last synced: 13 Jun 2025

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/bocaletto-luca/ip-port-scanner

The IP Port Scanner software is a Python application based on Tkinter that allows users to scan IP addresses and ports within a local network. This application provides an intuitive user interface for performing IP scans and checking the status of open or closed ports on a specific host.

cybersecurity desktop-application gui ip-scanner ip-scanning network-scanning network-security open-source python security tkinter

Last synced: 05 Jan 2026

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/dr-noob/madfut22_hack

Proof-of-concept for hacking the MADFUT 22 game on Android

android fifa game hacking security

Last synced: 03 Feb 2026

https://github.com/ekaone/javascript-awesome-packages

😎 📃 Javascript Awesome Packages List, start from 🚦 State Management, 🧪 Testing, 🛠 Utilities, 🌈 Design System, 📈 Chart, 🖥 Server, 🔐 Security, 🗄 ORM and Query Builder

database orm security server state-management testing

Last synced: 04 Mar 2025

https://github.com/bocaletto-luca/browser-temporary-files-delete

Browser Temporary Files Delete is a Python application that helps users remove temporary files from web browsers. It allows users to select the browsers to scan and clean up unnecessary temporary files. The software dynamically detects the cache paths of common web browsers, enabling users to perform cleanup operations with ease.

automation cache cleanup optimization privacy python security utility web-browser

Last synced: 18 Oct 2025

https://github.com/iowacomputergurus/dnntelerikidentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 19 Apr 2025

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/saveourtool/osv4k

Kotlin and Java serialization schema for OSV

java kotlin osv security

Last synced: 23 Apr 2025

https://github.com/krishpranav/apk-hunter

Android Application Vulnerability Analysis And Android Pentest Tool Built In Ruby

android application application-security ruby security

Last synced: 15 Apr 2025

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT

chainstack chatgpt dlp security

Last synced: 13 Apr 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/rooted-io/ctfs

Collection of CTF Labs 🏳️ 🏴

ctf ctf-challenges ctf-walkthroughs ctf-writeups kubernetes security

Last synced: 03 Oct 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025

https://github.com/sap/fosstars-rating-core-action

A GitHub action for calculating Fosstars security ratings.

fosstars rating security security-tools

Last synced: 15 Jul 2025

https://github.com/belane/codeauditor

Take notes and categorize issues during a source code audit.

audit code-audit security vscode vscode-extension

Last synced: 12 May 2025

https://github.com/robertdebock/ansible-role-aide

Install and configure aide on your system.

aide ansible ids molecule monitoring playbook security system tox

Last synced: 24 Apr 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/rafigk2v9c/APKdevastate

Advanced analysis software for APK payloads created by RATs.

aapt android apk apktool remoteaccesstrojan reverse-engineering security

Last synced: 25 Dec 2025

https://github.com/vm32/firewall-rule-management-script

Bash script aids in the effective management of firewall rules

blue-team cyber-security firewall firewall-rules security

Last synced: 20 Jul 2025

https://github.com/sondosaabed/intro-to-information-security

Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.

access-control buffer-overflow-attack course database-security firewalls information-security intrusion-detection-system malicious-software modern-malware os-security security udacity

Last synced: 20 Feb 2026

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025

https://github.com/vapor-ware/sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

envelope kms sctl secrets security

Last synced: 14 Apr 2025

https://github.com/johnnykv/curiosum

Pcap recording of Heralding sessions

honeypot pcap security

Last synced: 13 Apr 2025

https://github.com/louib/nix2sbom

nix2sbom extracts the CycloneDX and SPDX SBOM (Software Bill of Materials) from a Nix derivation

cyclonedx github-actions nix nixos purl sbom sbom-generator security software-bill-of-materials spdx supply-chain supply-chain-security

Last synced: 24 Mar 2025

https://github.com/turbot/steampipe-mod-alicloud-compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS across all of your Alibaba Cloud accounts using Powerpipe and Steampipe.

alibaba-cloud alibabacloud alicloud cis cis-benchmark compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/hqarroum/arp-spoofer

👾 A command-line tool to easily run a man-in-the-middle attack leveraging ARP cache poisoning.

arp-cache-poisoning man-in-the-middle-attack rust security

Last synced: 19 Apr 2025

https://github.com/itslab-kyushu/sss

A simple implementation of Shamir's Secret Sharing

go golang grpc secret-sharing security storage

Last synced: 12 Jan 2026

https://github.com/geniuszly/genedrbypass

An advanced tool for bypassing EDR (Endpoint Detection and Response) systems and antivirus software by dynamically generating and injecting shellcode

bypass cve cybersecurity edr edr-bypass endpoint-security ethical-hacking evasion-techniques exploit exploit-development genedrbypass penetration-testing poc security vulnerability

Last synced: 14 Aug 2025

https://github.com/serverfarmer/compliance

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

compliance gdpr hipaa linux pci-dss security server-management

Last synced: 12 Jul 2025

https://github.com/erseco/ugr_tfg

Trabajo de Fin de Grado - Análisis de plataforma de recursos de apoyo a la docencia Prado2

accessibility availability hacktoberfest moodle prado2 security thesis ugr usability

Last synced: 26 Dec 2025

https://github.com/putyourlightson/craft-snaptcha

Automatically validates forms and prevents spam bots for Craft CMS.

craft-plugin craftcms forms security spam-protection validation

Last synced: 31 Jul 2025

https://github.com/lucaangioloni/fileencrypt

Simple open source App to encrypt files, based on Qt

cryptography encrypted-files files-encrypted openssl qt security

Last synced: 23 Apr 2025

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/IchHabRecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 31 Mar 2025

https://github.com/swirrl/nvd-clojure-gh-action

Automated Github Action to automate scanning of Clojure projects for known vulnerabilities in the National Vulnerability Database

clojure github-action nvd security security-audit vulnerability vulnerability-scanner

Last synced: 28 Feb 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/namuan/oauth2-proxy-httpbin

Secure applications using OAuth2 Proxy

docker docker-compose httpbin oauth2 security

Last synced: 19 Apr 2025

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/qbrusa/Windows-Security-Event-ID-Helper

This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).

audit eventid events logging security windows

Last synced: 08 May 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025