An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/cloudposse/terraform-aws-ec2-admin-server

Terraform Module for providing a EC2 instance capable of running admin tasks and provisioned by Ansible

ansible aws bastion ec2 instance security ssh terraform

Last synced: 29 Apr 2025

https://gitlab.com/ignis-build/sarif-converter

Convert from [SARIF](https://sarifweb.azurewebsites.net/) to GitLab Code Quality and SAST report.

SARIF SAST gitlab go security

Last synced: 20 Mar 2025

https://github.com/amboxer21/sshmonitor

Notifies you of any ssh attempts to your computer, whether the attempts are successful or not. Please fork instead of clone.

c c-programming daemon gtk2 gui linux monitor notify pytailf python python2 python3 security ssh ssh-monitor

Last synced: 30 Apr 2025

https://github.com/abhisheknaiidu/arm

Management for users, to upload,download and manage important documents of a particular discipline. We'll be maintaining our Database on CRUD Functionalities.

bootstrap4 css3 dbms dbms-project documents hacktoberfest hacktoberfest2020 html5 js php security ui ux

Last synced: 02 Apr 2026

https://github.com/piomin/sample-secure-eureka-discovery

secure discovery between client and server with spring cloud netflix eureka and spring boot

https keytool netflix-eureka security spring-boot spring-cloud spring-cloud-netflix ssl

Last synced: 16 Jun 2025

https://github.com/univ-of-utah-marriott-library-apple/app-playpen

A python GUI application that provides framework & automation to secure macOS applications with exceptional requirements.

macadmin macos nibbler py2app python sandbox security

Last synced: 10 Apr 2025

https://github.com/f-froehlich/nmap-scan

Nmap wrapper for python with full Nmap DTD support, parallel scans and threaded callback methods support for faster analytics.

network-scanner nmap os-identifier portscan portscanner portscanning scanner scanning security security-tools serverstatus service-detection service-discovery

Last synced: 26 Dec 2025

https://github.com/nitrokey/openpgp-card

Sample code of the OpenPGP Card

cryptography security smartcard

Last synced: 06 Jan 2026

https://github.com/defeo/phishing-demo

Demonstration of wifi sniffing, dns poisoning, mitm and phishing attack

security wifi

Last synced: 09 Mar 2026

https://github.com/vlsergey/spring-data-entity-security

Extension to Spring Data to add security filters to repositories

java security spring-data spring-data-jpa

Last synced: 12 Jul 2025

https://github.com/stateloom/stateloom

The control plane for AI agents. Track, secure, and optimize every agent run.

ai-agents anthropic cost-tracking developer-tools gateway gemini guardrails llm middleware observability openai pii-detection python security

Last synced: 12 Apr 2026

https://github.com/anunay-bhatt/secure-serverless-reference-architecture

A walkthrough of security controls for a serverless architecture via a demo application

cloud-security reference-architecture security security-architecture serverless

Last synced: 15 Apr 2025

https://github.com/davidjbrossard/java-json-pep-sdk

This project provides a Policy Enforcement Point (PEP) SDK in Java that generates a XACML 3.0 authorization request and response in accordance with the JSON Profile of XACML 1.1.

abac access-control authorization java pbac security xacml

Last synced: 28 Jun 2025

https://github.com/bytehide/securelocalstorage

SecureLocalStorage for .NET: A simple and lightweight extension that allows you to safely store data locally.

dotnet dotnet-core localstorage security security-tools storage

Last synced: 03 Jan 2026

https://github.com/t0mer/SafeUrl

SafeUrl is a small and lite [FastAPI]( https://fastapi.tiangolo.com/) based web application intended to help us validate any URL safely before clicking it.

docker fastapi ipinfo python security spam virustotal

Last synced: 16 Apr 2025

https://github.com/seadog007/crontab_botnet

A botnet (C&C) framework that create in bash and using crontab for periodic execute

botnet c2 command-and-control crontab security

Last synced: 27 Aug 2025

https://github.com/matricali/php-edge-auth

PHP Library that generates authorization token used by Akamai Auth Token 2.0.

akamai composer edge-auth php php-library security signature token

Last synced: 31 Aug 2025

https://github.com/wh0isdxk/Security-by-Design

Conceitos sobre Security-by-Design e alguns passos sobre como implementar isso no dia-a-dia.

