An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/pelock/radio-code-calculator-python

Radio Code Calculator is an online service along with Web API & SDK for generating car radio unlock codes for popular vehicle brands.

anti-theft car car-hacking navigation python radio radio-code radio-codes security unlock vehicle

Last synced: 30 Jul 2025

https://github.com/eteissonniere/opsec-checklist

Checklist of simple and not so simple things to enhance your OPSEC.

checklist opsec security

Last synced: 27 Feb 2026

https://github.com/zekiunal/openssl-certificate-authority-guide

Bu kılavuz, OpenSSL komut satırı araçlarını kullanarak kendi sertifika yetkilinizi (CA) kurup nasıl kullanacağınızı gösterir.

certificate-authority openssl security tls turkce turkish

Last synced: 28 Jan 2026

https://github.com/futurragroup/securitykit

SecurityKit is a lightweight, easy-to-use Swift library that helps protect iOS apps according to the OWASP MASVS standard, chapter v8, providing an advanced security and anti-tampering layer.

cydia encryption-decryption jailbreak jailbreaking obfuscation owasp reverse-engineering security swift vpn

Last synced: 04 Mar 2026

https://github.com/codingchili/enigmatic-mouse

The enigmatic mouse will keep your passwords safe - password manager on Android in Kotlin.

android android-application kotlin password-generator password-manager passwords security

Last synced: 11 Aug 2025

https://github.com/perimetersec/resources

Public resources on fuzzing services, methodologies, and benefits for protocol security.

echidna evm fuzzing medusa security solidity

Last synced: 14 Apr 2025

https://github.com/cypwnpwnsocute/RedisHoneyPot

High Interaction Honeypot Solution for Redis protocol

gev golang honeypot security

Last synced: 01 Apr 2025

https://github.com/sqlsec/intranetsecurity

内网安全从零开始红队教程,这可能是国内最系统最适合小白的内网安全教程。

course mkdocs-site security

Last synced: 22 Apr 2025

https://github.com/vietlq/smart-contract-audit

Guide to auditing EVM smart contracts using tools

cve-scanning ethereum evm security security-audit smart-contracts

Last synced: 16 Jan 2026

https://github.com/mk-fg/acme-cert-tool

Simple one-stop tool to manage X.509/TLS certs and all the ACME CA authorization stuff

acme-client certificates cryptography letsencrypt python security sysadmin tls tool web-pki x509

Last synced: 23 Apr 2025

https://github.com/davidwells/dom-guard

🔐 Lock DOM node contents to protect people against scammers using browser devtools

dom-manipulation security

Last synced: 12 Apr 2025

https://github.com/kannkyo/epss-api

EPSS(Exploit Prediction Scoring System) API client

epss security vulnerability

Last synced: 16 Jan 2026

https://github.com/jay-johnson/nerfball

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need :space_invader: + :bug: :soccer: :football: :whale:

docker jail python reverse-engineering runtime-system security security-audit security-hardening untrusted-code

Last synced: 14 Apr 2025

https://github.com/tagomaru/truffle-sca2t

Smart contract auditing assistant tool for Truffle Framework.

auditing ethereum ethereum-contract security smartcontract solidity

Last synced: 13 May 2025

https://github.com/subrose/thorn

🌹 Thorn is an open-source, data privacy vault to store and manage PII in a fully compliant manner.

ccpa data-privacy encryption gdpr hipaa pci pci-dss privacy privacy-by-default privacy-by-design privacy-engineering security subrose

Last synced: 10 Mar 2026

https://github.com/nirmata/kyverno-policies

Curated Kyverno Policy Sets from Nirmata

kubernetes kyverno policy-as-code security

Last synced: 22 Sep 2025

https://github.com/caputomarcos/node-red-contrib-oauth2

The node-red-contrib-oauth2 is a Node-RED node that provides an OAuth2 authentication flow. This node uses the OAuth2 protocol to obtain an access token, which can be used to make authenticated API requests.

node-red oauth2 security

Last synced: 16 Jan 2026

https://github.com/Perufitlife/supabase-security-skill

Open-source Supabase security auditor: detects RLS-disabled tables, public buckets, exposed SECURITY DEFINER functions. Active anonymous probe confirms each leak with the anon key.

audit auditor cli devsecops leak mit-license nodejs open-source penetration-testing postgres rls scanner security security-audit supabase typescript vulnerability

Last synced: 25 Jun 2026

https://github.com/thatsinewave/spy.pet-info

This repository serves as an index for all info the community has gathered on the Spy.pet situation and as well as my own tables and tools written for these investigations. Spy.pet was taken down by Discord on 11.08.2024, this is just an archive of what bots where in each server.

bot bots database discord discord-api discord-bot discord-data discord-py discord-token scrape scraper scraping scraping-websites scrapper security security-scanner security-tools spy-pet spypet thatsinewave

Last synced: 30 Apr 2025

https://github.com/privacyidea/adfs-provider

Authentication provider for Microsoft AD FS to use with privacyIDEA.

