An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/huntlabs/hunt-security

A security library for hunt.

dlang hunt security ssl tls

Last synced: 04 Mar 2026

https://github.com/sayalisachin/medicrypt

This is a Hospital Communication System Using DNA Encryption and Image Steganography This project enables secure communication between two hospitals, Hospital A and Hospital B, by encrypting and hiding sensitive patient data within images using DNA encryption and Least Significant Bit (LSB) steganography techniques, powered by Socket.IO

cryptography dna dna-sequencing information informationsecurity lsb lsb-steganography manipal-institute-of-technology matplotlib pandas pillow security socket-io steganography streamlit websocket

Last synced: 13 Apr 2026

https://github.com/ethanthephoenix38/dependabot-secure-flow

The Silent Guardian: A Zero-Touch workflow that validates Dependabot updates via build tests, auto-closes failing PRs (Self-Healing), and batches secure updates silently. Stop notification fatigue

automation cybersecurity dependabot flow github-actions guardian phoenixproject repository security vibecoding

Last synced: 05 Mar 2026

https://github.com/itallstartedwithaidea/last-mile

Last Mile 360 — The production-readiness platform for vibe-coded apps. Norton-grade trust. Cloudflare-native. Zero origin servers.

ai-agents cloudflare-workers code-quality devops devsecops production-readiness security semgrep typescript vibe-coding

Last synced: 17 Apr 2026

https://github.com/orislabsdev/gocore

Engineering-first HTTP backend library for Go focused on performance, security, and production-ready architecture.

backend go golang http jwt middleware performance production-ready rate-limiting rest-api security tls web-framework web-server

Last synced: 13 Apr 2026

https://github.com/greenpau/caddy-security-secrets-aws-secrets-manager

Caddy Security Secrets Plugin for AWS Secrets Manager Integration

aws aws-secrets-manager caddy-plugin caddy2 security

Last synced: 17 Apr 2026

https://github.com/mbay7/claude-code-security

A 6-layer security framework for Claude Code workspaces: prompt injection detection, memory poisoning prevention, secrets scanning, behavioral audit logging, and pre-commit guardrails. Install in 5 minutes.

ai-security claude-code devtools mcp owasp prompt-injection security

Last synced: 02 Apr 2026

https://github.com/baerwang/sec_craw

一个方便安全研究人员获取每日安全日报的爬虫,目前爬取范围包括90sec、看雪论坛、v2ex、精易论坛、52破解论坛等实验室博客,持续更新中。

crawler security security-tools threat threat-intelligence

Last synced: 04 Jul 2025

https://github.com/matedev01/joel_atecc608a

USB OTP Security System: A project combining the ESP32-S3 microcontroller, ATECC608A CryptoAuthentication device, Windows driver, and LibUSB for secure communication, OTP generation, and time synchronization. 🚀

driver esp32 esp32s3 firmware flash-encrypt hmac libusb otp secure-boot security usb visualgdb

Last synced: 17 Apr 2026

https://github.com/aeliant/qfileencryptionbundle

Bundle to ease files encryption in Symfony

decryption encryption files gpg php security symfony

Last synced: 17 Apr 2026

https://github.com/happycod3r/term-lock

Term-Lock is a simple pin system that allows you to block access and add a layer of security to your terminal.

bash bashrc extension oh-my-zsh-custom ohmyzsh omz omz-plugin security shell-extension shellscript term-lock terminal-security v1 zsh zshrc

Last synced: 17 Apr 2026

https://github.com/edneedham/cred

A command-line tool to manage secrets and environment variables locally and remotely.

cli rust secrets security

Last synced: 04 Feb 2026

https://github.com/banhao/mdatp-iocs-delete

DEL-MDATP-IOC.ps1 is used to delete the IOCs on Microsoft Defender ATP.

azure mdatp microsoft powershell powershell-script security

Last synced: 17 Apr 2026

https://github.com/vvv-keys/keys-custom-idps

This Python script provides a sophisticated botnet detection system that leverages signature-based detection, machine learning algorithms, behavioral analysis, and traffic profiling to identify potential botnet activity in real-time. It also includes advanced alerting capabilities and integration with IP reputation services and SIEM for DETECTION!