information-security security security-by-design seguranca seguranca-da-informacao

Last synced: 10 Jul 2025

https://github.com/shellrow/nrev

Simple and Fast Network Scanner/Mapper. Written in Rust.

network rust scanner security

Last synced: 04 Apr 2026

https://github.com/experience-monks/adviser

Jam3 quality advisor. Integrates checking for best practices at Jam3

accessibility best-practices performance security

Last synced: 14 May 2025

https://github.com/DenizParlak/heimdall

AWS Attack Path Scanner - Discover privilege escalation paths across 10+ AWS services

aws aws-security cloud security

Last synced: 31 Jan 2026

https://github.com/gonative-cc/contributig

Guidelines and resources for Native org contributions

blockchain contributors security

Last synced: 01 Mar 2026

https://github.com/spacewander/lua-resty-mime-sniff

Sniff the real MIME type of given data in your OpenResty app

openresty security websecurity

Last synced: 28 Feb 2026

https://github.com/piecioshka/brute-force-generator

🔨 Build a dictionary by permuting passed letters (using ES2015+)

cli security

Last synced: 17 Jun 2026

https://github.com/robertdebock/ansible-role-openssh

Install and configure openssh on your system.

ansible molecule openssh playbook security system tox

Last synced: 13 Oct 2025

https://github.com/05nelsonm/pin-authentication

An Android library that provides local PIN authentication for your application.

android android-library authentication security

Last synced: 16 Mar 2026

https://github.com/reconmap/documentation

Product documentation including admin, user and developer manuals

cybersecurity documentation hacktoberfest infosec manual pentesting saas security vulnerability

Last synced: 04 Mar 2026

https://github.com/cdimascio/express-openapi-validator-example

simple openapi validation examplewith express-openapi-validator

api express file-upload openapi request-validation response-validation security validation

Last synced: 28 Apr 2025

https://github.com/viadee/pentest4vaadin

Spider and analyze vaadin applications with OWASP ZAP - the app mediates between the two.

java penetration-testing proxy security shadow-dom vaadin

Last synced: 13 Oct 2025

https://github.com/msune/l2radar

An eBPF L2 neighbour tracker

ebpf l2 security sniffing

Last synced: 10 Jun 2026

https://github.com/mark-adams/gcp-ip-list

A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Platform (GCP).

gcp gcp-security golang security security-tools

Last synced: 23 Jan 2026

https://github.com/ruisiang/pow-phalanx

Controller for PoW Shield (a layer7 DDoS filter) providing multi-instance utilities.

controller cybersecurity ddos ddos-mitigation ddos-protection koa2 machine-learning network-security nodejs security typescript

Last synced: 12 Oct 2025

https://github.com/apertureless/wiviz

Wifi client probe analyzer & visualizer

security wifi

Last synced: 27 Oct 2025

https://github.com/quarkiverse/quarkus-antivirus

Virus scan files using ClamAV or VirusTotal

antivirus clamav file quarkus-extension security virustotal

Last synced: 24 Apr 2025

https://github.com/betagouv/sillon

A knowledge base and recommendations in the choices of implementation of a digital product within a French administration (but not only)

cicd devops dsfr figma french guide guidelines javascript nextjs nodejs postgresql prisma product project react security storybook testing trpc typescript

Last synced: 27 Jul 2025

https://github.com/cerberauth/openapi-oathkeeper

openapi-oathkeeper is a CLI for generating Ory Oathkeeper rules from an OpenAPI 3 contract and save a lot of time and effort, especially for larger projects with many endpoints or many services.

api-rest authorization cybersecurity golang oathkeeper openapi openapi3 ory ory-oathkeeper security swagger

Last synced: 14 Apr 2026

https://github.com/anvilsecure/hominoid

Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.

browser-extension perceptual-hashing phishing proof-of-concept security

Last synced: 07 Jan 2026

https://github.com/sciguy16/jwt-explorer

Decode, explore, and sign JWTs

jwt jwt-token security security-tools

Last synced: 11 Oct 2025

https://github.com/mhausenblas/aws-container-security-survey-2020

AWS container security survey 2020

2020 aws containers security survey

Last synced: 12 Apr 2025

https://github.com/brightdigit/stealthystash

A Swifty database interface into the Keychain Services.

