Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/miccy/dont-be-shy-hulud
🪱 NPM Worm Defense Guide: Detection, remediation & prevention for Shai-Hulud 2.0 and beyond!
article bun defense detection devops malware malware-detection ncident-response nodejs npm security security-audit security-tools shai-hulud shai-hulud-detector supply-chain worm
Last synced: 13 Jan 2026
https://github.com/didrod205/jwtlens
Decode, audit & verify JWTs entirely offline — stop pasting live tokens into jwt.io. Local signature verification (HS/RS/PS/ES/EdDSA) with your own secret/PEM/JWK, plus a security lint (alg:none, exp, aud/iss). Deterministic CLI, JSON/MD reports.
appsec auth authentication cli json-web-token jws jwt jwt-cli jwt-decode node offline security token typescript verify
Last synced: 16 Jun 2026
https://github.com/asankasovis/password-manager-csharplibrary
🔐 Muragala is a password manager designed to make managing passwords easy and secure. My goal is to make it a secure and reliable password manager available in the public domain for everyone to use. Privacy and security is for everyone, this is the core value behind this project.
csharp password password-generator password-manager security
Last synced: 28 Mar 2025
https://github.com/lucasgdb/password-generator
Gerador de Senhas gratuito para Desktop (Windows 7 e posterior)
Last synced: 13 Apr 2026
https://github.com/alwalxed/yuta
Streamlines domain discovery, probing, and filtering in one pipeline.
amass automation dnsx docker enumeration enumeration-tool http http-probe httpx javascript nodejs open-source penetration-testing pentest-tool pentesting react-ink recon reconnaissance security security-tools
Last synced: 02 Jan 2026
https://github.com/itsmestefanjay/camunda-security-example
Example on how to whitelist classes in the spin api to prevent unwanted deserialization into java classes
camunda deserialization java security spin
Last synced: 06 Jul 2025
https://github.com/f33rni/homeland-sees
RaspberryPi / OrangePi based simple automated surveillance camera project with Telegram bot integration
bot camera ffmpeg home-security orange-pi orangepi python raspberry-pi security surveillance telegram telegram-bot
Last synced: 20 Apr 2026
https://github.com/infineon/mtb-example-psoc6-security
This is a minimal starter dual-CPU security application template for PSoC™ 62/63 MCU devices. This code example is meant to be a companion to the AN221111 – PSoC™ 6 MCU: Designing a secured system application note. It demonstrates the following features to create a secured system as explained in the application note.
cy8ckit-062-ble cy8ckit-062-wifi-bt cy8ckit-062s2-43012 cy8cproto-062-4343w cy8cproto-062s3-4343w cy8cproto-063-ble security
Last synced: 25 Jun 2025
https://github.com/sylphxai/typescript
Strict, AI-optimized TypeScript monorepo: ESLint Flat Configs, tsconfig, Prettier, and guidelines for modern TypeScript projects.
ai eslint eslint-config flat-config guidelines monorepo prettier react react-native security sonarjs strict styleguide sylph sylphlab tsconfig turborepo typescript unicorn vue
Last synced: 18 May 2026
https://github.com/djvirus9/awesome-devsecops-mastery-2026
🛡️ A curated, actionable checklist for securing CI/CD pipelines and Kubernetes clusters in 2026.
automation awesome checklist cybersecurity devsecops kubernetes security techniques
Last synced: 12 Mar 2026
https://github.com/sziller/_sallet_visor
Online module of the Sallet universe. Low level, advanced Bitcoin wallet handling public data only. Coin selection, token management, gateway to an airgapped SKULL unit.
