An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/emmaconnor/moria

Python library for interacting with in-memory C structures using data mined from binary DWARF debug info.

binary-exploitation c exploit exploit-development exploitation exploits offensive-security python security

Last synced: 11 Mar 2026

https://github.com/theteleporter/xuneix

A link rotator for enhanced admin panel security. Dynamic URLs, expiring tokens, customizable rotation. Easy setup with Shadcn UI & Tailwind CSS. Integrates with Vercel KV.

authentication link-rotator nextjs open-source security shadcn-ui

Last synced: 24 Mar 2025

https://github.com/knutwurst/psnino

a pure, simple Playstation 1 PS1 Modchip for Arduino, ATMega and ATtiny

copy-protection modchip playstation security

Last synced: 13 Apr 2025

https://github.com/mprpic/cvelint

CLI tool to validate CVE v5 JSON records.

cve linter security

Last synced: 12 Apr 2025

https://github.com/grapheneos-archive/device_google_coral-kernel

Pixel 4 and 4 XL kernel prebuilts.

android grapheneos privacy security

Last synced: 13 Aug 2025

https://github.com/nodiscc/netdata-debsecan

[mirror] Check/graph the number of CVEs in currently installed packages - netdata plugin

cve debian debsecan monitoring netdata patch-management scanner security

Last synced: 12 Aug 2025

https://github.com/lambdapioneer/sloth

Key stretching and deniable encryption using Secure Elements on Android and iOS

android cryptography ios password-hashing security sloth

Last synced: 11 Oct 2025

https://github.com/liangjfblue/go-keyserver

动态密钥服务器。带client端,server端使用demo

gin golang redis security

Last synced: 06 May 2025

https://github.com/alessiodionisi/setup-age-action

This action sets up age and adds it to the PATH.

age github-actions security

Last synced: 11 Mar 2026

https://github.com/capnspacehook/basp

A better way to manage software restriction policies, on Windows XP through 10

c-plus-plus security whitelisting windows

Last synced: 12 May 2025

https://github.com/jin5354/backstab

Bury latent information to your web page for confidentiality and track.

confidentiality screenshot security security-audit

Last synced: 13 Apr 2025

https://github.com/mrcl0wnlab/new-ip-tor

This module that makes it easy to reboot IP Tor network

hacking python security security-tools tor

Last synced: 18 Jul 2025

https://github.com/sethvargo/go-malice

A malicious package to demonstrate the importance of software supply chain security.

dont-use-this-no-really security software-supply-chain

Last synced: 08 May 2025

https://github.com/traycho/micronaut-security-attributes

Micronaut security attributes - secure your endpoints by validating authentication attribute using micronaut-security and a bit more. Library is not limited to any specific authentication method and is expected to work with supported authentication methods from micronaut.

attributes aws claims jwt jwt-authentication jwt-token lambda ldap-authentication micronaut security serverless tokens validation

Last synced: 11 Jan 2026

https://github.com/sircryptic/poc

Proof-of-Concept Exploits Based On Known CVE's

cve cybersecurity educational proof-of-concept security

Last synced: 14 Apr 2025

https://github.com/pawamoy/django-cerberus-ac

Django Cerberus Access Control, extended permission system.

access control django ontology permissions role-based-access-control security

Last synced: 05 Jul 2025

https://github.com/BiasedRiot/Glanadh

Service to automatically remove Metadata from your files.

cloud-computing exif exif-data mat2 metadata monitoring privacy privacy-tools security security-tools shell systemd

Last synced: 12 Jul 2025

https://github.com/jonhadfield/subtocheck

subdomain takeover checker

go golang scanner security subdomain takeover

Last synced: 15 Jul 2025

https://github.com/sfr-development/wondersuite-ai-bug-bounty

AI-Powered Offensive Security Research Engine - desktop-native security testing platform with native MCP integration. 90 tools, MITM proxy, stealth browser, autonomous AI agent. Built on Tauri + Rust + React.

ai-agent bug-bounty burp-suite-alternative desktop-app llm-tools mcp mitm-proxy model-context-protocol offensive-security pentesting react rust security security-tools tauri typescript vulnerability-scanner web-security

Last synced: 30 May 2026

https://github.com/SixHq/GPT4-AI-Realtime-code-scanner-Autocomplete-and-Highlighter-for-Javascript-Py-JS-Java-Php-Sixth-SAST