2fa adfs authentication mfa multi-factor-authentication security

Last synced: 03 May 2025

https://github.com/seemoo-lab/wisec2017_nexmon_jammer_demo_app

This project contains source code of our Nexmon-based jammer app presented as a demo at WiSec 2017.

android-application jamming nexmon security wireless

Last synced: 05 Apr 2025

https://github.com/hahwul/vais

SWF Vulnerability & Information Scanner

hacking scanner security swf

Last synced: 30 Apr 2025

https://github.com/goncalor/cve-ark

All published CVE and their recent changes, ready to be used by humans and machines

cve security security-vulnerability

Last synced: 12 Jul 2025

https://github.com/vantamnguyen/java-backend

Things I learn to become a Java backend engineer

database https java-backend restful-api security servlet spring testing

Last synced: 05 May 2025

https://github.com/may215/koa-protect

Security module for koa applications

koa nodejs security sql-injection xss

Last synced: 10 Jul 2025

https://github.com/turbot/flowpipe-samples

Flowpipe sample mods, demonstrating common pipeline patterns and how to use the Flowpipe library mods. Run directly or use as examples for your own pipelines.

automation cloud devops flowpipe flowpipe-mod hacktoberfest hcl low-code orchestration security workflow

Last synced: 25 Feb 2026

https://github.com/yojiwatanabe/networkalarm

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

hack-detection network-capture network-monitoring networking pcap scanning security security-automation security-scanner security-vulnerability

Last synced: 11 May 2025

https://github.com/JuliaLang/SecurityAdvisories.jl

The Julia Security Advisory Database

cve julia security

Last synced: 06 Apr 2026

https://github.com/itaynir1/brute-force

This project is a Python script for conducting a brute-force attack on a login page. It takes a target URL, a username, and a password file as inputs, attempting to find the correct password through successive login attempts.

automation brute-force-attack command-line-tool ethical-hacking http-requests login-page password-cracking password-management python-libraries python-script requests security term-colors user-authentication web-application-testing web-development web-scraping web-security

Last synced: 01 May 2025

https://github.com/mainframe-renewal-project/sear

SEAR (Security API for RACF) - A unified and standardized interface to RACF callable services.

api ibmz ibmzsystems mainframe mainframe-security racf security zos

Last synced: 06 Mar 2026

https://github.com/systemli/mail-tls-helper

Postfix helper for mandatory TLS

postfix postfix-helper python security tls

Last synced: 12 Jul 2025

https://github.com/sap-samples/cross-language-detection-artifacts

This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment, the list of identified malicious packages, and the scripts necessary to replicate and verify our results.

machine-learning open-source sample sample-code security

Last synced: 13 Apr 2025

https://github.com/danieljustus/symaira-vault

🔐 The password manager for terminal users and AI agents. Age-encrypted, keyring-cached, MCP-ready. Zero telemetry.

age-encryption agent-skills ai-agents claude-code cli codex-cli golang hermes-agent hermes-skill mcp mcp-server openclaw openclaw-skill opencode own-your-data password-manager security

Last synced: 11 Jun 2026

https://github.com/agent-receipts/obsigna

Agent Receipts — cryptographically signed audit trails for AI agent actions. Protocol spec, SDKs (Go, TypeScript, Python), and MCP proxy.

agent-receipts ai ai-agents audit cryptography ed25519 golang mcp model-context-protocol python receipts security typescript verifiable-credentials w3c-vc

Last synced: 12 Jun 2026

https://github.com/akshatvg/vulnerability-testing-solutions

Website for testing and preventing different attacks like XSS, SQL Injection & Spoofing for Nasscom (ISAA) Project.

audit cyber-security security spoofing sql-injection testing vulnerability website xss

Last synced: 11 Apr 2025

https://github.com/frozenassassine/easepass

A powerful but simple, password manager that stores all your passwords locally and offline. Written in C# WinUI3

2fa-client 2factor app csharp password password-manager passwordmanager security totp windows winui3