keychain keychain-wrapper password security swift

Last synced: 21 Apr 2025

https://github.com/manuelberrueta/bst

🏴‍☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration tasks 😉

applicationsecurity appsec azure blueteam cloud containers dfir incident-response kubernetes offensive-security offensivesecurity redteam redteam-tools redteaming security threat-hunting threathunting

Last synced: 23 Jun 2025

https://github.com/hartwork/antijack

:ninja: seccomp-based anti-TTY-hijacking proof-of-concept (prevents TIOCSTI and TIOCLINUX)

c99 command-injection doas ioctl libseccomp linux seccomp seccomp-filter seccomp-filtering seccomp-tools security sudo syscall-filter syscalls tioclinux tiocsti tty

Last synced: 18 Sep 2025

https://github.com/peter-juhasz/aspnetcoresecurity

Security extensions for ASP.NET Core

asp-net content-security-policy dotnet security

Last synced: 22 Mar 2025

https://github.com/tarzan/leaked_passwords

Checking for leaked passwords through haveibeenpwned v2 API using the hash-range checker

elixir haveibeenpwned leaks password security

Last synced: 24 Jul 2025

https://github.com/antgroup/yasa-engine

YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.

antgroup program-analysis security taint-analysis

Last synced: 14 Sep 2025

https://github.com/ancat/meatball

A host monitoring proof of concept that uses python and ebpf to watch for bad behavior and optionally take action on it.

ebpf host-monitoring python security

Last synced: 06 May 2025

https://github.com/jbrower95/crop

ROP Payload Compiler

compiler rop rop-gadgets security

Last synced: 07 Jul 2025

https://github.com/supercowpowers/scp-labs

SCP Labs (Open Source Team for SuperCowPowers)

data-analysis data-science pandas python scikit-learn security

Last synced: 06 May 2025

https://github.com/cityssm/pdfflattener

PDF Flattener - Secure PDF documents by making floating redactions and form entries permanent.

flatten java pdf pdf-flattener pdf-forms pdfbox redaction security

Last synced: 26 Jun 2025

https://github.com/sysdiglabs/sysdig-operator

Sysdig agent Operator configure Sysdig platform in your Kubernetes cluster

kubernetes monitoring security sysdig

Last synced: 13 Jul 2025

https://github.com/lorddashme/php-simple-captcha

A simple captcha package that fit to any type of web application built on php.

anti-spam captcha free php security simple

Last synced: 13 Apr 2025

https://github.com/foxcpp/audit_pretty

Linux Auditing System logs pretty printer

linux-audit linux-security security

Last synced: 30 Oct 2025

https://github.com/sleventyeleven/kubernetes-harvester

Credential and sensitive information harvester for kubernetes environments.

devops devops-tools kubernetes kubernetes-harvester oscp security

Last synced: 12 Apr 2025

https://github.com/byt3n33dl3/novaoutcast

NOC is an Integration Bypasser, Change PoC Binary to quirks of working with the LLVM.

bypass bypassav docker linux macos security windows

Last synced: 20 Jul 2025

https://github.com/andresriancho/burp-proxy-search

Burp suite HTTP history advanced search

burp scanning search security statistics

Last synced: 10 Apr 2025

https://github.com/t0mer/safeurl

SafeUrl is a small and lite [FastAPI]( https://fastapi.tiangolo.com/) based web application intended to help us validate any URL safely before clicking it.

docker fastapi ipinfo python security spam virustotal

Last synced: 15 Apr 2025

https://github.com/gardener/diki

Diki is a compliance checker that aims to enhance the security posture of your Kubernetes clusters.

compliance compliance-checklist hardening kubernetes kubernetes-hardening reporting security stig stig-compliant

Last synced: 12 Apr 2025

https://github.com/jonlabelle/docker-nmap

Minimal Docker image with Nmap Network Security Scanner pre-installed.

alpine docker docker-image linux network nmap security

Last synced: 21 Mar 2025

https://github.com/anqorithm/fastapi-keycloak

This project demonstrates how to integrate Keycloak with a FastAPI application using Docker and Docker Compose for authentication.