application bitcoin coin-selection desktop-app kivy low-level mobile-app nft python3 qr-code security tokens utxo-wallet wallet
Last synced: 17 Jan 2026
https://github.com/jpkcom/jpkcom
Administrator, Consultant, Designer & Developer
11ty administration css design developer development drupal html5 javascript php security seo typo3 wordpress
Last synced: 13 Apr 2026
https://github.com/pahaz/open-node-js-edr
Secure one file easy to understand and install zero-dependent cross-platform Endpoint Detection & Response security tool
cross-platform edr endpoint-protection endpoint-security open-source reverse-shell security
Last synced: 26 Mar 2025
https://github.com/7ussainnabeel/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
osint privacy security security-tools sysadmin
Last synced: 13 Jul 2025
https://github.com/msg-systems/web-security-workbook
The workbook for secure web-applications
creative-commons owasp-top-10 security webtechnologies webtechnology
Last synced: 16 Mar 2025
https://github.com/icsrc-org/.github
Public profile repository for ICSRC, containing the organization’s official GitHub profile and public-facing information.
community cyber-defense cyber-threats cybersecurity digital-forensics github github-templates incident-response information-security malware-analysis meta network-security open-source-security organization-profile security security-operations security-research security-tools threat-intelligence vulnerability-analysis
Last synced: 08 Jan 2026
https://github.com/0n1con3/the-antiipgrabber-blocklist
The AntiIP-Grabber Blocklist: A comprehensive and continually updated collection of IP addresses identified due to proven activities related to IP grabbing. This list assists in protecting your networks and systems from unwanted intrusions and potentially harmful activities by blocking access from these specific addresses.
adblocker adblocker-lists adguard cybersecurity docker firewall firewall-rules ip linux networking pihole safeguard security security-audit security-tools
Last synced: 05 Feb 2026
https://github.com/zebbern/secops-cli-guides
A collection of essential penetration testing and Linux administration commands, compiled in easy-to-use PDFs. This repository includes detailed guides on tools like Metasploit, Nmap, Sqlmap, Hydra, and Linux system management. Ideal for ethical hackers, sysadmins, and security professionals. More resources coming soon!
api buffer-overflow bugbounty burp-suite cloud cloud-pentesting cross-site-scripting csrf ddos exploits guide linux networking pentesting privilege-escalation secops security toolset wireshark
Last synced: 24 Dec 2025
https://github.com/jeffmaley/awsssoreporting
Reports on Users/Group, Permission Sets, and Account Assignments
audit aws cloud-computing cloud-security cloud-security-audit iam secops security security-tools
Last synced: 14 Jan 2026
https://github.com/vladimyr/gh-sec
Github security alerts CLI
cli github nodejs security vulnerabilities
Last synced: 03 May 2026
https://github.com/ernanej/natalmaissegura
como modo de solucionar e auxiliar a segurança natalense, o projeto Natal + Segura consiste em implementar duas plataformas, uma mais simples e voltada para dispositivos móveis e outra mais trabalhada, sendo um site responsivo.
Last synced: 08 Jan 2026
https://github.com/mayacostantini/sigstore-roles
Ansible roles to deploy Sigstore components
Last synced: 12 Sep 2025
https://github.com/colesmcintosh/vibe-security-ai
A professional command-line tool that leverages Claude 4 Sonnet to perform comprehensive security analysis on your code. Get detailed security reports with actionable recommendations to improve your code's security posture.
ai claude-4 security vibe-coding
Last synced: 12 Mar 2026
https://github.com/walterthesmart/nextofkin
The Next of Kin smart contract, built on the Stacks blockchain using the Clarity language, allows users to deposit their STX tokens and assign recipients who will receive the tokens after a year of user inactivity. Utilizing chainhooks to monitor activity, the contract ensures automated distribution of assets.
bitcoin blockchain-technology clarity escrow security stacks
Last synced: 25 Apr 2026
https://github.com/saugataroyarghya/openclaw-file-guard
Multi-user file ownership and access control for OpenClaw individual agents. Protects skills, core markdown files from edits by unauthorized chat users.
access-control acl authorization discord-bot file-permissions middleware multi-user openclaw openclaw-plugin security slack-bot
Last synced: 08 May 2026
https://github.com/zoracon/zoracon.github.io
My corner of the web. I also blog a bit.
