An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/1homsi/gorisk

Supply-chain risk intelligence that maps what your dependencies can do

cli cve dependency-analysis github-action go golang security static-analysis supply-chain

Last synced: 24 Feb 2026

https://github.com/masterbpro/argus

Argus is an eBPF-based monitoring and management tool delivering real-time insights into system performance. Designed for flexibility, efficiency, and security, it’s an ideal solution for developers and administrators seeking lightweight tools for event analysis and debugging.

audit bpf ebpf infrastructure kubernetes linux linux-kernel network sdn security

Last synced: 15 Apr 2025

https://github.com/nugget/rickroll

Try `telnet macnugget.org`

network-service security troll

Last synced: 03 Jan 2026

https://github.com/bitsofinfo/testssl.sh-processor

Wrapper for concurrent batch processing of testssl.sh commands

batch continuous-integration security ssl test testssl tls

Last synced: 13 Apr 2025

https://github.com/grapheneos/platform_system_sepolicy

Base SELinux policy (extended by per-device repositories)

android grapheneos privacy security

Last synced: 13 Apr 2025

https://github.com/ventz/docker-cif

CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)

cifs forensic-analysis forensics intel intelligence security threat-hunting threat-sharing

Last synced: 16 Sep 2025

https://github.com/hotaydev/audit-export

A handy tool to export npm audit results to a fully offline HTML page for a better view of your project's vulnerabilities.

audit npm-audit packages security vulnerabilities

Last synced: 15 May 2025

https://github.com/a3r0id/httpscan

Scan a host for open HTTP ports and gain information about the services present.

crawler hacking hacking-tool http low-level penetration-testing pentest pentesting portscan portscanner scan scanner scanner-web scraper security service-discovery

Last synced: 06 Apr 2025

https://github.com/lovasoa/samsung-email-password-decrypt

Decrypt encrypted passwords in EmailProvider.db on samsung phones.

android cryptography decoder forensics pasword samsung security

Last synced: 24 Mar 2025

https://github.com/sap-samples/appgyver-auth-flows

SAP Cloud Identity and XSUAA authentication samples for SAP AppGyver. This repository shows how to apply OAuth 2.0 authorization and token flows to your SAP AppGyver apps.

authentication btp-use-case-factory cloud-foundry integration pkce sample sample-code sap-appgyver sap-btp sap-cap sap-cloud-identity sap-ias sap-xsuaa security

Last synced: 31 Aug 2025

https://github.com/dkosmari/gnome-shell-extension-totp

A GNOME Shell extension to generate Time-based One-Time Passwords (TOTP aka Time-based OTP) for websites that use 2FA.

2fa 2factor cryptography gnome gnome-shell gnome-shell-extension javascript otp otp-generator otpauth security totp

Last synced: 21 Aug 2025

https://github.com/gcmurphy/checksec

Elf checksec in Go.

checksec elf go security

Last synced: 13 Apr 2025

https://github.com/cr0hn/nginx-wordpress-docker-sec

Anti-hacking tools deployment config of Nginx for Wordpress

hacking hardening nginx nmap plecost security wordpress wp-scan wp-scanner

Last synced: 25 Jun 2025

https://github.com/shopify/seer-prototype

Security Expert Elicitation of Risks

elicitation expert-elicitation security

Last synced: 04 Oct 2025

https://github.com/secure-software-engineering/authcheck

Analysis for access-control vulnerabilities in Java Spring Security applications.

access-control authentication authorization java security soot springframework

Last synced: 10 Apr 2025

https://github.com/JChristensen/usb-condom

A little something for the tinfoil hat crowd.

security tinfoil-hat usb

Last synced: 17 Jul 2025

https://github.com/netguru/mobile-security-review

Security review guidelines for mobile projects

android ios owasp security

Last synced: 11 Sep 2025

https://github.com/anqorithm/saudi-cert-api

This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.

alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities

Last synced: 29 Jun 2025

https://github.com/brosck/farllen

「🚪」Port forwarding tool to gain access to internal devices

c forwarding hacking network pivot port security tool

Last synced: 06 May 2025

https://github.com/eth-sri/autobaxbuilder

Reproduction package for AutoBaxBuilder, a framework to build new BaxBench tasks from scratch

backend-service baxbench llms rest-api security vulnerabilities

Last synced: 09 Jul 2026

https://github.com/teverett/fbsd-secured

Ansible playbook to harden FreeBSD installations

ansible freebsd security

Last synced: 22 Mar 2025

https://github.com/peppelinux/django-audit-wazuh

Django middleware and signals for handling security events

django loganalysis ossec ossec-wazuh security siem wazuh

Last synced: 23 Mar 2025

https://github.com/ansible/ansible-sign

The `ansible-sign` utility for signing and verifying Ansible project directory contents.

ansible ansible-dev-tools awx cryptography gpg security

Last synced: 01 Aug 2025

https://github.com/thecyberarcher/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 13 Apr 2025

https://github.com/epsylon/paranoia-browser

pArAnoIA - Tiny "Secure" Browser

browser cryptography privacy security toolkit

Last synced: 29 Jun 2025

https://github.com/zuazo/dradis-docker

A Docker image with Dradis: A collaboration and reporting platform for IT security experts.

devops docker dradis minimal repository security

Last synced: 13 Apr 2025

https://github.com/grapheneos/platform_external_pdfviewer

PdfViewer app prebuilt using the latest official release of the PdfViewer app.

android grapheneos pdf pdf-viewer security

Last synced: 13 Apr 2025

https://github.com/0x4f53/GetPerms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 11 Apr 2025

https://github.com/sercanarga/ipmap

ipmap is an open source, cross-platform and powerful network analysis tool.

ipmap linux macos security windows

Last synced: 10 Mar 2026

https://github.com/mam-dev/security-constraints

Fetches security vulnerabilities and creates pip-constraints based on them.

dependencies pip python security supply-chain-security

Last synced: 01 Jul 2025

https://github.com/pahrohfit/sanic-beskar

Strong, Simple, and Precise, (and now async!) security for Sanic APIs

authentication authorization python python3 sanic security

Last synced: 05 May 2025

https://github.com/kicksecure/gpg-bash-lib

gpg file verification bash library, addresses comprehensive threat model, that covers file name tampering, indefinite freeze, rollback, endless data attacks, etc.

bash-scripts diagnostic-output gpg security verification

Last synced: 19 Apr 2025

https://github.com/orsinium-labs/flake8-warnings

Python linter (flake8, pylint, CLI) that warns you about using deprecated modules, classes, and functions

clean-code code-quality flake8 flake8-extension flake8-extensions flake8-plugin flake8-plugins linter pylint python python3 qa security

Last synced: 15 Apr 2025

https://github.com/rexs-io/blocksec2go-ethereum

Wrapper for blocksec2go allowing easy hardware-based signing of Ethereum transactions

blockchain blocksec2go ethereum hardware-wallet security

Last synced: 02 Apr 2026

https://github.com/socialgouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 23 Feb 2026

https://github.com/thotypous/operagbas

Alternative "security" module for Brazilian banks

banking-applications security

Last synced: 12 Oct 2025

https://github.com/tomwechsler/cyber_and_information_security_knowledge_base

A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.

cybersecurity information-security knowledge-base security

Last synced: 13 Feb 2026

https://github.com/groupe-edf/watchdog

Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.

ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security

Last synced: 14 Jan 2026

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/shadowjonathan/dustls

Pure-Rust DTLS

dtls rust rustls security tls

Last synced: 14 Oct 2025

https://github.com/ansiblebook/ansible_role_ssh

🗝 Improve the security of the SSH server beyond "National Security"

almalinux centos-stream crypto-policies cryptography debian-linux rhel8 rocky-linux security sshd-hardening ubuntu2004

Last synced: 10 Apr 2025

https://github.com/raforg/libslack

A UNIX/C library of general utilities for programmers with Slack

bsd c daemon daemonize debian freebsd library linux macos macosx netbsd openbsd posix redhat security svr4 ubuntu unix

Last synced: 16 Oct 2025

https://github.com/Supersonic/Wallbreak

Exploit app for CVE-2021-39670 and CVE-2021-39690, two permanent denial-of-service vulnerabilities in Android's wallpaper system

android cve exploit security vrp

Last synced: 10 Mar 2025

https://github.com/ffmancera/ping_of_death

Some scripts to do a ping of death attack.

