An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/grapheneos/device_common

Common device sources.

android grapheneos security

Last synced: 07 Jul 2025

https://github.com/m-thirumal/oauth-authorization-server

New OAuth2.1 Authorization Server using Spring Boot & PostgreSQL

authentication oauth oauth2 oauth2-1 oauth2-server postgresql security spring-boot

Last synced: 14 Aug 2025

https://github.com/nimacodez/keygn

🪄 A Command Line Tool To Make random keys with different lengths for your different purposes.

authentication cli cmd decode encode hashing jwt jwt-token security token

Last synced: 14 Apr 2025

https://github.com/mikaelvesavuori/better-apis-workshop

Workshop and demo for improving API quality, stability, and observability.

apis aws demo learning observability quality security serverless stability workshop

Last synced: 21 Mar 2025

https://github.com/advanced-security/probot-security-alerts

Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts

ghas nodejs probot sample security security-alerts typescript

Last synced: 23 Oct 2025

https://github.com/veinar/envcloak

A secure and easy-to-use tool for managing sensitive data with built-in encryption, decryption, and key management. Protect your secrets during development, testing, and deployment with CLI command + Python library support.

cicd cicd-pipeline cli-tool decryption devops encryption encryption-decryption env environment-variables python-library secret-management secret-sharing secrets security sensitive-data-security tool tooling tools validation

Last synced: 11 Sep 2025

https://github.com/adrianlshaw/lightverifier

Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜

attestation hacktoberfest ima security security-audit tcg tpm tpm-quote

Last synced: 01 Apr 2025

https://github.com/yosaiproject/yosai_alchemystore

SQLAlchemy-enabled Account Store for Yosai that features a flat Role-Based Access Control (RBAC) data model

security sqlalchemy yosai

Last synced: 14 Jan 2026

https://github.com/jpcertcc/toolanalysisresultsheet_jp

分析ツール結果シート

security

Last synced: 09 Apr 2025

https://github.com/melonattacker/threat-thinker

AI-powered threat modeling that turns architecture diagrams into actionable risks

architecture diagrams python risk-analytics security security-tools threat-analysis threat-modelling

Last synced: 02 Apr 2026

https://github.com/reinershir/lui-auth

一个使用简单的安全防护、权限验证、身份验证工具,无复杂配置,只需依赖jar并简单配置即可使用,目前拥有功能:角色、菜单、权限集成管理,IP限流,内部服务双向验证、自动打印请求日志等。 A simple and secure protection tool that is easy to use, with permission verification and identity authentication. No complex configuration is required, just rely on the jar file and simple configuration to use it.

authentication-backend lui-auth modified-preorder-tree-traversal permission security

Last synced: 14 Jan 2026

https://github.com/checkmarx/ast-vscode-extension

The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

checkmarx checkmarx-ast security vscode-extension

Last synced: 02 Apr 2026

https://github.com/airlock/microgateway

Artifacts for Airlock Microgateway, a Kubernetes native WAAP (Web Application and API Protection) solution to protect microservices.

airlock cilium ergon gateway-api istio k8s kubernetes kubernetes-operator microgateway openshift security waap waf web-application-security

Last synced: 13 May 2026

https://github.com/cipherstash/encrypt-query-language

Index and search encrypted data in PostgreSQL with SQL

encryption encryption-in-use postgres postgresql security

Last synced: 09 Apr 2025

https://github.com/kasukusakura/kimiroyli

Kimiroyli 是一个致力于 JVM 安全的安全管理框架, 致力于保护整个系统不受恶意外部代码攻击 (WIP)

java javaagent jvm security

Last synced: 26 Apr 2025

https://github.com/nebulab/umarell

All in one Ruby static code analyzer

linter rails ruby security static-analysis

Last synced: 14 Apr 2025

https://github.com/thejefflarson/soundcheck

Simple security reviews for AI agents

llms security skills

Last synced: 10 Jun 2026

https://github.com/fortify/ssc-restapi-client

Communicate with Fortify Software Security Center through REST API in java, a swagger generated client

api api-client application-security fortify fortify-api fortify-ssc integration openapi security

