An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/oxagast/antilockdown

Inhibit a screensaver/lock screen via Bluetooth (also known as a Jiggler)

bluetooth exfiltrate-data infosec jiggaler screenlock-inhibitor screenlocker screensaver-disabler security security-tools

Last synced: 14 Jun 2025

https://github.com/ctkqiang/keyloggerzghk

这个仓库包含一个基础键盘记录器的 Python 脚本。键盘记录器是一种监控和记录用户在计算机上按键的监视软件。该脚本专门捕获键盘输入并通过 webhook URL 将记录的数据发送到远程服务器。

china ctkqiang cybersecurity hacking keylogger security

Last synced: 26 Jan 2026

https://github.com/lightningstalker/stronger-gpw

An "improved" version of `gpw` that generates stronger passwords.

dictionary password-generator security security-tools shell

Last synced: 02 May 2026

https://github.com/realmoieen/tms

Tailor Shop Management System is a web application developed in java with spring boot which allows you to keep track of customer’s measurements, orders and as well as print receipts for them. It helps to manage all orders/sales, customers, income, expenses, measurements, so business can keep things organized.

java security spring spring-boot tms

Last synced: 17 Jan 2026

https://github.com/vvv-keys/keys-custom-idps

This Python script provides a sophisticated botnet detection system that leverages signature-based detection, machine learning algorithms, behavioral analysis, and traffic profiling to identify potential botnet activity in real-time. It also includes advanced alerting capabilities and integration with IP reputation services and SIEM for DETECTION!

botnet botnet-detection botnet-tool botnet-tools botnets cybersecurity cybersecurity-tools idps idpshook python python-3 python-script python3 safety-monitoring security security-audit security-automation security-tools

Last synced: 11 Mar 2025

https://github.com/noelschwarz/coral

Coral is an open-source, local-first session bridge that lets AI agents borrow a user's already-authenticated browser sessions on a per-site, per-action, fully audited basis.

agents ai ai-agents browser-automation chrome-extension local-first mcp model-context playwright python security session-management

Last synced: 20 Jun 2026

https://github.com/electriccoffee/rust-seclib

An attempt at implementing Haskell's SecLib in Rust

rust-library seclib security taint-analysis

Last synced: 05 Oct 2025

https://github.com/malmichaels-gif/agent-instructions-kit

Keep your AGENTS.md and CLAUDE.md files consistent, safe, and lint-checked

agents automation claude cli devtools github-action prompt-injection security

Last synced: 18 Jan 2026

https://github.com/elnappo/broadtractor

Broadcast Extractor

broadcast privacy python3 security

Last synced: 25 Mar 2025

https://github.com/burghardt/tf-gcp-easy-wg-quick

Terraform configuration for deploying easy-wg-quick in Google Cloud Platform

gcp security terraform vpn vpn-server wg-quick wireguard

Last synced: 09 Apr 2025

https://github.com/ctkqiang/2d05

这款工具是一种 分布式拒绝服务(DDoS)攻击工具,它能够通过大量虚假流量淹没目标服务器,从而导致其无法正常响应合法请求,最终使系统崩溃或服务中断。🚀💥

2d05 china cpp cpp11 ctkqiang ddos ddos-attacks dos hacking-tool network security simple

Last synced: 04 Jun 2026

https://github.com/ansballard/gubbins

A temporary password sharing utility

nodejs security

Last synced: 29 May 2026

https://github.com/ahmed-alnassif/androsh

Run a lightweight Alpine Linux environment on Android devices using proot and Shizuku to obtain elevated ADB-like permissions without rooting. AndroSH automates downloading Alpine, setting up the chroot-like environment, and bridging commands through Shizuku for a smooth developer experience.

adb alpine-linux android development linux proot root security shizuku termux

Last synced: 09 Apr 2026

https://github.com/tum-i4/codaspy2022

This repository is part of the paper "Hardening with Scapolite: a DevOps-based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations" presented at the 12th ACM Conference on Data and Application Security and Privacy (CODASPY). http://www.codaspy.org/2022/

configuration-management hardening scap scapolite security

Last synced: 17 Jan 2026

https://github.com/spurreiter/proof-of-login

a proof-of-work for login or registration endpoints

login proof-of-work security

Last synced: 12 Jun 2025

https://github.com/janniclas/protection-poker

Protection Poker is an agile security game, similar to Planning Poker. It is used to explicitly integrate security features in the planning process.