Last synced: 10 Jan 2026
https://github.com/sushantnair/is
A collection of experiments I have performed for the course "Information Security" as part of the curriculum for Semester 6 of TY B. Tech. Computer Engineering at KJ Somaiya College of Engineering.
captcha cipher-algorithms recaptcha security
Last synced: 06 Jul 2025
https://github.com/alessandro308/nettopo
A tool to discover a network topology
network-analysis risk-analysis risk-assessment risk-models security
Last synced: 14 Jun 2025
https://github.com/csaba79-coder/litter-snap
Created by Vasile & Kevin & Csaba (Wiley Edge final project)
3-tier-architecture integration-testing jpa-hibernate junit-jupiter junit5 log4j lombok mockito modelmapper mvc-architecture mvc-pattern mysql oop-principles scrum-agile security smtp-mail springboot3 thymeleaf unit-testing validation
Last synced: 05 May 2026
https://github.com/center-key/grails-security-plugin
Straightforward security you can understand
authentication grails grails-plugin groovy security
Last synced: 01 Apr 2025
https://github.com/bval/hubot-security-posters
Return a random NSA security poster from the 1950s-60s
Last synced: 07 Dec 2025
https://github.com/komachi/ansible-decent-router
Ansible playbook to provide decent router experience
ansible ansible-playbook playbook router security
Last synced: 25 May 2026
https://github.com/jmitander/simpleauth
User-Registration, Login & Dashboard - all-in-one
all-in-one authentication authentication-backend contributions-welcome customizable front-end login mit-license php registration registration-forms security signup simple user-interface user-management
Last synced: 31 May 2026
https://github.com/shanemhamilton/bugsweep
AI bug-hunting & auto-fix for your codebase — a Claude Code & Codex skill. An adversarial Hunter→Skeptic→Referee review finds security vulnerabilities, logic errors & race conditions across your whole repo, then fixes them on a throwaway branch you control. Safe for unattended runs.
agentic-ai ai-agents ai-code-review ai-developer-tools anthropic automated-code-review bug-detection claude claude-code code-quality code-review codex developer-tools devtools llm sast security security-tools static-analysis vulnerability-scanner
Last synced: 31 May 2026
https://github.com/feliperalmeida/ninja-keys
🔐 API Keys for Django Ninja
api authorization django django-ninja permissions python security
Last synced: 10 Apr 2026
https://github.com/kruutteri1/banksystem
Banking System Web Application
java jpa-hibernate security spring spring-boot spring-security springframework webapplication
Last synced: 09 May 2026
https://github.com/sudhanplayz/ecdsa-node
Secure, centralized transfers with Elliptic Curve Signatures.
crypto cryptography ecdsa elliptic-curve-cryptography elliptic-curves security
Last synced: 29 Oct 2025
https://github.com/owlsome-official/cipherpayload
CipherPayload middleware for Fiber that use AES Algorithm for encrypt and decrypt payload in request and response body.
cipher encryption gofiber golang golang-library middleware payload-encryption security
Last synced: 23 Feb 2026
https://github.com/houseos/scp
Arduino library for secure-control-protocol devices
chacha20-poly1305 esp8266 http iot json protocol rest security wifi
Last synced: 13 Apr 2026
https://github.com/kathleenwest/wcfauthenticationdemo
This project presents a Visual Studio solution including a simple demo WCF Authentication Service Application and a “Tester” Client (Windows Form Application) that allows the user to test the user registration, login, logout, and service operations. In addition to demonstrating standard authentication capabilities, the WCF service implements a custom username and password validator pattern. Passwords are stored securely using Password-Based Key Derivation Function PBKD cryptology of which the implementation is discussed. A custom error handler ensures that exceptions are properly wrapped into WCF Faults and communicated to the client caller. Certificates are discussed along with how to implement a server certificate on a client machine for development testing of “integrity” and application trust. The project includes a demo certificate and script for generating self-signed dev certificates, which must be installed into the client certificate store for the client tester application to trust and access the demo service. The client “tester” windows form application is not intended as a UX/UI demo but used to test and verify that the backend authentication service registration, login, logout, service operations, and callbacks are working as expected and sending proper WCF fault messages. Lastly, the project is shown in the demo section with a video and screen captures.