botnet botnet-detection botnet-tool botnet-tools botnets cybersecurity cybersecurity-tools idps idpshook python python-3 python-script python3 safety-monitoring security security-audit security-automation security-tools

Last synced: 11 Mar 2025

https://github.com/dxrk777/dxrk-ai

🧠 Dxrk AI v1.0 — Ultra-Advanced AI Ecosystem. Self-healing, tamper-proof, universal AI connectivity. 27+ providers, AES-256 encryption, cloud brain, auto-update.

ai artificial-intelligence cloud-brain encryption golang llm multi-model ollama openai pentesting security self-healing

Last synced: 04 Apr 2026

https://github.com/joaog23/sistema-acesso-api

API de um Sistema de Segurança e Controle de acesso de pessoas, cujo o intuito, controlar e gerenciar com fluxo de usuários sistema.👌🏽👩🏽‍💼

access-control api-rest nodejs postgresql security

Last synced: 18 Apr 2026

https://github.com/lnvaldez/vote-crud

A voting-based CRUD application built with Express.js and EJS where users can create, read, update, and delete themes.

ejs express express-ejs javascript security

Last synced: 04 Apr 2026

https://github.com/sjinks/roundcube_log_failed_logins

Logs failed login attempts to syslog in the format suitable for blocklist.de

brute-force bruteforce login security

Last synced: 18 Apr 2026

https://github.com/elijahu1/aws-security-auditor

AWS Security Group Auditor: CLI tool to audit EC2 security groups for overly permissive rules (e.g., open SSH/RDP ports). Generates actionable CSV/JSON reports and supports cron automation.

aws devops-tools ec2 security

Last synced: 18 Apr 2026

https://github.com/pkparthk/secure-cloud

A secure cloud access backend system built with Python, featuring JWT authentication, MongoDB integration, AWS IAM role management, SSH gateway configuration, and multi-factor authentication (MFA) support.

aws cloud-access configuration fastapi iam jwt mfa mongodb python security ssh

Last synced: 18 Apr 2026

https://github.com/john-breton/water

A security focused Internet measurement framework to map the threat landscape for users that require accessibility tools to access the Internet

internet-measurements madweb23 python research-paper security selenium-python wcag21 web-accessibility

Last synced: 19 Apr 2026

https://github.com/andoniat/auth_jwt_nodejs

Implementing authentication and JWT in node js. Node.js application designed as a foundation for any project requiring authentication and user role management on the server side. This project provides a robust and scalable structure with ready-to-use features.

api api-rest application authentication backend chai javascript jwt jwt-authentication jwt-token mocha nodejs security test

Last synced: 19 Apr 2026

https://github.com/mdeous/plasmid

SAML IdP for SP security testing.

identity-provider saml saml-idp security sso

Last synced: 20 Apr 2026

https://github.com/kurtpayne/skillscan-security

Security scanner for AI agent skills and MCP tool bundles — prompt injection, IOC matching, malware detection, ML classifier

ai-agent ai-security llm-security mcp prompt-injection security skill-scanner static-analysis

Last synced: 20 Apr 2026

https://github.com/johnwmail/totp-gate

Lightweight TOTP reverse proxy — add 2FA authentication in front of any web service.

2fa auth-proxy authentication gateway golang middleware otp reverse-proxy security totp two-factor-auth

Last synced: 20 Apr 2026

https://github.com/branover/hexgraph

Self-hosted, agentic vulnerability research for binaries & firmware: an AI agent decompiles, fuzzes, and verifies exploits inside a sandbox, recording every finding to a typed graph. BYOK, fully local.

agentic-ai ai-agents binary-analysis claude claude-code cybersecurity exploit-development firmware-security fuzzing ghidra iot-security llm mcp pentesting reverse-engineering security security-tools vulnerability-research

Last synced: 04 Jun 2026

https://github.com/allianz/yukimi

Self-service Snowflake provisioning with built-in security and policy enforcement.

