An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/repository-service-tuf/repository-service-tuf-cli

Repository Service for TUF: Command Line Interface

cli hacktoberfest python security supply-chain tuf

Last synced: 14 Dec 2025

https://github.com/pobyzaarif/hansipy

apache log access analyzer

python security webserver website

Last synced: 30 Apr 2025

https://github.com/kyoshidajp/bundler-alive

Are your gems alive? bunder-alive checks if gems in a RubyGem's Gemfile.lock are active.

bundler-alive dependency-checker ruby security security-tools

Last synced: 09 Jul 2025

https://github.com/combateafraude/flutter

combateafraude organization's Flutter solutions

authentication combate-a-fraude dart flutter security

Last synced: 28 Jun 2025

https://github.com/noamt/python-mongo-sanitizer

A component that sanitizes MongoDB queries against injection attacks

mongodb python security

Last synced: 10 Jul 2025

https://github.com/t94j0/ctfnmap

An easy way to manage nmap scans during a CTF

capture-the-flag memes nmap scanner security

Last synced: 01 Jul 2025

https://github.com/netflix-skunkworks/swag-api

REST API and UI for SWAG data

security

Last synced: 05 Oct 2025

https://github.com/munkkeli/p4ssw0rd

Hash passwords with SHA-256 + bcrypt in Node.js

bcrypt hacktoberfest nodejs password security sha256 typescript

Last synced: 04 May 2025

https://github.com/nleiva/capirca_acl

This collection includes a module (translate) to use Capirca from your Ansible playbooks.

acl ansible ansible-galaxy ansible-modules arista cisco iptables juniper nftables paloalto security

Last synced: 12 Apr 2025

https://github.com/fatihhcelik/pathfinder

PathFinder is a tool designed to visualize call graphs of source code.

applicationsecurity codereview cybersecurity golang hacking-tool security vulnerability

Last synced: 13 Apr 2025

https://github.com/inlibre/inheir.ai

Experimental prototype for property inheritance and dispute management

accessibility azure fastapi foss inclusion legaltech maplibre mongodb nextjs privacy python responsible-ai security techforgood

Last synced: 02 Feb 2026

https://github.com/k4yt3x/nftables

K4YT3X's template nftables script.

firewall linux nft nftables security

Last synced: 29 Oct 2025

https://github.com/nwtgck/piping-chunk-web

📦 Chunked Stream File Transfer for Web Browser with End-to-End Encrypted

chunked-uploads end-to-end-encryption file-transfer piping-server security typescript vue

Last synced: 07 May 2025

https://github.com/psecio/rift

A vulnerable application for teaching the basics of web application security

application security teaching vulnerability

Last synced: 11 Apr 2025

https://github.com/tomiok/vaultik

Vaultik is a cloud agnostic secret manager that helps developers to create, read, update and delete variables and easily export to a remote location or any cloud. Avoid using environment variables and these are fully encrypted.

cloud cloud-computing cobra encryption environment-variables go golang secret secret-management secrets secrets-management secure secure-storage security security-tools

Last synced: 28 Oct 2025

https://github.com/chrissmartin/onvifscout

A comprehensive ONVIF device discovery and analysis tool that helps you find, authenticate, and examine ONVIF-compatible devices on your network.

hacktoberfest home-assistant home-automation onvif onvif-camera onvif-discovery pypi security security-camera

Last synced: 06 Jul 2025

https://github.com/dominicbreuker/goncat

netcat-like CLI tool with advanced features for bind/reverse shells

bind-shell golang offsensive-security pentesting port-forwarding pty reverse-shell security tunneling

Last synced: 11 Apr 2025

https://github.com/zeyu-li/tryhackme

Hacker Man 👨‍💻

hacking security tryhackme vulnversity writeups

Last synced: 19 Mar 2026

https://github.com/tspascoal/dependabot-alerts-helper

A set of (simple) scripts to help manage dependabot alerts

dependabot scripts-collection security

Last synced: 07 May 2025

https://github.com/samiahmedsiddiqui/prevent-xss-vulnerability

This WordPress plugin enhances website security by preventing Cross-Site Scripting (XSS) vulnerabilities. It blocks and encodes malicious characters in URLs, escapes HTML in `$_GET` variables, and provides customizable settings for website owners.