authentication certificate certificate-generation cryptology csharp custom-validation custom-validators error-handling password-hash password-safety password-store pbdk security service wcf wcf-bindings wcf-client wcf-service wcf-service-client-demo windows-communication-foundation
Last synced: 17 Oct 2025
https://github.com/ruedigervoigt/bote
A Python library to send email. Enforces encryption if not sending via localhost.
email email-sender python-email python-library security smtp ssl tls
Last synced: 14 Jan 2026
https://github.com/localzet/jwt
Localzet JWT is a library for working with JSON Web Tokens (JWT). Developed by Ivan Zorin, it uses modern technologies and standards for creating, verifying, and handling JWTs.
Last synced: 10 Jan 2026
https://github.com/cdot65/device-certificate-report
A Python-based CLI tool to generate device certificate reports from PAN-OS devices.
certificates network paloaltonetworks panos reporting security
Last synced: 14 Jan 2026
https://github.com/weaponsforge/hacker-friendly-app
Web app demonstrating insecure Firebase security
firebase firebase-auth firebase-authentication firebase-security firestore-rules security
Last synced: 30 Apr 2026
https://github.com/r3nanp/portscanner
🔒 It's a port scanner available from a vulnerable website.
port-scanner portscanner security
Last synced: 06 Jul 2026
https://github.com/quinnturner/owasp-js
TypeScript security utilities following OWASP best practices
Last synced: 14 Jul 2025
https://github.com/wild0ni0n/txtra
txtra is a tool that profiles the cloud services used by an organization using the txt records returned by name resolution for the domain in question.
Last synced: 14 Jan 2026
https://github.com/withfabian/webtools
Web Tools, Information Gathering, CMS Detection
domain gatering hack hacking information security security-tools tools web website webtools
Last synced: 01 Mar 2025
https://github.com/oxagast/antilockdown
Inhibit a screensaver/lock screen via Bluetooth (also known as a Jiggler)
bluetooth exfiltrate-data infosec jiggaler screenlock-inhibitor screenlocker screensaver-disabler security security-tools
Last synced: 14 Jun 2025
https://github.com/dustin-decker/compose-enforcer
ComposeEnforcer validates that a provided docker-compose file meets restrictions set.
docker docker-compose docker-swarm security swarm
Last synced: 17 Feb 2026
https://github.com/capiscio/capiscio-sdk-python
Runtime security middleware for A2A (Agent-to-Agent) protocol agents. Provides always-on validation, signature verification, and rate limiting for AI agent interactions.
a2a a2a-protocol agent-to-agent ai-agents middleware protocol python rate-limiting sdk security trust validation
Last synced: 17 Jan 2026
https://github.com/ujjawalsol/cloudflare_bypass
This script allows users to bypass Cloudflare's rate limits by leveraging multiple Tor instances. It fetches IP addresses through SOCKS proxies, enabling efficient data scraping and API testing without interruptions.
anonymity anonymous api-testing axios cloudflare cloudflare-bypass cloudflare-bypass-script ip nodejs privacy rate-limit rate-limiting security socks5 socks5-proxy tor torch web-scraping
Last synced: 14 Apr 2026
https://github.com/greycloudss/greathelm
an open source WIP EDR
armourer defender edr security
Last synced: 07 Oct 2025
https://github.com/sysdizzy/signage
Sign and Verify binaries in your $PATH
opsec security security-audit security-automation sysadmin-tool
Last synced: 14 Jan 2026
https://github.com/ctx42/convert
Go 32bit and 64bit safe conversions between types.