ddos-attacks networking python3 scapy security

Last synced: 09 Oct 2025

https://github.com/tot-ra/graphql-query-cost

Graphql query cost calculation

graphql security

Last synced: 10 Mar 2026

https://github.com/grapheneos-archive/device_google_coral

Pixel 4 and Pixel 4 XL device sources.

android grapheneos security

Last synced: 13 Apr 2025

https://github.com/grapheneos-archive/nginx-rotate-session-ticket-keys

Session ticket key rotation scripting / systemd units for nginx to work around the lack of built-in support. This may eventually be extended to support syncing keys across a group of servers providing the same service.

nginx privacy security

Last synced: 09 May 2025

https://github.com/utsanjan/ffssdp-mitm

The SSDP engine in Firefox for Android (68.11.0 and below) can be tricked into triggering Android intent URIs with zero user interaction.

android android-intent-uri ffssdp firefox firefox-application intent-triggering lan maninthemiddle maninthemiddleattack mitm mitm-attacks newest security ssdp-engine vulnerability wifi-network

Last synced: 02 Jul 2025

https://github.com/daggerok/csrf-spring-webflux-mustache

This repository is contains example application using spring boot 2.0, webflux, spring security 5, reactive mongodb and mustache template engine: spring security 5, CSRF protection with mustache, spring webflux functional routes security, method security, authorization decision, etc

controller-advice csrf csrf-protection csrf-tokens css-grid css-grid-layout maven mongodb mustache reactive reactive-mongo reactive-programming security spring-boot spring-mvc spring-security spring-web spring-webflux webflux

Last synced: 20 Oct 2025

https://github.com/shaps80/abracadabra

A truly plug 'n' play solution for securing your code.

authentication code pin security touchid

Last synced: 11 Mar 2026

https://github.com/simeononsecurity/saps

A collection of scripts to assist System Adminsitrators

automation documentation mitigations powershell powershell-script security

Last synced: 23 Apr 2025

https://github.com/leonklingele/securetemp

Secure temporary directories and files in Go (ram disk, tmpfs)

ramdisk security temporary-directories temporary-files tmpfile tmpfs

Last synced: 07 May 2025

https://github.com/jbergstroem/hadolint-gh-action

A hadolint linter for github actions that provides code annotations (and more)

bash containers continuous-integration docker github-actions hadolint security

Last synced: 16 Mar 2025

https://github.com/wmeints/webauthn-sample

Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn

asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn

Last synced: 26 Jan 2026

https://github.com/paretosecurity/aremykeyssafe

Find out if your SSH keys are safe!

public-key security ssh

Last synced: 12 Jul 2025

https://github.com/ph-7/fake-admin-honeypot-v1.1

:honey_pot: New Honeypot Version: 1.2! :honeybee: This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honeypot for the attackers!

admin admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots ph7cms security

Last synced: 09 Apr 2025

https://github.com/leonjza/go-observe

🌌 Go-Observe: A command line Mozilla Observatory client written in Go

commandline go security web

Last synced: 05 Jul 2025

https://github.com/sap-samples/cloud-nodejs-oflm

This repository demonstrates how to implement security in a business scenario using the Node.js framework. The application is secured using the SAP BTP, Cloud Foundry environment Authorization and Trust Management Service.

cloud-foundry nestjs nodejs sample sample-code sap-btp-cloud-foundry sap-cloud-sdk security xsuaa

Last synced: 13 Apr 2025

https://github.com/open-horizon/kubearmor-integration

KubeArmor runtime security integration with Open Horizon

docker edge horizon kubearmor security

Last synced: 19 Jan 2026

https://github.com/iamcryptoki/passcat

:key: Generate cryptographically secure, memorable passphrases.

memorable-passphrases passphrase password python security wordlist words

Last synced: 29 Apr 2025

https://github.com/thalesgroup/security-risk-assessment-tool

The ISRA security-risk-assessment-tool project is an Electron based application used to do security risk assessments at a technical level

cvss cybersecurity engineering iso iso-27005 iso27005 risk-analysis risk-assessment security security-tools