ai automation data security

Last synced: 05 Jun 2026

https://github.com/roguh/ansible-fwknop

Ansible role that secures ports on your server from unauthorized access using fwknop, an improved port knocking utility.

ansible devops fwknop knocking networking port security yaml

Last synced: 20 Apr 2026

https://github.com/leeguooooo/swiftbar-warp-control

🚨 Fix Cloudflare WARP stuck on/force-enabled issue. Professional macOS menu bar tool for reliable WARP control when GUI fails. Password-free SwiftBar plugin.

automation cloudflare-vpn cloudflare-warp command-line force-disable macos macos-utility menu-bar plugin security swiftbar troubleshooting vpn warp-cli warp-control warp-stuck

Last synced: 20 Apr 2026

https://github.com/hatmahat/go-rbac

Lightweight, framework-agnostic RBAC package for Go with context injection, in-memory caching, and GORM support.

authorization chi echo fiber gin golang middleware rbac security

Last synced: 21 Apr 2026

https://github.com/rodrigokamada/nodejs-encryption

There are two classes in the crypto module called Cipher and Decipher that we are going to use in the example.

aes cipther decipher decryption encryption hacktoberfest nodejs security

Last synced: 21 Apr 2026

https://github.com/weby-homelab/voip-installer

Secure, Dockerized Asterisk 22 Installer for Ubuntu 24.04. Auto-configures PJSIP, TLS/SRTP, Let's Encrypt, Fail2Ban & NFTables.

asterisk automation docker fail2ban hardened iac infrastructure-as-code letsencrypt nftables official-docker-ce-install opus-codec pjsip security self-hosted sip speex srtp telephony ubuntu-server voip

Last synced: 22 Apr 2026

https://github.com/ctkqiang/2d05

这款工具是一种 分布式拒绝服务(DDoS)攻击工具,它能够通过大量虚假流量淹没目标服务器,从而导致其无法正常响应合法请求,最终使系统崩溃或服务中断。🚀💥

2d05 china cpp cpp11 ctkqiang ddos ddos-attacks dos hacking-tool network security simple

Last synced: 04 Jun 2026

https://github.com/vidyasagarmsc/private-vpc-network

Provision an HA Bastion and VPN setup using Terraform + Session Recording on RHEL using Ansible

ansible automation bastion cloud security terraform vpc

Last synced: 22 Apr 2026

https://github.com/franckferman/hidemylogs

Surgical Linux log cleaner - selectively erase access records from lastlog, wtmp, btmp, and utmp while preserving file metadata.

advanced-threat-hunting btmp clean-logs lastlog linux linux-cleaner linux-logrotate linux-logs log-cleaner opsec opsec-safe opsec-toolkit opsectoolkit redteam redteaming security security-tools utmp wipe-files wtmp

Last synced: 23 Apr 2026

https://github.com/bounded-systems/prx

The agent-run work-unit CLI: capability-scoped agents whose every privileged effect is verified against its signed owner, driving a work unit through one signed pipeline to a merged PR.

agent-infra agents ai-agent ai-agents anthropic capability-security claude claude-code cli llm mcp security

Last synced: 04 Jul 2026

https://github.com/konstantinullrich/openvas2defectdojo

OpenVAS2DefectDojo exports all new OpenVAS Reports from one or multiple OpenVAS instances to the local system.

defect-dojo openvas-reports python3 security

Last synced: 06 Jun 2026

https://github.com/rezen/retirejs

Retirejs cli tool in golang!

javascript security

Last synced: 24 Apr 2026

https://github.com/dishine-digital-agency/cookie-audit

Most cookie consent setups are broken in ways nobody notices until an audit. This Puppeteer-powered CLI fires up a headless browser to capture, classify, and grade every cookie your site sets. Scan and get a categorized cookie inventory with GDPR compliance flags (470+ known cookies, automatic classification, multi-format reports).

automation compliance cookies developer-tools gdpr open-source privacy puppeteer python scanner security security-tools tracker-blocking web-scraping