Easily spot, fix and detect badly written code in your project without breaking a sweat. Your GPT4 and LLM powered programming AI realtime code editor for python, javascript, typescript, java, php, c# and many more!

ai api autocomplete chatbot chatgpt enterprise-software fastapi frontend github-config gpt4 java javascript llm openai programming python react rest-api security vscode

Last synced: 24 Mar 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/dsha256/token-go

JWT & PASETO Implementation of the Token Based Authentication

go golang jwt-tokens paseto-tokens security token-based-authentication

Last synced: 26 Jun 2025

https://github.com/andreas-brunner/astro-mail-obfuscation

Protect email addresses, phone numbers and other sensitive data from bots scraping the source code of your Astro app.

astro astro-component astro-integration bot-protection email-obfuscation email-protection email-security encoding obfuscation security spam-protection utility utils withastro

Last synced: 14 Mar 2025

https://github.com/programarivm/easy-acl-bundle

Easy-to-use access control list (ACL) bundle in Symfony 5.

access acl bundle control list security symfony

Last synced: 13 Apr 2025

https://github.com/captainhook-git/secrets

Some useful functionality to detect secrets

git git-hooks secret-detection security

Last synced: 13 Apr 2025

https://github.com/dyne/redroom

Zenroom crypto module for Redis

crypto cryptography password redis redis-module security

Last synced: 16 Jul 2025

https://github.com/infisical/k8-kms-plugin

Infisical KMS plugin for Kubernetes

encryption kubernetes security

Last synced: 04 Apr 2025

https://github.com/pixielabs/whisper-key

Send & receive secure messages in the browser.

cryptography messaging security

Last synced: 20 Jun 2025

https://github.com/hakky54/gatekeeper

🔐 A lightweight java library which guards your publicly accessible internal implementations.

java security

Last synced: 13 May 2025

https://github.com/artem-smotrakov/java-dns-tunneling

Here is an example which shows an idea how DNS tunneling can be implemented in Java.

dns-tunneling java java-dns security

Last synced: 16 Jul 2025

https://github.com/davemolk/dorking

advanced searching for bing, brave, duck duck go, and yahoo

bug-bounty bugbounty dorking go golang infosec osint pentesting pentesting-tools recon research search search-engine security

Last synced: 14 Jul 2025

https://github.com/nihlus/zalloc

zalloc is a safety- and security-oriented wrapper around malloc.

allocator c calloc hacktoberfest malloc safety security

Last synced: 13 May 2025

https://github.com/cipherstash/cipherstash-playground

A playground to experiment with CipherStash and our data security capabilities.

aws-dynamodb data-security dynamodb encryption postgres postgresql searchable-encryption security security-tools

Last synced: 15 Jul 2025

https://github.com/diabonas/arch-security-tracker-tools

Tools to make working with the Arch Linux Security Tracker easier

advisory archlinux cve security tracker

Last synced: 06 Apr 2025

https://github.com/umutcamliyurt/i2p-browser

A web browser for accessing I2P network anonymously and securely

anonymity i2p-browser privacy security web-browser

Last synced: 14 May 2025

https://github.com/theoomoregbee/angular4-auth

EVERYTHING YOU NEED TO KNOW ON SECURING YOUR ANGULAR 2+ SPA

angular-cli angular4 security single-page-app spa

Last synced: 09 May 2025

https://github.com/pozil/apex-security-update-summer21

Helper script for Salesforce Summer '21 Apex security update

apex salesforce security summer21 update

Last synced: 14 May 2025

https://github.com/humblelad/neuro

Netlas automation to scan for vulnerabilities using nuclei templates.

netlas security security-automation

Last synced: 10 May 2025

https://github.com/itemic/rotacsufbo

did u know the name of the repo is obfuscator backwards?

android android-security javaparser mobile-security obfuscate obfuscation obufscator proguard security

Last synced: 26 Jun 2025

https://github.com/mofneko/jbinspector

iOS JailBreak Detector Unity Compatible.

ios-library security unity3d-plugin

Last synced: 24 Oct 2025

https://github.com/dev-five-git/security-log

보안록 - 당신의 정보는 안전한가요?

security

Last synced: 10 Jul 2026

https://github.com/kahalewai/agbac

AGent Based Access Control (AGBAC) is is an open, vendor-neutral security specification that defines how AI agents securely perform actions on behalf of humans using existing IAM technologies

access-control agent agentic agents ai ai-agent artificial-intelligence auth-n auth-z authentication authorization dual-subject enterprise iam innovation llm security technology zero-trust