agile information-security protection-poker security

Last synced: 31 Mar 2025

https://github.com/greycloudss/gauntlet

Gauntlet is a C++ reverse engineering utility that supports both static and dynamic disassembly, along with DLL injection into external processes. Built for modularity and performance, it provides core building blocks for memory manipulation, opcode decoding, and instruction tracing.

cpp disassembler imgui injector reverse-engineering security

Last synced: 04 Jul 2025

https://github.com/zero-24/plg_system_force2fausergroup

This plugin allows to force users to set up 2FA in a specific user group.

2fa joomla joomla-plugin security

Last synced: 07 Oct 2025

https://github.com/containerssh/charts

The ContainerSSH Helm charts

devsecops docker kubernetes security ssh

Last synced: 20 Jul 2025

https://github.com/mediamonks/self-xss-console-banner

This module will log a self-xss banner to warn users about the self-xss security risk. This banner should be used for projects that have data behind a login.

security security-tools self-xss self-xss-warning

Last synced: 25 Mar 2025

https://github.com/greycloudss/greave

Greave is a fast, multi-mode scanner for locating sensitive information in both local filesystems and Confluence pages.

armourer confluence crawler python reconnaissance security

Last synced: 07 Oct 2025

https://github.com/opendefinition/tuoda

Generic log importer for Graph databases

blueteam graphing graphs logs security threathunting

Last synced: 14 Jan 2026

https://github.com/rashimrbrd/security

A comprehensive security management platform designed to protect users, applications, and infrastructure through advanced threat detection, access control, and real-time monitoring capabilities.

docker javascript-library maintenance security tools-and-automation tools-engineering wrangler

Last synced: 01 May 2026

https://github.com/albertdobmeyer/opencli-container

Hardened container harness for OpenClaw agents — proxy-gated networking and security verification

ai-agents ai-safety container-security defense-in-depth docker mitmproxy openclaw podman sandbox seccomp security

Last synced: 29 May 2026

https://github.com/xxmrk888ytxx/portal-android

Portal is a secure, open-source smart key that turns your Android smartphone into a wireless authentication tool for your computer. It enables instant PC unlocking via Bluetooth (RFCOMM) or WiFi (WebSockets), featuring biometric protection, Wake-on-LAN support, and a privacy-focused, local-only communication model.

android bluetooth kotlin mtls security windows

Last synced: 31 May 2026

https://github.com/lion-packages/authentication

Library to authenticate users in 2 steps

2fa 2fa-security 2factor php security

Last synced: 05 Jun 2026

https://github.com/eperegrine/script_sanitizer.js

A simple npm library to remove script tags but keep other html

javascript npm npm-package regex script-sanitizer security security-tools xss xss-prevention

Last synced: 12 Apr 2026

https://github.com/masterlittle/hibpnotifer

Checks for breaches for an email against the HaveIBeenPwned Database and allows sending emails and slack notications along with integrating with GSuite to automate breach detection for enterprise employees.

breach compromised-emails python security

Last synced: 16 Mar 2025

https://github.com/lauslim12/vigenere

Dependency-free, secure symmetric encryption implementation with Vigenère-Vernam Cipher algorithm as a library for Go. Acts as a One-Time Pad (OTP) to ensure maximum security, and supports custom alphabets.

algorithms encryption encryption-decryption go library one-time-pad security vigenere vigenere-cipher

Last synced: 23 Apr 2025

https://github.com/belgif/rest-security

The Belgif REST Security Guide is ought to be regarded as an addendum to the Belgif REST Guidelines.

belgif belgium guide rest rest-api restful-api security

Last synced: 20 Apr 2026

https://github.com/aayushadhikari7/aegis

A local-first WebAssembly sandbox runtime with capability-based security

capability-based-security runtime rust sandbox security wasm wasmtime webassembly