Last synced: 08 Apr 2026

https://github.com/ko-ko-ko/php-assert

Fast flexible php assert

assert php security validation

Last synced: 11 Jan 2026

https://github.com/ctxz/mkauthdocs

A tool made to implement simple authentication on top of mkdocs builds.

auth authentication credentials login mkdocs security

Last synced: 21 Mar 2025

https://github.com/multiform-validator/docs

Multilingual library made for validation, various form fields, such as: email, telephone, password, cpf, cnpj, credit card, magic numbers for image mimetype validation and much more.

collaborate communityexchange filter form-validator github github-pages multiform-validator safe safety security security-tools student-vscode valid valid-fields validador validator

Last synced: 15 Apr 2025

https://github.com/fphammerle/docker-onion-service

hidden tor .onion service 🐳

docker network onion-service podman security tor

Last synced: 04 May 2025

https://github.com/prawee/cyber-security

Note for cyber security class

docker git security strapi

Last synced: 22 Sep 2025

https://tersesystems.github.io/ocaps/

Object capability (ocap) tools and macros for Scala.

access capabilities capability ocap scala security

Last synced: 23 Sep 2025

https://github.com/joshuaquek/quickencrypt

Easily generate RSA Public-Private Keypairs and use them for secure asymmetric one-way encryption and decryption! - npmjs.com/package/quick-encrypt

asymmetric-cryptography cryptography decrypt decryption encrypt encryption javascript nodejs npm-package rsa security

Last synced: 05 May 2025

https://github.com/yallxe/hogg

Common vulnerability scanning on steroids ☄️

dns exploit network proxy rust rust-lang scanner secrets security sniffer vulnerabilities webscanner

Last synced: 19 Jul 2025

https://github.com/sap-samples/cross-language-detection-artifacts

This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment, the list of identified malicious packages, and the scripts necessary to replicate and verify our results.

machine-learning open-source sample sample-code security

Last synced: 13 Apr 2025

https://github.com/akshatvg/vulnerability-testing-solutions

Website for testing and preventing different attacks like XSS, SQL Injection & Spoofing for Nasscom (ISAA) Project.

audit cyber-security security spoofing sql-injection testing vulnerability website xss

Last synced: 11 Apr 2025

https://github.com/rasoolsomji/django-security

Django is great! Here are some ways to make it safer

audit csrf cybersecurity django nginx owasp pentest python security vulnerabilities xss

Last synced: 14 Mar 2025

https://github.com/chadmcox/azure_ad_conditional_access_policies

Tools to help implement Conditional Access Policies in Azure AD

azuread azuread-b2b azuread-reporting conditional-access mfa security

Last synced: 28 Jun 2025

https://github.com/rsc-dev/ishtar

.NET applications hacking toolset

c-sharp dll-injection hacking security

Last synced: 23 Jul 2025

https://github.com/zaproxy/action-af

A GitHub Action for running ZAP Automation Framework plans

actions dast devsecops github-actions security

Last synced: 30 Jun 2025

https://github.com/jasona7/ChatCVE

ChatCVE is an app using the Langchain SQL Language Tool to give a LLM prompt experience to CVE and SBOM DevSecOps Triage Data

devsecops python sbom security

Last synced: 04 Apr 2025

https://github.com/briandfoy/cpan-audit

Check CPAN modules for known security vulnerabilities

cve perl perl-module perl-tool security security-audit

Last synced: 13 Apr 2025

https://github.com/mindpatch/pmg

Extract parameters/paths from urls

bugbounty bugbounty-tool bughunting python regex security

Last synced: 12 Jul 2025

https://github.com/ntkme/security-trust-settings-tools

:lock: OS X Keychain Trust Settings Tools.

certificate macos security

Last synced: 28 Jul 2025

https://github.com/rapidlua/sandals

A lightweight process isolation tool, requiring absolutely no privileges to run

cgroups-v2 chroot linux linux-namespaces process-isolation sandbox seccomp-bpf security

Last synced: 30 Mar 2025

https://github.com/sjinks/ssh-honeypotd

A low-interaction SSH honeypot written in C

honeypot security ssh ssh-honeypot ssh-honeypotd

Last synced: 27 Jun 2025

https://github.com/brunocampos01/encrypt-file

:lock: :page_with_curl: CLI to encrypt or decrypt files with only one command.