go golang golang-library security
Last synced: 14 Jan 2026
https://github.com/ahmed-naserelden/cryptographic-algorithms
The "Cryptographic Algorithms Implementation in C#" project is a comprehensive repository that provides implementations of various cryptographic algorithms, designed to enhance data security. Each algorithm is meticulously crafted in C# and thoroughly documented within the codebase, enabling easy understanding and usage.
cryptoanalysis cryptoanalysis-algorithms cryptography network-security security
Last synced: 07 Oct 2025
https://github.com/bcoles/rootkit-signal-hunter
Detect Linux rootkits which use signals to elevate process privileges.
privilege-escalation-linux rootkit-detection rootkit-hunter security
Last synced: 18 Jan 2026
https://github.com/aayushadhikari7/aegis
A local-first WebAssembly sandbox runtime with capability-based security
capability-based-security runtime rust sandbox security wasm wasmtime webassembly
Last synced: 18 Jan 2026
https://github.com/victoralfred/devsec
MLSecOps security pipeline tool - automated scanning, policy enforcement, compliance mapping, and ML validation for CI/CD
cli compliance devsec golang iso27001 mlsecops opa policy-as-code sast sbom secrets-detection security slsa soc2 supply-chain-security vulnerability-scanner
Last synced: 12 Mar 2026
https://github.com/fhnw-imvs/fhnw-kubeseccontext
Keep your Kubernetes workloads in tune — secure and functional.
hardening kubernetes runtime-security security security-context
Last synced: 14 Jan 2026
https://github.com/seism0saurus/nikto-inspec
This is a custom inspec inspec from Ulrich Viefhaus. This is neither an official product of inspec nor nikto. The profile test an http/https server with the open source web server scanner nikto2. Nikto checks for known insecure files on the webserver, outdated software versions and insecure configuration items. You can customoze the profile with attribute files and set hosts, ports and commandline options.
Last synced: 08 Oct 2025
https://github.com/augxusto/nettool-c
c educational-project networking npcap security sniffer-packet tcp
Last synced: 09 Oct 2025
https://github.com/gitbolt/insecure-program
An intentionally made insecure Anchor program for Solana Summer Fellowship 2024
Last synced: 20 Oct 2025
https://github.com/sixt/hardcoded-slack-webhook-alerter
This tool can be used to scan for hardcoded Slack webhooks and send an alert to each one about the dangers of hardcoded credentials.
credentials devsecops pentesting secrets security security-tools
Last synced: 14 Jan 2026
https://github.com/kenvilar/configuration
Apache Web Server
apache configuration nginx security website
Last synced: 10 Oct 2025
https://github.com/luandnh/a2billing.securityconsole
Tool to auto generate MD5 passworđ for extension asterisk and a2billing account.
Last synced: 10 Oct 2025
https://github.com/bboymega/secureupdatedynamichash
Secure Hotfix System with Dynamic Hash-Based Verification
cityhash cybersecurity file-integrity hashing integrity security security-tools spookyhash xxhash
Last synced: 25 Jun 2025
https://github.com/elliotwutingfeng/bitwarden_backup_decryptor
🔓 CLI tool to decrypt backup files exported from Bitwarden. This application is not affiliated with Bitwarden, Inc.
aes aes-cbc android argon2id backup credential-stuffing cryptography cybersecurity encryption hmac hmac-sha256 ios linux macos password-manager pbkdf2 security sha256 windows
Last synced: 09 Apr 2026
https://github.com/sankalpharitash21/nodejs_aws
Deploying a scalable Node.js app on AWS EC2, configuring security, and using PM2.