Last synced: 23 Aug 2025

https://github.com/MindPatch/pmg

Extract parameters/paths from urls

bugbounty bugbounty-tool bughunting python regex security

Last synced: 11 Jul 2025

https://github.com/mikaelvesavuori/better-apis-workshop

Workshop and demo for improving API quality, stability, and observability.

apis aws demo learning observability quality security serverless stability workshop

Last synced: 21 Mar 2025

https://github.com/xi/xiMatrix

filter net requests according to source, destination and type

ad-block firefox-extension security umatrix webextension

Last synced: 26 Mar 2025

https://github.com/monish-khatri/security-headers

Package provides a minimal and simple integration to attach OWASP security headers for building a secure Laravel application.

composer-package laravel owasp-top-10 php8 security security-headers

Last synced: 10 Apr 2025

https://github.com/polymer/polymer-resin

XSS mitigation for Polymer webcomponents that uses safe html type contracts

polymer security webcomponents xss

Last synced: 02 May 2025

https://github.com/yallxe/hogg

Common vulnerability scanning on steroids ☄️

dns exploit network proxy rust rust-lang scanner secrets security sniffer vulnerabilities webscanner

Last synced: 19 Jul 2025

https://github.com/ko-ko-ko/php-assert

Fast flexible php assert

assert php security validation

Last synced: 11 Jan 2026

https://github.com/grapheneos/device_common

Common device sources.

android grapheneos security

Last synced: 07 Jul 2025

https://github.com/t2minator/mbp-tails

How to get Tails working on T2 Apple device (e.g. 2019 MacBook Pro) without needing external keyboard/mouse.

anonymity anonymous apple apple-t2 chroot debian debian-linux kernel linux linux-kernel macbook macbookpro macbooks mpb privacy security t2 t2tails tails tor

Last synced: 09 Jul 2025

https://github.com/xi/ximatrix

filter net requests according to source, destination and type

ad-block firefox-extension security umatrix webextension

Last synced: 29 Jul 2025

https://github.com/plackemacher/secure_compare

A secure compare for Elixir.

elixir library package security

Last synced: 12 Apr 2025

https://github.com/hackeralert/paircrypt

A simple tool to securely communicate with others.

encryption password privacy security security-tools tweetnacl-js x25519 xsalsa20poly1305

Last synced: 10 Apr 2025

https://github.com/marcosimioni/omigood

OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research team, specifically CVE-2021-38647.

cve-2021-38647 omigod omigood security

Last synced: 12 May 2025

https://github.com/joshuaquek/quickencrypt

Easily generate RSA Public-Private Keypairs and use them for secure asymmetric one-way encryption and decryption! - npmjs.com/package/quick-encrypt

asymmetric-cryptography cryptography decrypt decryption encrypt encryption javascript nodejs npm-package rsa security

Last synced: 05 May 2025

https://tersesystems.github.io/ocaps/

Object capability (ocap) tools and macros for Scala.

access capabilities capability ocap scala security

Last synced: 23 Sep 2025

https://github.com/cipherstash/encrypt-query-language

Index and search encrypted data in PostgreSQL with SQL

encryption encryption-in-use postgres postgresql security

Last synced: 09 Apr 2025

https://github.com/airlock/microgateway

Artifacts for Airlock Microgateway, a Kubernetes native WAAP (Web Application and API Protection) solution to protect microservices.

airlock cilium ergon gateway-api istio k8s kubernetes kubernetes-operator microgateway openshift security waap waf web-application-security

Last synced: 13 May 2026

https://github.com/aydinnyunus/cve-2024-24576-exploit

CVE-2024-24576 Proof of Concept

1-day exploit rust security

Last synced: 29 Apr 2025

https://github.com/reinershir/lui-auth

一个使用简单的安全防护、权限验证、身份验证工具,无复杂配置,只需依赖jar并简单配置即可使用,目前拥有功能:角色、菜单、权限集成管理,IP限流,内部服务双向验证、自动打印请求日志等。 A simple and secure protection tool that is easy to use, with permission verification and identity authentication. No complex configuration is required, just rely on the jar file and simple configuration to use it.

authentication-backend lui-auth modified-preorder-tree-traversal permission security

Last synced: 14 Jan 2026

https://github.com/prontolabs/pronto-brakeman

Pronto runner for Brakeman, security vulnerability scanner for RoR

analyzer brakeman pronto pronto-runner ruby-on-rails security security-scanner

Last synced: 24 Oct 2025

https://github.com/x13a/py-minisign

Missing python minisign library.