aes aes-encryption aes-gcm decrypt decryption encrypt encryption encryption-decryption pbkdf2 pip python security security-tools sha256

Last synced: 01 Sep 2025

https://github.com/Azure/AzureKeyVault

R interface to Azure Key Vault

azure azure-key-vault azure-sdk-r r security

Last synced: 29 Jul 2025

https://github.com/maximthomas/blazewall

Open Source Single-Sign-On and Access Management platform built in microservice architecture

authentication authorization cloud-native gateway-service go go-gin golang information-security microservice microservices security sso sso-solution

Last synced: 15 Dec 2025

https://github.com/cerbos/demo-rest

Demo of using Cerbos to secure a Go REST API.

access-control cerbos go policy rest-api security

Last synced: 18 Sep 2025

https://github.com/wookey-project/manifest

The WooKey project manifest repository, use repo init -u https://github.com/wookey-project/manifest.git

embedded iot security wookey

Last synced: 22 Feb 2026

https://github.com/sinewaveai/prooflayer-rules

Open-source runtime security rules engine for MCP servers and AI agents. Detects prompt injection, command injection, jailbreaks, and data exfiltration.

ai-agents ai-security mcp mcp-protocol prompt-injection runtime-security security

Last synced: 16 Jun 2026

https://github.com/sighupio/trivy-offline

Trivy offline builder. Fits perfectly in your CI System

cicd drone hacktoberfest quay sdlc security trivy

Last synced: 11 Mar 2025

https://github.com/cocopuff2u/macos_admin_scripts

macOS Admin Script/Tool Collection

jamf macos mdm scripts security

Last synced: 01 Apr 2026

https://github.com/sassman/srp6-rs

A safe implementation of the secure remote password authentication and key-exchange protocol (SRP and SRP6a)

authentication cryptography pki protocol rust secure-remote-password security srp srp-6a

Last synced: 19 Apr 2026

https://github.com/vatshayan/final-year-project-steganography

Steganography is the technique of hiding secret data within an ordinary, non-secret, file or message in order to avoid detection; the secret data is then extracted at its destination.

btech-project capstone-project cipher college-project cryptography cryptography-project final-project final-projects final-year-project finalyearproject mtech-project project project-report research-paper-project security semester-project steganography university-project university-projects

Last synced: 28 Oct 2025

https://github.com/valpackett/pysectools

A small Python library that contains various security things

python security unix

Last synced: 22 Apr 2025

https://github.com/dl-solarity/audits

Distributed Lab public Solidity audits

auditing security solarity solidity

Last synced: 31 Oct 2025

https://github.com/adityaoberai/rolebasedauthsample

ASP.NET Web API sample to showcase RBAC via JWTs in .NET 8

authentication dotnet dotnet-8 jwt security

Last synced: 06 May 2025

https://github.com/tjenkinson/gh-action-auto-merge-dependency-updates

A GitHub action that will automatically approve and merge a PR that only contains dependency updates, based on some rules. Also possible to disable the merge and use the `success` output to use in combination with other actions.

action automation automerge dependabot dependency gh-action merge security updater

Last synced: 06 Apr 2025

https://github.com/sripwoud/ethernaut

🧑‍🚀 Web3/Solidity based wargame, played in the Ethereum Virtual Machine

blockchain ctf ethereum ethernaut evm forge foundry hack security solidity web3

Last synced: 16 Mar 2026

https://github.com/bwireman/go-over

A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!

audit beam cli dependencies dependency elixir erlang ghsa gleam javascript security security-audit security-tools tools vulnerable