encoding escape-html reflected-xss-vulnerabilities reflective reflective-injection security security-vulnerability self-xss wordpress xss xss-detection xss-vulnerability

Last synced: 12 Apr 2025

https://github.com/pforret/bumpkeys

Upgrade your SSH keys for better security

bash bashew crypto ecdsa ed25519 rsa security security-audit ssh ssh-key

Last synced: 10 Apr 2025

https://github.com/badchars/cve-mcp

23-tool MCP server for CVE & vulnerability intelligence. NVD, EPSS, CISA KEV, GitHub Advisory, OSV — unified in one server. Risk scoring, bulk triage, exploit search. 2 dependencies, runs with npx.

ai-security cisa claude cve cvss cybersecurity epss ghsa kev mcp model-context-protocol nvd osv pentesting security vulnerability vulnerability-intelligence

Last synced: 30 Jun 2026

https://github.com/connectFree/ZigZag

Noise Framework implementation in Zig Language for use in EVER/IP and WireGuard

crypto cryptography ever ever-ip everip noise noise-protocol noise-protocol-framework security wireguard zig

Last synced: 06 May 2025

https://github.com/sk3pp3r/devsecops-arsenal

A curated hub of DevSecOps tools to secure workflows, optimized for CI/CD and more

cybersecurity devops devsecops devsecops-pipeline infrastructure sdlc security ssdlc

Last synced: 12 Jan 2026

https://github.com/codestates-seb/seb39_main_013

고오급 남성 쇼핑몰 STATE MALL 입니다 https://statemall.click/

jpa mysql react reactquery security spring-boot styled-components

Last synced: 13 Apr 2025

https://github.com/actions-rust-lang/audit

Audit Rust Dependencies using the RustSec Advisory DB

cargo-audit ci github-actions hacktoberfest rust rust-lang rustsec security

Last synced: 10 Apr 2025

https://github.com/alphaville/safemsg

SafeMessage - Secure web-based message exchange system

encryption javascript message-exchange secure-by-default security

Last synced: 10 Apr 2025

https://github.com/shayanzare/admin-page-finder

This is a simple script to finding website admin page.

admin-page-finder hacking hacking-tool ruby security

Last synced: 28 Mar 2025

https://github.com/echo-devim/pyjacktrick

Python module hijacking POC

code-execution hijacking python security

Last synced: 27 Mar 2025

https://github.com/issif/falco-rules-explorer

A dashboard to explore Falco Rules

falco security

Last synced: 07 Mar 2026

https://github.com/kuntoaji/enkrip

encrypt & decrypt Active Record attributes with Message Encryptor

activemodel activerecord activesupport decryption encryption gem message-encryptor ruby ruby-gem ruby-on-rails security

Last synced: 21 Jun 2025

https://github.com/jonhadfield/sts

Simplify working with AWS STS credentials and MFA

2fa aws aws-cli aws-sdk cli golang iam mfa security sts

Last synced: 15 Jul 2025

https://github.com/connorjburton/senvf

A secure & sensible replacement for process.env

javascript nodejs process-env security supply-chain

Last synced: 10 Jul 2025

https://github.com/everdrone/genpasswd2

iOS Style Strong Password Generator

cli cli-app ios password password-generator python3 safari secure security

Last synced: 14 Jan 2026

https://github.com/konstruktoid/docker-covenant

Enforces a basic container argument policy

docker security

Last synced: 11 Mar 2025

https://github.com/lockerpm/maily

A privacy-first email solution that provides an email alias @maily.org to hide the original email address when using the internet

aliases email-alias email-privacy email-protection email-security end-to-end-encryption locker password-manager private-relay security

Last synced: 06 Oct 2025

https://github.com/antoinerondelet/uxss-vulnerabilities-research

Some research on UXSS vulnerabilities in web browsers

browser security uxss-vulnerabilities web web-security

Last synced: 09 Jul 2025

https://github.com/ArtemGord1728/KeyLogger

A simple keylogger that records keystrokes on the computer keyboard, movement and mouse clicks, and so on.

c-plus-plus hacking-tool security visual-studio

Last synced: 11 Mar 2025

https://github.com/agrim123/gatekeeper

Authentication and authorization oriented tool allowing users to ssh to a machine without giving them access to private keys.