Last synced: 18 Jan 2026

https://github.com/victoralfred/devsec

MLSecOps security pipeline tool - automated scanning, policy enforcement, compliance mapping, and ML validation for CI/CD

cli compliance devsec golang iso27001 mlsecops opa policy-as-code sast sbom secrets-detection security slsa soc2 supply-chain-security vulnerability-scanner

Last synced: 12 Mar 2026

https://github.com/makers99/wp-cli-db-export-clean

Create minimal database dumps without customer data for external/freelancers and CI/CD.

ci ci-cd continuous-integration database devops dump mysql php privacy security woocommerce wordpress wp-cli wp-cli-command wp-cli-package

Last synced: 13 Jan 2026

https://github.com/fhnw-imvs/fhnw-kubeseccontext

Keep your Kubernetes workloads in tune — secure and functional.

hardening kubernetes runtime-security security security-context

Last synced: 14 Jan 2026

https://github.com/protdos/veilo

Revolutionize your chats with our quantum-secure app, ensuring the highest levels of privacy and security.

anonymity app chat messaging opsec post-quantum pq pqcrypto privacy security signal veilo

Last synced: 08 Apr 2025

https://github.com/cyanheads/nist-nvd-mcp-server

Search and audit CVEs by keyword, severity, CWE, CISA KEV status, and CPE via the NIST National Vulnerability Database. STDIO or Streamable HTTP.

bun cisa-kev cpe cve cvss mcp mcp-server model-context-protocol nist nvd security typescript vulnerability

Last synced: 29 May 2026

https://github.com/bernardo-mg/spring-ws-security-starter

Starter for setting up security in a Spring web service

security spring-starters spring-ws

Last synced: 11 Feb 2026

https://github.com/edeckers/lib1password-unofficial

Educational TypeScript implementation of 1Password's security model with interactive explainer. Covers Secret Key generation, PBKDF2 key derivation, and AES-256-GCM vault encryption

1password aes-256 cryptography educational encryption interactive-demo password-manager pbkdf2 pet-project security srp typescript web-crypto

Last synced: 28 Feb 2026

https://github.com/hakenr/donottrustwebclient

ASP.NET Worst Practices demo - security vs. client input

demo security spoofing

Last synced: 29 Jun 2025

https://github.com/samuel-lucas6/clipboardclear

Clear your clipboard with one click.

clipboard clipboard-clear clipboard-management security

Last synced: 09 Oct 2025

https://github.com/ndiing/cert

Utilitas untuk menghasilkan sertifikat Certificate Authority (CA) dan sertifikat untuk hostname tertentu dalam format PEM.

ca certificate pem security ssl

Last synced: 24 Mar 2025

https://github.com/ctkqiang/backdoortheory

这是一个基于 Erlang 构建的高并发 TCP 后门模拟框架,旨在真实复刻黑客如何伪装一个正常应用的行为,实则在后台运行隐秘通信逻辑,支持十万级并发连接、自定义命令-数据分离协议、自动数据落地与 Mnesia 分布式持久化存储,并通过彩色日志与复杂度优化构建极致可控性和可扩展性,适用于教育、安全研究、红队演练与恶意软件行为模拟场景,全面揭示现代木马应用的工程结构与潜在攻击链。

backdoor beam china chinese ctkqiang cybersecurity erlang erlang-developement erlang-otp network nmap otp python security tcp tcp-server trojan vulnerability

Last synced: 09 Oct 2025

https://github.com/kavindu-mane/gpn8-password-manager

First year Semester 2 final project - group 8 (2021) , Uva Wellassa University , Sri Lanka.

password password-generator password-manager security

Last synced: 06 Apr 2025

https://github.com/joelayo/kubectl-go-mcp-server

MCP server for secure Kubernetes Interaction via kubectl commands. Enables AI assistants like GitHub Copilot to safely interact with K8s clusters with robust validation and security.

copilot devops go golang k8s-tools kubectl kubernetes mcp-server model-context-protocol security