Last synced: 17 Mar 2025

https://github.com/0x4f53/getperms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 01 May 2025

https://github.com/express-rate-limit/rate-limit-postgresql

A PostgreSQL store for express-rate-limit middleware

express-middleware nodejs postgresql rate-limiting security

Last synced: 30 Apr 2025

https://github.com/elsevierlabs-os/terraform-cloud-custodian-lambda

A collection of terraform modules that allow you to deploy and manage cloud-custodian lambda resources using native terraform as opposed to using the cloud-custodian CLI

aws aws-lambda c7n c7n-mailer cloud cloud-custodian compliance cost-optimization lambda rules-engine security serverless

Last synced: 06 Mar 2026

https://github.com/mika-f/plana

Plana is a powerful general purpose obfuscator for C#, but optimized for Unity and UdonSharp, containing a variety of features which provide protection for your source code from the hackers

csharp dotnet obfuscate obfuscation obfuscator protection security udonsharp unity vrchat

Last synced: 08 Jul 2025

https://github.com/swamithedev/password_strength

The Password Strength Checker project aims to help users assess the robustness of their passwords quickly and effectively.

frontendproject frontendprojects password password-checker password-generator password-strength password-strength-checker security swaminathanselvam swamithedev ui ui-components ui-design

Last synced: 19 Oct 2025

https://github.com/thalesgroup/gose

GOSE = JOSE and friends for the Go developer

golang jsonwebtoken security

Last synced: 03 Oct 2025

https://github.com/yashvardhan-kukreja/kube-bench-exporter

:whale: :rocket: Helps you to export your kube-bench reports to multiple targets like Amazon S3 buckets with ease.

aquasec exporter kube-bench kubernetes security

Last synced: 11 Apr 2025

https://github.com/tintinweb/vscode-chonky

🍣 Chonky - A Superhuman LLM Auditing Agent for Solidity

agentic-ai security solidity vscode-extension

Last synced: 15 May 2026

https://github.com/bbva/masquerade

High-performance, real-time, multi-location data obfuscation tool

encrypted-data masquerade security tokenizer

Last synced: 21 Jun 2025

https://github.com/azu/github-advisory-database-rss

GitHub Advisory Database RSS Feeds.

github rss security

Last synced: 15 Jan 2026

https://github.com/elliotwutingfeng/2fas-backup-decryptor

CLI tool to decrypt backup files exported from the 2FAS Authenticator app. This application is neither affiliated with Two Factor Authentication Service, Inc. nor 2FAS.

2fa 2fas aes aes-gcm android backup cryptography cybersecurity decryption encrypt encryption hmac-sha256 ios linux macos otp pbkdf2 security totp windows

Last synced: 29 Apr 2025

https://github.com/psecio/uri

A secure URI generation and validation library

security security-tools signature uri url

Last synced: 11 Apr 2025

https://github.com/dneustadt/dneustadtcsrfcookiebundle

Symfony bundle that provides Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications

ajax angular axios csrf react security vue xhr xsrf

Last synced: 03 Apr 2025

https://github.com/benwestgate/bitcoin-core-on-tails

Deprecated Setup script for installing Bitcoin Core to Tails persistent storage. Full node, wallet, backup and clone for a friend functions

bash bash-script bitcoin bitcoin-core debian full-node linux operating-system privacy security shell tails

Last synced: 28 Oct 2025

https://github.com/mubix/ctf

Capture The Flag Information

capture-the-flag ctf hacking learning security

Last synced: 11 Apr 2025

https://github.com/elfenware/obliviate-web

A password manager that forgets your passwords

hacktoberfest manager passphrase password security svelte

Last synced: 14 May 2025

https://github.com/rubennati/vulnerable-php-code-examples

Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such as SQL Injection, XSS, CSRF, and more.

owasp php security static-analysis vulnerable

Last synced: 26 May 2026

https://github.com/SocialGouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 02 Aug 2025

https://github.com/msfidelis/aws-vpc-best-pratices

Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:

aws cloud networking security terraform

Last synced: 13 Jun 2025

https://github.com/chhayac/awesome-dga

Domain Generation Algorithms research papers, datasets and code

cybersecurity deeplearning dga dga-detection dgapapers domaingenerationalgorithms machinelearning security

Last synced: 02 Jan 2026

https://github.com/datalux/notification-sniffer

An Android Library that implements a Notification Sniffer

android android-library notifications security sniffing

Last synced: 23 Jul 2025