Last synced: 25 Apr 2026

https://github.com/solomonneas/rapid7-mcp

MCP server for Rapid7 InsightIDR — SIEM log search, investigations, alerts, UBA, and threat intelligence

ai-agents insightvm mcp model-context-protocol rapid7 security vulnerability-management

Last synced: 30 Apr 2026

https://github.com/derhansen/add_pwd_policy

Additional Password Policy validators for TYPO3 CMS 12.4+

password security

Last synced: 25 Apr 2026

https://github.com/shadawck/scabi

Implement vulnerabilities scanning on top of package management system like apt, pip, composer...

cve dependencies mitre ossindex package-manager python scanner security security-audit security-tools vulnerability

Last synced: 06 Jun 2026

https://github.com/mwmorale/folder_locker

After using my Mac(Apple), I began to notice how odd it was that Windows cannot "password lock" folders/documents. So, I accomplished this on my own and now have this capability on my Windows device(and, now, so do you). Store anything inside a folder that disappears when desired and can only be opened(and visible) using your password. Run "run_me.py" a single time - then, you will have this feature regardless of access to the file, GitHub or even the internet. This is a work in progress and is still being developed - it is intended to manipulate "Desktop" within C drive, was tested/developed using Windows 10 and assumes that your current "User" is your desired selection. Python is used. Libraries "subprocess" and "os" are imported/used.

file-manager filemanager hiding-information lock locking-strategies path-planning path-tracing pathfinding python security security-tools terminal

Last synced: 25 Apr 2026

https://github.com/chl12172025-code/nullprt

A statically-compiled, system-level programming language for software protection, hardware-bound licensing, and anti-tampering. Cross-platform (Windows/macOS/Linux). Self-hosted toolchain.

anti-tamper arm64 c-abi code-obfuscation compiler cross-platform licensing linux macos native-code nprt nullprt programming-language security self-hosted software-protection static-typing system-programming windows x86-64

Last synced: 05 Jun 2026

https://github.com/koladilip/aws-checks

Reprots issues in your AWS account

aws best-practices rust-lang security

Last synced: 26 Apr 2026

https://github.com/lennolium/1guard-server

Semester's Project - System and Software Engineering 1 - server backend

ai macos safari safari-extension security shopping

Last synced: 26 Apr 2026

https://github.com/neiman-marcus/psm

Security enabled simple REST service to manage application configuration in AWS SSM Parameter Store.

aws aws-ssm boto3 encrypts parameter-store python secrets secrets-management secrets-manager security serverless serverless-framework ssm

Last synced: 26 Apr 2026

https://github.com/greycloudss/gauntlet

Gauntlet is a C++ reverse engineering utility that supports both static and dynamic disassembly, along with DLL injection into external processes. Built for modularity and performance, it provides core building blocks for memory manipulation, opcode decoding, and instruction tracing.

cpp disassembler imgui injector reverse-engineering security

Last synced: 04 Jul 2025

https://github.com/fritterhoff/vulnerability-bot

Small bot to automate vulnerability updates in GitLab

ci gitlab security

Last synced: 27 Apr 2026

https://github.com/matouskozak/exe-scanner

A lightweight plugin that improves malware classifiers' robustness against adversarial attacks on Windows executables (EXEmples). Based on the research paper "Updating Windows Malware Detectors: Balancing Robustness and Regression against Adversarial EXEmples" (2025).

adversarial-machine-learning malware-detection security windows

Last synced: 27 Apr 2026

https://github.com/kstenschke/tiny-vault

Tiny Vault - Temporary local password store for Linux

linux password security tool

Last synced: 27 Apr 2026

https://github.com/ali-raheem/macpi

🛡️ Create macsec encrypted ethernet links automatically, transparently and securely with minimal interaction

bump-in-the-wire encryption ethernet macsec networking raspberry-pi security

Last synced: 27 Apr 2026

https://github.com/mediamonks/self-xss-console-banner

This module will log a self-xss banner to warn users about the self-xss security risk. This banner should be used for projects that have data behind a login.

