Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/tomwechsler/cyber_and_information_security_knowledge_base
A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.
cybersecurity information-security knowledge-base security
Last synced: 13 Feb 2026
https://github.com/docker-secret-operator/dso
Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.
cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security
Last synced: 02 Jun 2026
https://github.com/paulveillard/cybersecurity-tools
A collection of cybsecurity tools, software, libraries, learning tutorials, frameworks, academic and practical resources in security.
automation blueteam cyber-analytics cyber-security cyberattack cybersecurity devops incident-management incident-response incidents incidents-attack redteam security security-hardening security-testing security-tools security-vulnerability threat threat-intelligence tools-engineering
Last synced: 28 Feb 2026
https://github.com/peppelinux/django-audit-wazuh
Django middleware and signals for handling security events
django loganalysis ossec ossec-wazuh security siem wazuh
Last synced: 23 Mar 2025
https://github.com/lchsk/django-insecure
Example of an insecure Django application
Last synced: 25 Apr 2025
https://github.com/rix4uni/gitxpose
Discover GitHub repositories and hunt for leaked credentials with style
bugbounty enumeration github-osint github-repository-search github-user-search osint penetration-testing penetration-testing-tools pentesting pentesting-tools recon reconnaissance security
Last synced: 01 Mar 2026
https://github.com/rubennati/vulnerable-php-code-examples
Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such as SQL Injection, XSS, CSRF, and more.
owasp php security static-analysis vulnerable
Last synced: 26 May 2026
https://github.com/eth-sri/autobaxbuilder
Reproduction package for AutoBaxBuilder, a framework to build new BaxBench tasks from scratch
backend-service baxbench llms rest-api security vulnerabilities
Last synced: 09 Jul 2026
https://github.com/ssbostan/prometheus-multi-tenant-proxy-server
Multi-tenant reverse proxy for Prometheus server
cloud cluster devops kubernetes monitoring multitenancy prometheus security
Last synced: 08 Mar 2026
https://github.com/shivammathur/php-src-backports
Security backports for EOL versions of PHP.
backports end-of-life php security
Last synced: 07 May 2025
https://github.com/jbergstroem/hadolint-gh-action
A hadolint linter for github actions that provides code annotations (and more)
bash containers continuous-integration docker github-actions hadolint security
Last synced: 16 Mar 2025
https://github.com/socialgouv/hasura-permissions-viewer
Generate human-friendly HTML table from hasura permissions list
Last synced: 23 Feb 2026
https://github.com/groupe-edf/watchdog
Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.
ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security
Last synced: 14 Jan 2026
https://github.com/nategraf/naumachia-challenges
Open-source challenges for Naumachia
ctf ctf-challenges docker docker-compose network security
Last synced: 24 Apr 2025
https://github.com/ffmancera/ping_of_death
Some scripts to do a ping of death attack.
ddos-attacks networking python3 scapy security
Last synced: 09 Oct 2025
https://github.com/sap-samples/cloud-nodejs-oflm
This repository demonstrates how to implement security in a business scenario using the Node.js framework. The application is secured using the SAP BTP, Cloud Foundry environment Authorization and Trust Management Service.
cloud-foundry nestjs nodejs sample sample-code sap-btp-cloud-foundry sap-cloud-sdk security xsuaa
Last synced: 13 Apr 2025
https://github.com/authier-pm/authier
monorepo for authier password manager
bitwarden chrome chrome-extension hacktoberfest password-generator password-manager passwords react-native reactjs security trpc
Last synced: 02 Apr 2026
https://github.com/alexeev-prog/nadzoring
An open source tool for detecting website blocks, downdetecting, and network analysis
ai-friendly arp censorship cli dns network network-analysis network-monitoring python security security-tools utility
Last synced: 01 Apr 2026
https://github.com/tot-ra/graphql-query-cost
Graphql query cost calculation
Last synced: 10 Mar 2026
https://github.com/wmeints/webauthn-sample
Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn
asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn
Last synced: 26 Jan 2026
https://github.com/ansiblebook/ansible_role_ssh
🗝 Improve the security of the SSH server beyond "National Security"
almalinux centos-stream crypto-policies cryptography debian-linux rhel8 rocky-linux security sshd-hardening ubuntu2004
Last synced: 10 Apr 2025
https://github.com/iamcryptoki/passcat
:key: Generate cryptographically secure, memorable passphrases.
memorable-passphrases passphrase password python security wordlist words
Last synced: 29 Apr 2025
https://github.com/rix4uni/tldscan
A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.
bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner
Last synced: 20 Apr 2026
https://github.com/daggerok/csrf-spring-webflux-mustache
This repository is contains example application using spring boot 2.0, webflux, spring security 5, reactive mongodb and mustache template engine: spring security 5, CSRF protection with mustache, spring webflux functional routes security, method security, authorization decision, etc
controller-advice csrf csrf-protection csrf-tokens css-grid css-grid-layout maven mongodb mustache reactive reactive-mongo reactive-programming security spring-boot spring-mvc spring-security spring-web spring-webflux webflux
Last synced: 20 Oct 2025
https://github.com/ilya-smut/blue-book
Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.
ai certification comptia cybersecurity it mock-tests security
Last synced: 12 Feb 2026
https://github.com/geraked/miniattack
Simulate Attacks With Mininet And Hping3
attack computer-engineering ddos ddos-attacks dos dos-attack geraked hping hping3 mininet monitoring network python python3 rabist security simulation undergraduate yazd-university
Last synced: 02 Mar 2026
https://github.com/thotypous/operagbas
Alternative "security" module for Brazilian banks
Last synced: 12 Oct 2025
https://github.com/datalux/notification-sniffer
An Android Library that implements a Notification Sniffer
android android-library notifications security sniffing
Last synced: 23 Jul 2025
https://github.com/ege-erdogan/unsplit
Supplementary code for the paper "UnSplit: Data-Oblivious Model Inversion, Model Stealing, and Label Inference Attacks Against Split Learning".
deep-learning machine-learning privacy security
Last synced: 13 Aug 2025
https://github.com/qkaiser/awind-research
This repository holds interesting bits and pieces related to research I performed on wireless presentation devices manufactured by Awindinc and OEM'ed to multiple manufacturers.
awind barco crestron exploits extron haworth infocus newline pentesting security teqavit
Last synced: 15 Aug 2025
https://github.com/kicksecure/gpg-bash-lib
gpg file verification bash library, addresses comprehensive threat model, that covers file name tampering, indefinite freeze, rollback, endless data attacks, etc.
bash-scripts diagnostic-output gpg security verification
Last synced: 19 Apr 2025
https://github.com/ivan-sincek/metagoofeel
Web crawler and downloader based on GNU Wget.
bash bug-bounty downloader ethical-hacking gnu-wget offensive-security red-team-engagement security web web-crawler web-penetration-testing
Last synced: 28 Feb 2025
https://github.com/0x4f53/GetPerms
An Android wrapper library to quickly get app permissions and other package data.
android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature
Last synced: 11 Apr 2025
https://github.com/thecyberarcher/respect-my-internet
Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !
anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security
Last synced: 13 Apr 2025
https://github.com/mattdl/dua
Source code "Unsupervised Model Personalization while Preserving Privacy and Scalability: An Open Problem." @ CVPR2020
cvpr2020 framework importance personalization privacy scalability security unsupervised-learning
Last synced: 21 Jul 2025
https://github.com/anqorithm/saudi-cert-api
This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.
alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities
Last synced: 29 Jun 2025
https://github.com/rexs-io/blocksec2go-ethereum
Wrapper for blocksec2go allowing easy hardware-based signing of Ethereum transactions
blockchain blocksec2go ethereum hardware-wallet security
Last synced: 02 Apr 2026
https://github.com/netguru/mobile-security-review
Security review guidelines for mobile projects
Last synced: 11 Sep 2025
https://github.com/hannesm/ocaml-hkdf
HMAC-based Extract-and-Expand Key Derivation Function (HKDF) (RFC 5869)
Last synced: 07 Aug 2025
https://github.com/cloudposse/terraform-cloudflare-waf-rulesets
Terraform module to manage CloudFlare WAF rulesetes.
cloudflare compliance security terraform terraform-module terraform-modules
Last synced: 16 Aug 2025
https://github.com/shaps80/abracadabra
A truly plug 'n' play solution for securing your code.
authentication code pin security touchid
Last synced: 11 Mar 2026
https://github.com/paulveillard/cybersecurity-ctf
A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity
ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools
Last synced: 10 Apr 2025
https://github.com/a3r0id/php-rate-limiting
A simple system to rate-limit site visitors by time interval/request amount.
include measures php rate-limiting security simple turnkey turnkey-script
Last synced: 06 Apr 2025
https://github.com/msfidelis/aws-vpc-best-pratices
Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:
aws cloud networking security terraform
Last synced: 13 Jun 2025
https://github.com/geeknik/test-proxy
Advanced test for proxy & waf
cybersecurity devops infosec proxy quality-assurance security testing waf
Last synced: 21 Sep 2025
https://github.com/umair9747/staticot
A BASH script to automate simple tasks related to static malware analysis
cybersecurity malware malwareanalysis security static-malware-analysis staticanalysis threatintel threatintelligence
Last synced: 31 Jul 2025
https://github.com/tuxerrante/kapparmor
AppArmor profiles loader to deploy and update them through a Kubernetes daemonset
apparmor devsecops golang helm k8s kubernetes security
Last synced: 02 Mar 2026
https://github.com/wp-cli/super-admin-command
Lists, adds, or removes super admin users on a multisite installation.
admin cli hacktoberfest security superadmin wordpress wp-cli wp-cli-package
Last synced: 12 Jun 2025
https://github.com/shellrow/nrev
Simple and Fast Network Scanner/Mapper. Written in Rust.