bastion devops golang security ssh ssh-server

Last synced: 12 Mar 2026

https://github.com/dye-tech/gatekey

GateKey is a zero-trust VPN solution that wraps OpenVPN. Users authenticate via their company's identity provider (Okta, Azure AD, etc.) and get short-lived VPN credentials automatically. No passwords to remember, no certificates to manage.

helm identity-management kubernetes oidc openvpn security self-hosted sso vpn wireguard zero-trust

Last synced: 30 May 2026

https://github.com/ozbillwang/keycloak-compose

Run keycloak and keycloak cluster with docker compose - Up and Running in Seconds

authentication devops docker docker-compose keycloak keycloak-cluster security

Last synced: 25 Apr 2025

https://github.com/tikajhq/passwrd.in

A secure & simple password generator, that makes life easy.

encryption hash password password-generator passwrd security security-tools sys-admin

Last synced: 27 Feb 2025

https://github.com/jon-becker/research

This repository contains research papers & studies that I have worked on or am currently working on.

blockchain erc ethereum nft research security security-audit solidity

Last synced: 25 Mar 2025

https://github.com/mishal/jwt

JWT (JSON Web Tokens) for PHP

json jwt php security webtoken

Last synced: 09 Mar 2026

https://github.com/unlock-security/wshell

A handy interactive shell through {code,command,template} injection

ctf-tools penetration-testing penetration-testing-tools rce security security-tools shell webshell

Last synced: 18 Jan 2026

https://github.com/turbot/steampipe-mod-terraform-azure-compliance

Run compliance and security controls to detect Terraform Azure resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

azure compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 22 Apr 2025

https://github.com/dbus2/zbus_polkit

PolicyKit zbus proxy

policykit security unix zbus

Last synced: 07 Oct 2025

https://github.com/pm6422/luix-passport

This project provides you a standard auth2 server and client configuration powered by Spring Boot 3 with the ability to authenticate login and using PostgreSQL DB as datastore.

java oauth2 security spring spring-boot

Last synced: 17 Jan 2026

https://github.com/listendev/lstn

A CLI tool to analyze the behavior of your dependencies using listen.dev

behavioral-analysis dependencies npm o11y security software-supply-chain-security

Last synced: 05 Sep 2025

https://github.com/vaibhavpandeyvpz/jweety

Simple JWT (RFC 7519) encoding/decoding and validation library, for PHP >= 5.3.

authentication jsonwebtoken jwt php security

Last synced: 24 Apr 2025

https://github.com/built-fast/phpstan-sensitive-parameter

PHPStan extension for detecting parameters that should use SensitiveParameter

code-quality php phpstan phpstan-extension security sensitive-parameter static-analysis

Last synced: 13 Jan 2026

https://github.com/mikkoparkkola/nowifi

No WiFi? Now WiFi. One command. 27 techniques. Bypass any captive portal.

bypass captive-portal cli go golang hacking linux macos network-security penetration-testing security wifi wifi-hacking

Last synced: 31 May 2026

https://github.com/anatol/tang.go

Pure Golang implementation of server-side ECMR exchange functionality (Tang server)

clevis security tang

Last synced: 06 Jul 2025

https://github.com/turbot/flowpipe-mod-aws

AWS pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect AWS to the people, systems and data that matters.

automation aws aws-cli cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines security workflow workflow-automation workflow-engine

Last synced: 03 Jul 2025

https://github.com/cipherstash/protectjs

Encrypt and protect data using industry standard algorithms, field level encryption, a unique data key per record, bulk encryption operations, and decryption level identity verification. Powered by CipherStash Encryption.

data data-security encryption javascript postgres postgresql security typescript

Last synced: 29 Oct 2025

https://github.com/Archetypum/theSuffocater

theSuffocater is an extensible module manager/collection on UNIX admin scripts that allows you to quickly harden your server and deploy services in few clicks.

bash bsd cybersecurity cybersecurity-tools foss gnu gnu-linux linux python python3 security security-automation security-tools server server-side shell unix

Last synced: 24 Mar 2025

https://github.com/geritol/write-guard

Github Action to enforce file level write access for monorepos

access-control github-actions monorepos security

Last synced: 14 Jan 2026

https://github.com/ryru/hackingexposed

Kurs Hacking Exposed an Juventus Technikerschule HF

education hacking security websecurity

Last synced: 28 Apr 2025

https://github.com/ricco386/cyber501x-cybersecurity-fundamentals

RITx: CYBER501x Cybersecurity Fundamentals - Personal study notes

mooc security study-notes

Last synced: 12 Apr 2025

https://github.com/webinarium/symfony-lazysec

Symfony library with a bunch of security related features.