security security-tools self-xss self-xss-warning

Last synced: 25 Mar 2025

https://github.com/nullswan/snow-crash

Introduction to box pwning

security

Last synced: 07 Jun 2026

https://github.com/lucasgoncsilva/swarden

Created in Django as an MVC Framework, sWarden works as a real prototype of an online password and credential manager. This project uses security concepts in a practical and descriptive way.

criptography django load-testing password password-manager python security testing

Last synced: 28 Apr 2026

https://github.com/bylickilabs/hashchecker

HashChecker ist ein kompaktes, benutzerfreundliches Windows-Tool zur schnellen Integritätsprüfung von Dateien per Hashwert.

checksum csharp desktop-app dotnet file-integrity hash hash-checker integrity-checker md5 opensource security sha256 tools windows winforms

Last synced: 28 Apr 2026

https://github.com/quasarapp/secretservice

Simple service to save your own secrets strings, and provide fast access by hashes IDs.

deploy qt secret security service

Last synced: 28 Apr 2026

https://github.com/ryoskzypu/hard_pihole

A Pi-hole hardening script

adblock bash cli pi-hole raspberry-pi security shell unix

Last synced: 28 Apr 2026

https://github.com/aayush-bhargav/library-management-system

Developed an Online Library Management System (OLMS) that not only provides basic functionalities of a library but also ensures data security and concurrency control..

c library-management-system login mutex-lock mutex-synchronisation operating-system security signup socket socket-io socketcommunication thread

Last synced: 28 Apr 2026

https://github.com/shravzzv/passforge

PassForge is a sleek, secure, and lightning-fast password generator built for everyday use. Customize length, choose character sets, and copy to clipboard in one click—privacy-first, and open source.

nextjs password password-generator react security tailwind

Last synced: 28 Apr 2026

https://github.com/mdsakibanwar/gosonar

Binary symbolic execution for detecting uncontrolled recursion in Go binaries. Published at IEEE S&P 2025.

angr go golang security security-tools symbolic-execution

Last synced: 29 Apr 2026

https://github.com/azu/trace-database-response

Assert: Express response raw data from MongoDB

expresss library middleware mongodb plugin security

Last synced: 29 Apr 2026

https://github.com/wolfeidau/secure-cloudformation-resources

A group of cloudformation resources which implement a security baseline

aws cloudformation go security

Last synced: 29 Apr 2026

https://github.com/sezaiagirtas428/windows-hardening-basics

PowerShell-based Windows hardening script with Defender ASR controls

asr blue-team defender hardening powershell security windows

Last synced: 29 Apr 2026

https://github.com/ghlps/guimox-auth

Java service used to provide authentication for my applications. The project uses OAuth2 (Google) and also e-mail/password login.

java oauth2 security springboot

Last synced: 29 Apr 2026

https://github.com/taufik-nurrohman/markdown-filter

Safely replace text in a Markdown document.

commonmark extra filter markdown php security

Last synced: 29 Apr 2026

https://github.com/rashidintheworld/cryptions-and-decryptions

I have tried to solve enc and dec algorithms

git info-sec java java8 password security

Last synced: 29 Apr 2026

https://github.com/shiroonigami23-ui/aegisos

AegisOS_security_first_lightweight_customizable_open_source_operating_system

customization kernel lightweight open-source operating-system osdev privacy security systems-programming

Last synced: 29 Apr 2026

https://github.com/cyberanchor/emailcompare

Yet Another comparing email services, focusing on privacy, security, and infrastructure. An interactive web interface, JSON-based data.

anonymity comparison disroot email mailfence onion privacy protonmail providers security service tutanota

Last synced: 29 Apr 2026

https://github.com/gabrielluizbh/laps

Script de configuração do LAPS.

laps laps-password security seguranca windows windows-server

Last synced: 29 Apr 2026

https://github.com/mayorjay/genpass

A Secure Password Generator designed with security precautions for the user's data

android clean-architecture datastore-preferences jetpack-components mvvm-architecture password-generator security