Last synced: 29 May 2026

https://github.com/egorsmkv/npm-audit-to-report

A simple Go program that converts `security-audit.json` to `security-audit.md` so you can use it in CI pipeline.

ci cve go npm security yarn

Last synced: 25 Oct 2025

https://github.com/fearlesssolutions/engineering-practice-domains

A mono-repo for the Engineering Practice Domains of Development, Data, Infrastructure, Testing, and Platforms

data data-engineering data-science database-design devops drupal end-to-end-testing engineering infrastructure machine-learning salesforce security testing web-development

Last synced: 26 Oct 2025

https://github.com/sebastienrousseau/password-generator-pro

A fast, simple and powerful open-source cross platform utility tool for generating strong, unique and random passwords 🦀

cross-platform cross-platform-app passphrase-generator password-generator password-generator-pro rust security tauri tauri-app

Last synced: 21 Aug 2025

https://github.com/ubernostrum/django-flashpolicies

Flash cross-domain policies for Django.

django flash python security

Last synced: 26 Oct 2025

https://github.com/nour-karoui/encrypt-storage

NPM package that encrypts Local/Session Storage (available for TS & JS)

angular client-side encryption javascript localstorage reactjs security sessionstorage storage typescript

Last synced: 27 Oct 2025

https://github.com/italomaia/uri-faker

See how fonts can be used to create fake URIs

fonts html jquery pentest phishing security semantic-ui uri usability

Last synced: 28 Oct 2025

https://github.com/dionyziz/hackme

The website describing my bounty hunt game.

bounty security

Last synced: 24 Jan 2026

https://github.com/mostafahussein/kubernetes-sec-alert

Track Kubernetes CVEs by native GitHub notifications!

cve devops github-actions golang k8s kubernetes security

Last synced: 28 Oct 2025

https://github.com/tigera-solutions/azure-hub-spoke-aks-egress-gateways

[Azure AKS Blueprint] Learn how to deploy Azure Hub-Spoke VNETs with AKS and Calico Egress Gateways

aks azure calico egress egress-gateway microsoft-azure security tigera

Last synced: 17 Aug 2025

https://github.com/rix4uni/techfinder

A high-performance technology detection tool built with Go, leveraging the projectdiscovery wappalyzergo library to identify web technologies and frameworks.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools technology threat-intelligence

Last synced: 19 Jun 2026

https://github.com/mondoohq/ansible-mondoo

Ansible Role for Mondoo cnquery and cnspec

ansible policy policy-as-code security security-as-code

Last synced: 29 Jan 2026

https://github.com/celenityy/dove

Dove is a suite of configurations & advanced modifications for Mozilla Thunderbird, designed to put the user first - with a focus on privacy, security, freedom, & usability.

anti-tracking email gecko hardened hardening mozilla privacy private secure security settings thunderbird tracking user-js userjs

Last synced: 25 Feb 2026

https://github.com/maymeow/php-encrypt

🔏PHP library for creating and signing Certificates, text encryption and decryption.

certificates encryption hacktoberfest hacktoberfest2020 library openssl php security

Last synced: 19 Apr 2025

https://github.com/djx-y-z/libsignal_dart

Wrapper for libsignal, implementing the Signal Protocol for end-to-end encryption. Features Double Ratchet, X3DH, Sealed Sender, Group Messaging (SenderKey), and Kyber post-quantum key exchange. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows). AGPL-3.0 Licensed.

cross-platform cryptography dart double-ratchet encryption end-to-end-encryption flutter flutter-rust-bridge frb libsignal messaging privacy rust sealed-sender security signal-protocol x3dh

Last synced: 01 May 2026

https://github.com/drizzlerisk/armyworm

Armyworm是一款用于研究和测试的Internet Explorer密码输入控件粘虫防护能力的测试程序

activex armyworm bank ocx pentest security trojan

Last synced: 16 May 2025

https://github.com/didinj/grails4-spring-security-login-example

Grails 4 Tutorial: Spring Security Core Login Example

authentication core example grails grails4 login plugin security spring tutorial

Last synced: 24 Apr 2025

https://github.com/outbit/pivportal

Secure Linux access using a PIV (HSPD-12), CAC, SmartCard, or x509 Client Certificate remotely without a physical card reader.