Last synced: 28 Oct 2025

https://github.com/beevik/nts

network time security client package for go

go ntp ntp-client ntp-protocol nts nts-client nts-protocol security time

Last synced: 12 Apr 2025

https://github.com/neuralegion/sslscanner

SSL Scanner written in Crystal

crystal openssl scanner security ssl

Last synced: 07 May 2025

https://github.com/akaunting/signed-url

Signed (unique) URL package for Laravel

laravel php security signed unique url

Last synced: 07 Jul 2025

https://github.com/storopoli/dead-man-switch

Rust no-BS Dead Man's Switch library, TUI and Web Interface

dead-man-switch privacy security tui web

Last synced: 02 Feb 2026

https://github.com/ph4r05/tinyosids

Intrusion Detection System (IDS) for Wireless Sensor Networks (WSN)

ids iot research security tinyos

Last synced: 11 Jul 2025

https://github.com/marvinjwendt/traefik-guardian

👮 A dead simple forward auth provider to protect Traefik services with passwords.

auth auth-provider authentication docker docker-image golang hacktoberfest security traefik traefik-middleware user-authentication

Last synced: 15 Dec 2025

https://github.com/lahirulhr/nova-lock-screen

Simple lock screen feature to Laravel nova dashboard

laravel lock nova php security

Last synced: 11 Jun 2025

https://github.com/artginzburg/2fatotray

 Copy 2FA tokens in a click (macOS)

2fa app macos security totp

Last synced: 31 Aug 2025

https://github.com/ait-testbed/attackmate

AttackMate is an attack orchestration tool that executes full attack-chains based on playbooks.

api attack automation automation-framework cybersecurity exploit metasploit orchestration pentest python redteam rootkit security sliver testbed training

Last synced: 22 Apr 2025

https://github.com/safedep/gryph

The AI coding agent audit trail tool

ai-agents ai-developer-tools claude-code gemini-cli security

Last synced: 24 Feb 2026

https://github.com/openagentidentityprotocol/agentidentityprotocol

Agent Identity Protocol - Zero-trust security layer for AI agents. Policy enforcement proxy for MCP with Human-in-the-Loop approval, DLP scanning, and audit logging.

agent-identity-protocol ai-agents ai-safety cursor-ide dlp golang human-in-the-loop llm mcp model-context-protocol policy-enforcement security zero-trust

Last synced: 29 May 2026

https://github.com/avast/authenticode-parser

Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.

cryptography security

Last synced: 07 Apr 2025

https://github.com/dev-sec/chef-jenkins-hardening

⛔ DEPRECATED: A secure jenkins installation

chef chef-cookbook devops hardening jenkins security

Last synced: 01 Apr 2025

https://github.com/000pp/extensions-wordlist

🔍 Improve your files enumeration with specific extensions!

extension extensions files pentest security wordlist wordlists

Last synced: 12 Nov 2025

https://github.com/vita-group/random-shuffling-backdoordetect

[NeurIPS 2022] "Randomized Channel Shuffling: Minimal-Overhead Backdoor Attack Detection without Clean Datasets" by Ruisi Cai*, Zhenyu Zhang*, Tianlong Chen, Xiaohan Chen, Zhangyang Wang

backdoor-attacks deep-learning python pytorch security trojan

Last synced: 19 Apr 2025

https://github.com/syss-research/icebreaker-glitcher

Simple voltage glitcher implementation for the iCEBreaker FPGA board

fpga glitching ice40 ice40up5k icebreaker it-security security security-tools security-vulnerability tool

Last synced: 04 Sep 2025

https://github.com/offa/keygen

KeyGen is a generator for keys and passwords.

c c11 cmake key-generator openssl password-generator security

Last synced: 14 May 2025

https://github.com/thomasmerz/pihole-wireguard-knowhow

My Setup for Pi-hole at home and in the cloud to be used with WireGuard for the whole family.

anti-ads anti-malware anti-spyware anti-surveillance anti-tracking dns privacy security vpn

Last synced: 01 Apr 2025

https://github.com/paulveillard/cybersecurity-ssrf

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

cybersecurity mitigation remediation security security-tools server-side server-side-request-forgery ssrf vulnerabilities vulnerability vulnerability-assessment vulnerability-detection vulnerability-management

Last synced: 08 Oct 2025

https://github.com/azureanimations/azureanimations.github.io

Azure Animations, where we make hard-to-understand Azure cloud concepts easier and more fun to learn!

ai azure copilot devops microsoft openai security

Last synced: 30 Jun 2025