Last synced: 19 May 2026
https://github.com/dundalek/firewrap
End-user oriented security application sandboxing
bubblewrap firejail sandboxing security
Last synced: 21 Sep 2025
https://github.com/smew-tech/buihainam.com
Welcome to my notebook
coding dart database java javascript kotlin learn-to-code learning programming security swift
Last synced: 07 Apr 2026
https://github.com/IowaComputerGurus/dnn.secureMyInstall
A utility function, for developer use, to help transition user accounts from Encrypted to Hashed. Great for older DNN Installations
dnn dnncms dotnetnuke security
Last synced: 12 May 2025
https://github.com/partylikeits1983/tensorflow-object-detection-security-camera-telegram-bot
simple object detection script connected to a telegram bot
object-detection security telegram-bot
Last synced: 29 Jul 2025
https://github.com/good-tools/jdserialize
Interpret Java serialized objects
analysis deserialize java reverse-engineering security
Last synced: 18 Feb 2026
https://github.com/ricsanfre/ansible-role-security
Security Hardening tasks on Linux hosts
ansible-role security ssh ssh-config
Last synced: 20 May 2026
https://github.com/koniz-dev/docker-cookbook
A comprehensive collection of production-grade Dockerfile best practices, optimizations, and security patterns for Java, Python, Node.js, Go, and React.
best-practices devops distroless docker dockerfile go golang java node nodejs optimization python react security
Last synced: 03 Jul 2026
https://github.com/rgrannell1/rpgen
Generate memorable secure passwords.
dictionary password random security
Last synced: 29 Jul 2025
https://github.com/efler/cryptography-des-deal
DES/DEAL symmetric-key algorithm for the encryption
algorithms cipher cipher-algorithms cryptography deal des encoder-decoder security
Last synced: 05 Aug 2025
https://github.com/rogeruiz/repasar
A GitHub Action to run git-verify-commit on latest SHA on push
github-actions github-actions-ci gpg-signatures security
Last synced: 18 May 2026
https://github.com/amul-thantharate/aws-project-golang-terraform
This repository contains a collection of serverless applications built with Go, leveraging AWS Lambda, API Gateway, and DynamoDB. The projects are designed to demonstrate scalable and efficient serverless architectures, including CRUD operations, event tracing, and more.
aws azure docker golang groq python security shell terraform
Last synced: 07 Apr 2026
https://github.com/serverfarmer/sf-keys
sf-keys extension provides ssh/gpg public keys used by Server Farmer.
devops devops-tools gpg gpg-key key-management security security-automation security-hardening security-tools ssh ssh-key ssh-key-manager
Last synced: 25 Jun 2025
https://github.com/jenkinsci/redhat-codeready-dependency-analysis-plugin
A Jenkins plugin by Red Hat, to scan the dependency stack and give information related to vulnerabilities, popularity, maintainability, compatibility and more
analysis crda dependencies dependency-analysis deprecated devsecops maintainability redhat scanning security vulnerabilities
Last synced: 30 Sep 2025
https://github.com/exasol/row-level-security-lua
Lua implementation of Exasol's row-level-security
access-management exasol exasol-integration lua security virtual-schema
Last synced: 21 Sep 2025
https://github.com/byjpr/plug_shopify_verify_timestamp
Validates inbound connection timestamp delta, designed for Shopify App Bridge
app-bridge elixir plug security shopify shopify-app shopify-embedded-applications
Last synced: 21 May 2026
https://github.com/cybersight-security/global-threat-map
Global Threat Map is an interactive visualization tool that displays potential cybersecurity threats around the world using real IP data from FireHOL threat intelligence feeds
cyber-security cybersecurity cybersecurity-education cybersecurity-tools cybersight-security firehol html-css-javascript html-css-js open-source security threat- threat-analysis threat-detection threat-hunting threat-intelligence threat-map threat-mapping threat-monitor web-application webapp
Last synced: 16 Jul 2025
https://github.com/lily-osp/rfid-access-control-system
This project is just one of many examples of how we can apply the use of google theachable machine.
access-control arduino automation computer-vision nfc rfid security
Last synced: 19 May 2026
https://github.com/simonbaese/jsonapi_obscurity
A Drupal module to handle an obscurity prefix for JSON:API requests.
drupal jsonapi obscurity security
Last synced: 17 May 2026