Last synced: 17 Apr 2026

https://github.com/BKLockly/ShadowMeld

🕶️ 隐蔽Shellcode嵌入与反检测加载器生成框架 / Stealthy Payload Delivery Framework with Anti-EDR Capabilities

bypass-antivirus bypass-av cipher cryptography hacking hide-files image-steganography lsb-steganography security shellcode shellcode-loader

Last synced: 01 Apr 2025

https://github.com/mdjfs/facetrack

Desktop app for security camera systems to track faces

camera detection dvr electron face node onvif react recognition security track webpack

Last synced: 12 Apr 2026

https://github.com/gitbolt/insecure-program

An intentionally made insecure Anchor program for Solana Summer Fellowship 2024

anchor security solana

Last synced: 20 Oct 2025

https://github.com/sixt/hardcoded-slack-webhook-alerter

This tool can be used to scan for hardcoded Slack webhooks and send an alert to each one about the dangers of hardcoded credentials.

credentials devsecops pentesting secrets security security-tools

Last synced: 14 Jan 2026

https://github.com/limitedeternity/ost2

OpenSecurityTraining2 – Lectures

architecture infosec security

Last synced: 10 Oct 2025

https://github.com/filipnet/nodered-securitycam

Retrieval of e-mail, extraction of image attachments, resizing and creation of slideshow for MQTT

attachments camera e-mail flow hikam image mqtt node-red security slide slideshow

Last synced: 10 Oct 2025

https://github.com/davidcrowe/openclaw-gatewaystack-governance

GatewayStack governance layer for OpenClaw — identity, scope, rate limiting, injection detection, and audit logging for every tool call

agentic agenticcontrolplane ai audit-logging authorization compliance gatewaystack governance identity injection-detection llm observability openclaw policy rate-limiting scope security

Last synced: 14 Apr 2026

https://github.com/githubfoam/.allstar

github repository security

github repository security

Last synced: 30 Mar 2025

https://github.com/rootshelll/wso

WSO (Web Shell by oRb) features, installation guide, and security tips.

php-shell security server-management web-shell wso

Last synced: 18 Jun 2025

https://github.com/oussamaelmessaoudi/securing-mqtt

Security Audit and Hardening of MQTT Protocol using Mosquitto Broker on Ubuntu/WSL. This repository documents vulnerabilities, exploitation, and secure configuration of MQTT with authentication, ACLs, TLS/SSL, and firewall rules.

acl firewall iot mosquitto mqtt security ssl tls ubuntu wsl

Last synced: 06 Jan 2026

https://github.com/lazauk/azuresphere-mt3620

Demo of secure "Voting Machine", powered by Azure Sphere..

iot security

Last synced: 10 Oct 2025

https://github.com/jakhax/containers-from-scratch

Creating containers from scratch to get better understanding of how containers work

containers docker sandbox security virtualization

Last synced: 16 Jan 2026

https://github.com/nikola-susa/pigeon-box

:bird: Secure internal chat built on top of a Slack bot

chat go security slack-bot

Last synced: 14 Jan 2026

https://github.com/eagleEggs/bugBounties

Authorized dislosures of bugbounties that have been resolved

bugbounty bugcrowd fitbit penetration-testing security

Last synced: 10 Mar 2025

https://github.com/ch0d/listmk

A simple and effective wordlist creator

c-ansi listmk security tools wordlist wordlist-generator

Last synced: 07 Apr 2025

https://github.com/shivlalsharma/password-generator

A responsive and customizable password generator that allows users to generate secure passwords with options to include uppercase, lowercase, numbers, and special characters. The generated password can be easily copied to the clipboard with a single click.

clipboard css html javascript password-generator responsive-design security web-development

Last synced: 09 May 2026

https://github.com/vicephp/virtue-access

Making access management more Pythonic...

php php-library php7 security

Last synced: 19 Jan 2026

https://github.com/jiprettycool/lunatransfer

📂 Self-hostable Managed File Transfer solution built with Go, featuring API keys, comprehensive audit logging, and real-time WebSocket notifications for secure file exchange.