authentication fastapi keycloak python security

Last synced: 31 Oct 2025

https://github.com/acatton/python-spm

:muscle: Simple and secure sub processes manager

clean-api for-humans injection python secure security shell subprocess

Last synced: 13 Apr 2025

https://github.com/ms140569/loki

Password Manager for the commandline

command-line-tool go golang password-manager security

Last synced: 28 Oct 2025

https://github.com/k4yt3x/nftables

K4YT3X's template nftables script.

firewall linux nft nftables security

Last synced: 29 Oct 2025

https://github.com/nwtgck/piping-chunk-web

📦 Chunked Stream File Transfer for Web Browser with End-to-End Encrypted

chunked-uploads end-to-end-encryption file-transfer piping-server security typescript vue

Last synced: 07 May 2025

https://github.com/the404hacking/wpscan

WPScan is a black box WordPress vulnerability scanner.

hacking-tool ruby scan scanner security security-scanner the404hacking wordpress wordpress-scan wpscan

Last synced: 13 May 2025

https://github.com/harryr/httphose

Mass HTTP brute forcer to detect directories and interesting technologies

beanstalk brute-force discover distributed docker http-client json scanner security

Last synced: 11 Apr 2025

https://github.com/rezmoss/sbomlyze

SBOM diff & analysis tool for software supply-chain security, integrity drift detection, and CI/CD enforcement

compliance cyclonedx dependency-graph devsecops diff drift-detection go sbom sbom-tool security software-supply-chain spdx supply-chain-security syft tools

Last synced: 18 Feb 2026

https://github.com/rigs-it/xanitizer-action

GitHub action to download and install Xanitizer, and to run a Xanitizer security analysis in a GitHub workflow.

action analysis security security-tools vulnerability-detection xanitizer

Last synced: 17 May 2026

https://github.com/shsingh/blackhat-tools

This repository contains tools made by completing exercises from various books on blackhat programming. The intent is to learn writing software in Typescript, Go, Rust and Python

blackhat go hacking pentesting redteam rust security typescript

Last synced: 11 Apr 2025

https://github.com/hudec117/sf-user-perm-report

Salesforce User Permission Report allows you to see a report of all the permissions a user has and where they are set.

admin chrome chrome-extension classic edge edge-extension extension lightning productivity salesforce security tool

Last synced: 31 Oct 2025

https://github.com/umutcamliyurt/anon-file-upload

A tool for uploading/downloading files anonymously with client-side encryption

aes-256-gcm anonymity client-side-encryption encryption-decryption file-upload opsec php privacy security

Last synced: 14 May 2025

https://github.com/openziti/ziti-browzer-core

Core componentry for the Ziti browZer ecosystem (used internally by ziti-browzer-runtime and ziti-sdk-browzer)

appsec browser netsec openziti security zero-trust zero-trust-network zero-trust-network-access zero-trust-security ztna

Last synced: 24 Jul 2025

https://github.com/ninofiliu/gettor-bot

A Signal chatbot to broadcast Tor bridges in countries where Tor relays are blocked/monitored

chatbot privacy security signalapp tor

Last synced: 30 Apr 2025

https://github.com/NeuraLegion/sslscan.cr

Crystal shard wrapping the rbsec/sslscan utility

crystal detection scanner security shard ssl tls vulnerabilities

Last synced: 14 May 2025

https://github.com/ollionorg/aws-landing-zone

Leverage Ollion's AWS Landing Zone to deploy a secure, compliant foundation with ease. The repository contains an implementation of a secure and compliant landing zone pattern that will help expedite cloud migration for an enterprise in a heavily regulated industry.

aws aws-foundation-security-best-practices aws-landing-zone aws-landing-zones cis-aws-benchmark cloud-compliance cloud-security compliance foundation nist800-53 opa pci-dss security security-foundation

Last synced: 07 Apr 2025

https://github.com/geminimir/promptproof-action

Deterministic LLM contract checks for CI. Replays recorded fixtures, enforces schema/regex/budget rules, generates HTML/JUnit/JSON reports, and comments on PRs. Zero live model calls in CI.

budgets ci fixtures github-action json-schema llm redaction regex security testing

Last synced: 07 Apr 2026

https://github.com/polyfony-inc/polyfony

Polyfony is an intuitive, light and powerful PHP micro-framework

cache console efficient framework locales micro-framework minimalism orm php profiler routes security

Last synced: 18 Dec 2025