php security symfony

Last synced: 11 Jun 2025

https://github.com/edvincodes/instagramunfollowers

Instagram Unfollowers 2026: Free Script to see who isn't following you back. Safe, Open Source & No Login required. Works on Mobile & Desktop.

automation instagram instagram-follower instagram-followers instagram-following instagram-tool instagram-unfollowers javascript open-source privacy script security unfollow unfollowers

Last synced: 02 Apr 2026

https://github.com/archetypum/thesuffocater

theSuffocater is an extensible module manager/collection on UNIX admin scripts that allows you to quickly harden your server and deploy services in few clicks.

bash bsd cybersecurity cybersecurity-tools foss gnu gnu-linux linux python python3 security security-automation security-tools server server-side shell unix

Last synced: 27 Feb 2026

https://github.com/contextforge-org/cpex

A composable enforcement framework for AI agents and toolchains

a2a agents ai extensibility framework hooks library llm mcp plugins safety security tools

Last synced: 27 Jun 2026

https://github.com/potato-industries/dartrs

portable dart based reverse shell

dart reverse-shell security

Last synced: 24 Oct 2025

https://github.com/rezmoss/network-vulnerability-scanner

Build a network vulnerability scanner from scratch in Go, port scanning, service detection, and vulnerability identification. Full walkthrough

cybersecurity go golang infosec networking penetration-testing port-scanner security tutorial vulnerability-scanner

Last synced: 12 Jun 2026

https://github.com/mxrcode/taskguard

Simple and Secure To-Do List App with Full Encryption (ChaCha20-Poly1305 & AES-256-CBC)

cpp notebook notes open-source opensource secure security taskguard todo todo-list todolist

Last synced: 24 Oct 2025

https://github.com/rifuki/dokuru

Agent-based Docker security audit platform with CIS Benchmark v1.8.0 compliance. Real-time WebSocket monitoring, automated vulnerability scanning, and interactive remediation

audit cis-benchmark compliance container container-security docker security

Last synced: 28 Jun 2026

https://github.com/fenix-hub/godot-engine.otp

Godot Engine plugin to generate RFC4226 and RFC6238 compliant One Time Passwords in GDScript.

2fa auth gdscript godot godot-engine hotp mfa otp security totp

Last synced: 05 Mar 2026

https://github.com/katexochen/govulncheck-nixpkgs

Scanning nixpkgs for vulnerabilities in Go packages

go golang nix nixos nixpkgs security

Last synced: 26 Oct 2025

https://github.com/dhruvpatel-7/loginregister-try

Login and register In Angular using Api , Validation , JWT token and refresh token

angular jwt-authentication refresh-token security

Last synced: 04 Oct 2025

https://github.com/k4yt3x/ssh_config

K4YT3X's Hardened OpenSSH Client Configuration

hardening linux openssh security ssh

Last synced: 29 Oct 2025

https://github.com/umutcamliyurt/Amnezichat

An encrypted and anti-forensic web chat server

anonymity anti-forensics counter-forensics forensics opsec privacy rust security

Last synced: 14 May 2025

https://github.com/ongoingai/gateway

Headless, OpenAI-compatible AI gateway in Go. Multi-tenant auth, tracing, cost tracking, rate limits, and optional PII redaction. Single binary, self-hosted, audit-ready by design.

ai-gateway audit-logs cost-tracking go golang llm-gateway observability openai-compatible opentelemetry pii-redaction policy-enforcement privacy rate-limiting security tracing

Last synced: 24 Feb 2026

https://github.com/turbot/steampipe-export

Steampipe Export is a zero-ETL CLI to fetch data from cloud services and APIs. Hundreds of plugins with thousands of documented examples.

aws azure backup data devsecops etl gcp golang kubernetes security steampipe steampipe-engine zero-etl

Last synced: 31 Jul 2025

https://github.com/sam-k/pager-sec

Hacking hospital pagers, then building an encrypted solution.

arduino encryption pagers sdr security

Last synced: 02 Aug 2025