crypto ed25519 minisign python security

Last synced: 24 Jul 2025

https://github.com/jpcertcc/toolanalysisresultsheet_jp

分析ツール結果シート

security

Last synced: 09 Apr 2025

https://github.com/advanced-security/probot-security-alerts

Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts

ghas nodejs probot sample security security-alerts typescript

Last synced: 23 Oct 2025

https://github.com/checkmarx/ast-vscode-extension

The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

checkmarx checkmarx-ast security vscode-extension

Last synced: 02 Apr 2026

https://github.com/fphammerle/docker-onion-service

hidden tor .onion service 🐳

docker network onion-service podman security tor

Last synced: 04 May 2025

https://github.com/prawee/cyber-security

Note for cyber security class

docker git security strapi

Last synced: 22 Sep 2025

https://github.com/sebastienrousseau/password-generator

A fast, simple, and powerful open-source utility tool for generating strong, unique, and random passwords. The Password Generator supports various types of passwords including base64-encoded, memorable, and complex strong passwords.

crypto cryptography dictionary dictionary-tools generator javascript memorable-passphrases memorable-passwords nodejs npm passgen passgenerator password password-generator passwords security security-tools yeoman

Last synced: 16 Mar 2025

https://github.com/multiform-validator/docs

Multilingual library made for validation, various form fields, such as: email, telephone, password, cpf, cnpj, credit card, magic numbers for image mimetype validation and much more.

collaborate communityexchange filter form-validator github github-pages multiform-validator safe safety security security-tools student-vscode valid valid-fields validador validator

Last synced: 15 Apr 2025

https://github.com/dutchcoders/identify

Identify web application versions

fingerprint security

Last synced: 11 Apr 2025

https://github.com/vincd/savoir

Savoir is a tool to perform tasks during internal security assessment

kerberos pentesting security windows

Last synced: 20 Jan 2026

https://github.com/geeknik/cve-fuzzing-poc

PoCs discovered through fuzzing which resulted in a CVE assignment.

cve fuzzing infosec poc security testcase

Last synced: 10 Mar 2025

https://github.com/sozercan/guac-ai-mole

🥑 Inspect and understand an organization's software supply chain that enables stakeholders to make actionable decisions about software supply chain security

ai chatgpt gpt-4 guac openai sbom secure-supply-chain security security-tools streamlit supply-chain-security

Last synced: 28 Sep 2025

https://github.com/orbitale/permissionsbundle

Use expression based permissions instead of roles or voters to simplify your security in Symfony. Feel free to contribute ! :+1: Project was initiated after this discussion: https://github.com/symfony/symfony/issues/21029

bundle permissions security symfony symfony-bundle

Last synced: 13 Apr 2025

https://github.com/guiofsaints/backup-anything

Scripts to create a backup of anything.

backup bash bucket database mongodb mysql postgresql s3 script security tools

Last synced: 21 Nov 2025

https://github.com/ctxz/mkauthdocs

A tool made to implement simple authentication on top of mkdocs builds.

auth authentication credentials login mkdocs security

Last synced: 21 Mar 2025

https://github.com/mohammad-taheri1/youtube-jwtauthaspnet7webapi

In this repository, we implement authentication and authorization using JWT in a new Asp.NET 7 WebAPI project.

asp-net-core jwt security webapi

Last synced: 11 Jul 2025

https://github.com/tersesystems/ocaps

Object capability (ocap) tools and macros for Scala.

access capabilities capability ocap scala security

Last synced: 08 Mar 2026

https://github.com/shellrow/nscan

Network scan tool for host and service discovery. Written in Rust.

cli-app cross-platform network rust scanner security

Last synced: 13 Apr 2025

https://github.com/sitebatch/waffle-go

Waffle is a library for integrating a Web Application Firewall (WAF) into Go applications.

golang security waf

Last synced: 12 Jan 2026

https://github.com/chadmcox/azure_ad_conditional_access_policies

Tools to help implement Conditional Access Policies in Azure AD

azuread azuread-b2b azuread-reporting conditional-access mfa security

Last synced: 28 Jun 2025

https://github.com/veinar/envcloak

A secure and easy-to-use tool for managing sensitive data with built-in encryption, decryption, and key management. Protect your secrets during development, testing, and deployment with CLI command + Python library support.

cicd cicd-pipeline cli-tool decryption devops encryption encryption-decryption env environment-variables python-library secret-management secret-sharing secrets security sensitive-data-security tool tooling tools validation

Last synced: 11 Sep 2025

https://github.com/yosaiproject/yosai_alchemystore

SQLAlchemy-enabled Account Store for Yosai that features a flat Role-Based Access Control (RBAC) data model

security sqlalchemy yosai

Last synced: 14 Jan 2026