cac hspd-12 hspd12 linux-client pam-module piv pkcs11 security smartcard

Last synced: 24 Apr 2025

https://github.com/neospl0it/discord-rat

A powerful Discord RAT for remote control & monitoring. Capture screenshots, grab passwords, evade detection.

discord discord-bot discord-rat grabber-password grabber-token python rat remote-access-trojan remoteaccesstrojan security

Last synced: 22 Apr 2025

https://github.com/robertdebock/ansible-role-auto_update

Install and configure automatic package updates on your system.

ansible autoupdate molecule playbook security system tox

Last synced: 24 Apr 2025

https://github.com/samerfarida/secure-bash-macos-ebook

A hands-on Bash scripting guide for macOS administrators and security engineers. Learn to automate, secure, and master macOS with real-world examples.

bash macos security

Last synced: 13 Jan 2026

https://github.com/panagiotisdrakatos/universal-encryption-channel

Cross-platform socket API for Windows Universall Apps and Java

cross-platform encryption key-exchanges security

Last synced: 16 Aug 2025

https://github.com/lovasoa/pyformat-challenge

Python format string vulnerability exploitation challenge

challenge format format-string-attack python security

Last synced: 24 Mar 2025

https://github.com/reverseapple/analysissuite

Utilities for reverse engineering Apple binaries

apple binary-analysis research reverse-engineering security tools

Last synced: 09 Apr 2025

https://github.com/m1guelpf/laravel-ssl

A Laravel package to enforce HTTPS

enforce laravel package security ssl

Last synced: 13 May 2025

https://github.com/grapheneos/tls-pinning

Utilities for setting up TLS key pinning for Android app network security configuration. We pin the keys of trusted roots and backup keys in order to avoid needing to rotate the pinned keys. Backup keys are never intended to be used unless the roots stop being available and then only need to be used until the pins expire or get updated.

https privacy security tls

Last synced: 13 Apr 2025

https://github.com/osirislab/fork-sentry

GitHub Action for detecting and alerting on suspicious forks of your repository

github-actions security

Last synced: 18 Jul 2025

https://github.com/kyoshidajp/dep-doctor

Diagnose whether your software dependency libraries are maintained.

dart dependencies elixir erlang golang javascript php python ruby rust security swift

Last synced: 09 Jul 2025

https://github.com/rulanugrh/linux-server-security

Basic Implementation about Security of Server and Application Server

linux-cheatsheet linux-server-security linux-shell security server-security

Last synced: 12 Apr 2025

https://github.com/DevanshRaghav75/bugbounty-dorks

Google dorks for bug bounty hunting

bugbounty google-dorks security

Last synced: 10 Mar 2025

https://github.com/francescodisalesgithub/signal-proxy-setup

Guide about how to set a signal proxy for Signal app

proxy security signal signal-app signal-application

Last synced: 18 Apr 2026

https://github.com/tawfik-s/spring-security-tasks-solution

Master Spring Security by practice. spring security tasks and solutions. you can find tasks description at the README file. freely use, modify, and distribute the code.

bycrypt csrf github-oauth2 google-oauth2 java jwt jwt-authentication method-level-authorization method-level-security oauth oauth2 oauth2-client preauthorize security spring spring-boot spring-security spring-security-oauth2 tasks

Last synced: 30 Jun 2025

https://github.com/robertdebock/ansible-role-sysstat

Install, start and enable sysstat on your system.

ansible molecule monitoring playbook security sysstat system tox

Last synced: 24 Apr 2025

https://github.com/edyatl/passchek

Passchek is a simple cli tool, checks if your password has been compromised.

check cli compromise k-anonymity password pipeline pwnedpasswords security utility

Last synced: 28 Apr 2025

https://github.com/cdpxe/hardenedlinux

Scripts of the Hardened Linux (HL) distribution: hardening scripts (HLHS) and package system (cpfos)

harden hardened-linux-scripts hardening linux linux-distribution linux-shell package-manager package-managers packet-system port-management security slackware system

Last synced: 23 Mar 2025

https://github.com/kardespro/nosqlmap

NoSQLMap CLI Tool is a command-line interface (CLI) tool designed to test for NoSQL injection vulnerabilities using Node.js, TypeScript, and Axios. It supports both HTTP and HTTPS requests and works with all HTTP methods.

exploit mongodb mongodb-database mongoose nosqlmap pentesting scan-tool security security-tools sqlmap

Last synced: 24 Oct 2025