Last synced: 04 Apr 2026
https://github.com/sleventyeleven/kubernetes-harvester
Credential and sensitive information harvester for kubernetes environments.
devops devops-tools kubernetes kubernetes-harvester oscp security
Last synced: 12 Apr 2025
https://github.com/nodsoft/socialguard
Centralised Discord Trustlist to keep servers safe from known intruders.
aspnet-core discord dotnet-core rest-api security socialguard
Last synced: 22 Jul 2025
https://github.com/andresriancho/burp-proxy-search
Burp suite HTTP history advanced search
burp scanning search security statistics
Last synced: 10 Apr 2025
https://github.com/jpcertcc/etw-scan
ETW forensic tool for Volatility3 plugin
forensics incident-response memory security volatility-framework volatility-plugins
Last synced: 15 May 2025
https://github.com/matricali/php-edge-auth
PHP Library that generates authorization token used by Akamai Auth Token 2.0.
akamai composer edge-auth php php-library security signature token
Last synced: 31 Aug 2025
https://github.com/cerbos/cerbos-sdk-java
Java SDK for interacting with the Cerbos PDP.
access-control cerbos policy security
Last synced: 02 Sep 2025
https://github.com/jonlabelle/docker-nmap
Minimal Docker image with Nmap Network Security Scanner pre-installed.
alpine docker docker-image linux network nmap security
Last synced: 21 Mar 2025
https://github.com/mhausenblas/aws-container-security-survey-2019
Questions and results of the AWS container security survey 2019
2019 aws containers security survey
Last synced: 20 May 2026
https://github.com/hugow04/tuantivirus
Antivirus software was originally developed to detect and remove computer viruses, hence the name. However, with the proliferation of other malware, antivirus software started to protect from other computer threats. In particular, modern antivirus software can protect users from malicious browser helper objects (BHOs), browser hijackers, ransomware
anti-malware antivirus antivirus-software malware malware-analysis malware-research md5 scanner security winapi windows windows-10 windows-11
Last synced: 19 Apr 2025
https://github.com/krysopath/vaultify
a hexagon of secret provisioning
adapter-pattern cli docker gpg hashicorp-vault hexagonal-architecture integration openssl security security-automation
Last synced: 30 Apr 2025
https://github.com/tarzan/leaked_passwords
Checking for leaked passwords through haveibeenpwned v2 API using the hash-range checker
elixir haveibeenpwned leaks password security
Last synced: 24 Jul 2025
https://github.com/morenes/AutoCC
Methodology that leverages FPV to automatically discover covert channels in hardware that is time-shared between processes. AutoCC operates at RTL to exhaustively examine any machine state left by a process after a context switch that creates an execution difference.
covert-channel formal-verification fpv hardware security
Last synced: 11 May 2025
https://github.com/anunay-bhatt/secure-serverless-reference-architecture
A walkthrough of security controls for a serverless architecture via a demo application
cloud-security reference-architecture security security-architecture serverless
Last synced: 15 Apr 2025
https://github.com/seadog007/crontab_botnet
A botnet (C&C) framework that create in bash and using crontab for periodic execute
botnet c2 command-and-control crontab security
Last synced: 27 Aug 2025
https://github.com/openmined/sgx-experiments
Trusted execution experiments with Intel SGX
confidential-computing confidentiality experiments graphene intel intel-sgx python pytorch secure secure-computation security sgx tee trusted-execution-environment
Last synced: 09 Aug 2025
https://github.com/stateloom/stateloom
The control plane for AI agents. Track, secure, and optimize every agent run.
ai-agents anthropic cost-tracking developer-tools gateway gemini guardrails llm middleware observability openai pii-detection python security
Last synced: 12 Apr 2026
https://github.com/ivan-sincek/file-scraper
Scrape files for sensitive information, and generate an interactive HTML report. Based on Rabin2.