api api-key audit-logging authentication file-management file-sharing file-transfer go golang jwt managed-file-transfer notifications rate-limiting rest-api secure-transfer security self-hosted websockets

Last synced: 11 Oct 2025

https://github.com/kentico-ericd/xperience-community-database-anonymizer

Anonymizes sensitive data in Kentico 13 and Xperience by Kentico databases

kentico kentico-xperience security xperience-by-kentico

Last synced: 11 Oct 2025

https://github.com/laxmariappan/wordpress-security

Curated list of WordPress security checklist, resources, tools and best practices

hacktoberfest hacktoberfest-accepted hacktoberfest2023 php security wordpress

Last synced: 21 Apr 2026

https://github.com/extensionengine/pipeline-security-orb

An orb to facilitate security work within Studion CircleCI pipelines

circleci orb security studion

Last synced: 12 Oct 2025

https://github.com/kirakenjiro/guardian

[🔒] Your shield against intrusive trackers, annoying ads, and other online nuisances. Keep your browsing experience clean, private, and distraction-free.

adblock adblock-list adguard dns filter-list pihole privacy protection security tracking

Last synced: 19 Jan 2026

https://github.com/mxtheuz/mx-minecraft-login

MxLogin is a Bukkit plugin that provides a simple login and registration system for players on a Minecraft server. With MxLogin, players are required to register an account and log in before they can fully interact with the server. This adds an extra layer of security and control over player actions.

bukkit java jdk login minecraft plugin security spiggot

Last synced: 04 Feb 2026

https://github.com/xmartlabs/vytallink

VytalLink is a digital health platform connecting personal health data—including Apple Health, Google Fit, and wearables—with AI assistants like ChatGPT and Claude. Includes a Flutter app, Node.js MCP server, and Firebase landing page. Focused on privacy and user control.

ai apple-health artificial-intelligence chatgpt claude fitness flutter google-fit health health-data mcp mobile-app model-context-protocol nodejs privacy security wellness werable

Last synced: 13 Oct 2025

https://github.com/js-kyle/koa-security.txt

Koa middleware for serving a security.txt file

koa koa-middleware security securitytxt

Last synced: 19 Jan 2026

https://github.com/oktadev/okta-jpaseto-example

Example of how to use JPaseto

example java paseto security tokens

Last synced: 13 Oct 2025

https://github.com/Lemniscate-world/Noun

Build my own blockchain based on TOR protocol

anonimity blockchain cryptography proof-of-stake security tor

Last synced: 13 Oct 2025

https://github.com/authress/express-starter-kit

The Authress Starter Kit for Express. Includes Authentication, Authorization, user identity and role management

api authentication authorization authress backend express expressjs javascript security service starter-kit typescript

Last synced: 29 Apr 2026

https://github.com/shaalexander/ecz-cleanmac-assistent

CleanMac Assistant is an open-source AppleScript and shell script project designed as a lightweight alternative to CleanMyMac X. This tool helps you clean up and optimise your macOS system by securely removing unnecessary files, caches and log files. SEE URL FOR RELEASES

clean cleanmac-assistant cleanmymac cleanmymacx device easycomp-zeeland free homebrew macos maintenance malware-scan no-telemetry on opensource privacy righttorepair security software-update system-optimization

Last synced: 18 Jun 2025

https://github.com/levminer/authme-docs

Documentation for Authme and Authme Web

2fa authme authme-web security

Last synced: 16 Mar 2025

https://github.com/ojster/ojster

GitOps-safe one-way encrypted secrets, unsealed at container runtime as ephemeral env vars, for Docker Compose

compose container docker docker-compose dotenvx encrypt-decrypt encryption env environment-variables gitops go golang ojster sealed-secrets security self-hosted selfhosted vault zero-dependency zero-trust

Last synced: 23 Feb 2026

https://github.com/turbot/flowpipe-mod-pipes

Pipes pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Pipes to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines pipes security turbot-pipes workflow workflow-automation workflow-engine

Last synced: 19 Mar 2026

https://github.com/sampsonc/Perfmon

Performance metrics for Burp Suite

burp java security

Last synced: 19 Apr 2025