Last synced: 29 Apr 2026

https://github.com/frnn4268/k8s_cloud-native-pg_trivy-operator

This repository contains auxiliary tooling for managing PostgreSQL clusters on Kubernetes, including CloudNativePG, Trivy Operator, and Cert Manager. It simplifies deployment, operation, and security scanning of containerized applications, providing examples and automation through Taskfiles.

automation backup cert-manager cloudnative devops helm kubernetes postgresql security trivy

Last synced: 29 Apr 2026

https://github.com/cuongtk8/play-with-deno

Discover 🏝️ Deno - the future for 🌏 Node

103cuong deno node rust security typescript

Last synced: 29 Apr 2026

https://github.com/b-sullender/linux-auth

A lightweight C program for Linux user authentication using the shadow file.

authentication linux security user-management

Last synced: 30 Apr 2026

https://github.com/dubniczky/prototype-pollution

JavaScript Prototype Pollution Attack demo against a NodeJS Express server using Lodash

demo exploit javascript lodash prototype-pollution security yarn-berry

Last synced: 30 Apr 2026

https://github.com/garretpatten/security-guardrails

Reusable GitHub Actions guardrails for pull requests: OpenGrep SAST, verified TruffleHog secrets, dependency review, and Trivy supply-chain checks — high signal, low noise.

ci-cd devsecops github-actions opengrep reusable-workflows sast sbom secret-scanning security supply-chain-security trivvy trufflehog

Last synced: 08 Jun 2026

https://github.com/nextorigin/aescrypt

AES Salted Encryption helper for NodeJS

aes aes-256 aes-encryption decryption encryption nodejs oauth oauth2 security

Last synced: 30 Apr 2026

https://github.com/dafneb/ansible-role-ubuntu24-aide

Ansible Role - Installation of AIDE on Ubuntu 24

aide ansible ansible-role hardening hids security ubuntu ubuntu-server

Last synced: 01 May 2026

https://github.com/forest6511/secretctl

The simplest AI-ready secrets manager. Local-first, single-binary CLI & Desktop app with MCP integration. Never expose secrets to AI agents.

aes-256 ai-agents claude-code cli credential-management developer-tools devtools dotenv encryption environment-variables golang local-first mcp password-manager secrets-management security

Last synced: 01 May 2026

https://github.com/iietmoon/simple-captcha-js

A lightweight pure javascript simple captcha for guarding your forms.

captcha javascript security website

Last synced: 01 May 2026

https://github.com/albertdobmeyer/opencli-container

Hardened container harness for OpenClaw agents — proxy-gated networking and security verification

ai-agents ai-safety container-security defense-in-depth docker mitmproxy openclaw podman sandbox seccomp security

Last synced: 29 May 2026

https://github.com/albertdobmeyer/openskill-forge

Offline-first skill workbench with malware scanning for the OpenClaw ecosystem

ai-agents ai-skills clawhub developer-tools moltbook openclaw security security-scanner

Last synced: 29 May 2026

https://github.com/rivassec/secure-iam-lint

Python-based linter for AWS IAM policies to catch insecure configurations

automation aws devsecops iam linter python security

Last synced: 02 May 2026

https://github.com/danielrosehill/Claude-Security-Auditor-Plugin

Pattern/model for using CC for conducting device level security audits

claude-code lan-audit security

Last synced: 08 Jun 2026

https://github.com/brainphreak/hacker-game-suite

A suite of four educational cybersecurity games: OSINT Investigation, Phishing Detection, Network Forensics, and a Command-Line Typing game.

games hacking html5 security

Last synced: 02 May 2026

https://github.com/m4kskool/serverless-dns

🛡️ Block unwanted content with serverless-dns, a self-hosted DNS resolver that supports DNS-over-HTTPS and DNS-over-TLS on various platforms.

adblock cloudflare cloudflare-workers ddns-client deno dns dns-over-https dns-over-tls fastly nodejs pihole securedns security self-hosted serverless-ddns-updater serverless-plugin windows workers

Last synced: 02 May 2026