bug-bounty desktop-penetration-testing ethical-hacking incident-response malware-analysis mobile-penetration-testing offensive-security penetration-testing python rabin2 radare2 red-team-engagement scraping secrets-finder secrets-management security sensitive-data sensitive-files strings web-penetration-testing
Last synced: 15 Apr 2025
https://github.com/eliranmaman/wp-exploiter
WP-Exploiter is a tool for testing and exploiting a wide range of WordPress websites.
python python-3 python3 security security-vulnerability vulnerabilities vulnerability-detection vulnerability-identification vulnerability-scanners wordpress
Last synced: 22 Aug 2025
https://github.com/mdombrov-33/go-promptguard
LLM prompt injection detection for Go applications
ai-security chatbot-security go golang llm llm-guardrails llm-security prompt-injection prompt-injection-detection security
Last synced: 02 Apr 2026
https://github.com/viadee/pentest4vaadin
Spider and analyze vaadin applications with OWASP ZAP - the app mediates between the two.
java penetration-testing proxy security shadow-dom vaadin
Last synced: 13 Oct 2025
https://github.com/reconmap/documentation
Product documentation including admin, user and developer manuals
cybersecurity documentation hacktoberfest infosec manual pentesting saas security vulnerability
Last synced: 04 Mar 2026
https://github.com/gonative-cc/contributig
Guidelines and resources for Native org contributions
blockchain contributors security
Last synced: 01 Mar 2026
https://github.com/deerborg/veterinarymanagementapi
VetApp is a veterinary management system built on Java with Spring Boot. It streamlines clinic operations, offering essential features like appointment scheduling, animal records, and vaccine tracking through RESTful APIs.
crud css frontend fullstack javascript management project rest-api security spring-boot veterinary
Last synced: 14 Feb 2026
https://github.com/inpher/sb
Resilient SSH bastion providing authentication, authorization, traceability and auditability
bastion devops infrastructure jumphost security ssh ttyrec
Last synced: 14 Jan 2026
https://github.com/writer/cerebro
Compliance superpowers for coding agents.
ai-agents aws cloud-security coding-agents compliance compliance-automation devsecops gcp go grc iam kubernetes mcp policy-as-code security security-automation
Last synced: 03 Jul 2026
https://github.com/05nelsonm/pin-authentication
An Android library that provides local PIN authentication for your application.
android android-library authentication security
Last synced: 16 Mar 2026
https://github.com/artem-smotrakov/cve-2016-1000027-poc
PoC for CVE-2016-1000027
cve-2016-1000027 deserialization java poc security serialization spring-boot spring-framework vulnerability vulnerable-server
Last synced: 28 Oct 2025
https://github.com/DenizParlak/heimdall
AWS Attack Path Scanner - Discover privilege escalation paths across 10+ AWS services
aws aws-security cloud security
Last synced: 31 Jan 2026
https://github.com/darko-mesaros/pristup
Generating AWS Credentials for temporary access
aws iam security temporary-credentials
Last synced: 26 Oct 2025
https://github.com/mark-adams/gcp-ip-list
A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Platform (GCP).
gcp gcp-security golang security security-tools
Last synced: 23 Jan 2026
https://github.com/algorismo-au/lanekeep
Governance guardrails and insights for AI coding agents
agentic-coding ai-agents ai-governance ai-safety bash budgets claude-code cli compliance devsecops devtools governance guardrails observability pii-detection prompt-injection security
Last synced: 07 Apr 2026
https://github.com/spacewander/lua-resty-mime-sniff
Sniff the real MIME type of given data in your OpenResty app
openresty security websecurity
Last synced: 28 Feb 2026
https://github.com/piecioshka/brute-force-generator
🔨 Build a dictionary by permuting passed letters (using ES2015+)
Last synced: 17 Jun 2026
https://github.com/geekmasher/quibble
A container security tool written in Rust focusing on making security easy for compose based configurations
containers docker docker-compose podman podman-compose security
Last synced: 20 Mar 2025
https://github.com/yevh/anonymizer
Anonymize sensitive data in your datasets.
anonymize anonymized anonymizer crypto cryptography data-anonymization data-anonymized data-science data-security dataset datasets datasets-csv datasets-preparation python python3 security sensitive sensitive-data
Last synced: 07 Jul 2025
https://github.com/piomin/sample-secure-eureka-discovery
secure discovery between client and server with spring cloud netflix eureka and spring boot
https keytool netflix-eureka security spring-boot spring-cloud spring-cloud-netflix ssl
Last synced: 16 Jun 2025
https://github.com/jbrower95/crop
ROP Payload Compiler
compiler rop rop-gadgets security
Last synced: 07 Jul 2025
https://github.com/ancat/meatball
A host monitoring proof of concept that uses python and ebpf to watch for bad behavior and optionally take action on it.
ebpf host-monitoring python security
Last synced: 06 May 2025