An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/reverseapple/analysissuite

Utilities for reverse engineering Apple binaries

apple binary-analysis research reverse-engineering security tools

Last synced: 09 Apr 2025

https://github.com/sebastienrousseau/password-generator-pro

A fast, simple and powerful open-source cross platform utility tool for generating strong, unique and random passwords 🦀

cross-platform cross-platform-app passphrase-generator password-generator password-generator-pro rust security tauri tauri-app

Last synced: 21 Aug 2025

https://github.com/tigera-solutions/azure-hub-spoke-aks-egress-gateways

[Azure AKS Blueprint] Learn how to deploy Azure Hub-Spoke VNETs with AKS and Calico Egress Gateways

aks azure calico egress egress-gateway microsoft-azure security tigera

Last synced: 17 Aug 2025

https://github.com/BiasedRiot/Glanadh

Service to automatically remove Metadata from your files.

cloud-computing exif exif-data mat2 metadata monitoring privacy privacy-tools security security-tools shell systemd

Last synced: 12 Jul 2025

https://github.com/ebkalderon/bastille

Process sandboxing library written in Rust

cross-platform namespace rust sandbox security

Last synced: 23 Apr 2025

https://github.com/drizzlerisk/armyworm

Armyworm是一款用于研究和测试的Internet Explorer密码输入控件粘虫防护能力的测试程序

activex armyworm bank ocx pentest security trojan

Last synced: 16 May 2025

https://github.com/inexio/cve-alert-manager

Collect security alerts from different sources and provide a normalized API to query

cve golang security security-vulnerability

Last synced: 09 Mar 2026

https://github.com/nodiscc/netdata-debsecan

[mirror] Check/graph the number of CVEs in currently installed packages - netdata plugin

cve debian debsecan monitoring netdata patch-management scanner security

Last synced: 12 Aug 2025

https://github.com/hobbyquaker/check_nextcloud

Nagios/Icinga Nextcloud Security Check :cloud: :closed_lock_with_key: :ballot_box_with_check:

icinga monitoring nagios nextcloud security

Last synced: 12 Apr 2025

https://github.com/flashnuke/mod-rootkit

Kernel-space x86_64 Linux rootkit leveraging kprobes and ftrace for syscall hooking (hiding entries and reverse shell backdoor)

backdoor cybersecurity ethical-hacking hacking kernel kernel-rootkit linux linux-kernel linux-kernel-module linux-rootkit lkm lkm-root malware mod-rootkit pentest pentesting reverse-shell rootkit rootkits security

Last synced: 24 Jul 2025

https://github.com/cdpxe/hardenedlinux

Scripts of the Hardened Linux (HL) distribution: hardening scripts (HLHS) and package system (cpfos)

harden hardened-linux-scripts hardening linux linux-distribution linux-shell package-manager package-managers packet-system port-management security slackware system

Last synced: 23 Mar 2025

https://github.com/m1guelpf/laravel-ssl

A Laravel package to enforce HTTPS

enforce laravel package security ssl

Last synced: 13 May 2025

https://github.com/vartzy/nodejs-owasp-api-security

NodeJS API Guide with addressing top 10 OWASP security risk on API development.

cheatsheet cybersecurity cybersecurity-education cybersecurity-tool owasp rest-api security

Last synced: 11 Apr 2025

https://github.com/programarivm/easy-acl-bundle

Easy-to-use access control list (ACL) bundle in Symfony 5.

access acl bundle control list security symfony

Last synced: 13 Apr 2025

https://github.com/ivision-research/inzure

Azure security configuration automation tool and library

automation azure security vulnerability-detection

Last synced: 23 Jul 2025

https://github.com/infisical/k8-kms-plugin

Infisical KMS plugin for Kubernetes

encryption kubernetes security

Last synced: 04 Apr 2025

https://github.com/francescodisalesgithub/signal-proxy-setup

Guide about how to set a signal proxy for Signal app

proxy security signal signal-app signal-application

Last synced: 18 Apr 2026

https://github.com/mkmik/getsum

Abuse the gosum database to store verifiable hashes about any binary file

go hack security transparency

Last synced: 17 Aug 2025

https://github.com/leopechnicki/im_robot

Reverse-CAPTCHA for AI agents — verify bots, not humans. Multi-framework (React, Vue, Svelte, Web Components). Zero dependencies. TypeScript.

ai-agent authentication bot-verification captcha react reverse-captcha security svelte typescript vue web-components zero-dependencies

Last synced: 22 May 2026

https://github.com/theoomoregbee/angular4-auth

EVERYTHING YOU NEED TO KNOW ON SECURING YOUR ANGULAR 2+ SPA

angular-cli angular4 security single-page-app spa

Last synced: 09 May 2025

https://github.com/hivemq/hivemq-deny-wildcard-extension

HiveMQ extension for denying subscriptions to the root wildcard

extension hivemq hivemq-extension mqtt security subscription wildcard

Last synced: 08 Mar 2026

https://github.com/sigseg5/kernkill

Linux kernel module designed for emergency system management, enabling instant shutdown or process termination when a specified USB device is disconnected.

demhack5 kernel-module kernel-modules linux linux-kernel privacy security usb

Last synced: 11 Apr 2025

https://github.com/panga/node-shield

Protects against common Node.js vulnerabilities in MEAN stack (MongoDB, Node.js).

express-middleware nodejs nosql-injection owasp security

Last synced: 13 Jul 2025

https://github.com/clever/stealth

Go wrapper for credstash secret store

aws-kms credential-storage key-management security

Last synced: 30 Apr 2025

https://github.com/e107inc/sfs

Spam blocker for e107 - based on the database at stopforumspam.com

bot e107 plugin security sfs spam spambot

Last synced: 15 Jun 2025

https://github.com/lirantal/dependency-frost

Dependency Frost is an educational platform game to promote awareness of security in open source dependencies

appsec game game-development gamedev hacktoberfest kaboom-js security

Last synced: 06 May 2025

https://github.com/jakiboy/ratr

Router Config Extractor (Huawei, ZTE)

ppp router security tr069 zte

Last synced: 21 Jun 2025

https://github.com/emorilebo/advanced-env-manager

Secure NPM package for advanced environment variable managment for both local and server

config dotenv env secrets security variables

Last synced: 05 Apr 2025

https://github.com/mbologna/telnetd_honeypot

A very simple telnetd honeypot written in Python and Twisted

hacktoberfest honeypot python security telnet

Last synced: 07 Sep 2025

https://github.com/jenkinsci/pam-auth-plugin

Jenkins plugin to support authentication using PAM on Unix-like systems.

authentication jenkins-plugin pam security

Last synced: 22 Jun 2025

https://github.com/notashelf/ssa

Simple, streamlined and ✨ pretty ✨ aggregator for systemd-analyze security

aggregator security systemd

Last synced: 10 Apr 2025

https://github.com/sertxudeveloper/laravel-lockscreen

Package for locking the user account due to inactivity

hacktoberfest laravel laravel-package lockscreen security sertxudeveloper

Last synced: 12 Jun 2025

https://github.com/jonhadfield/subtocheck

subdomain takeover checker

go golang scanner security subdomain takeover

Last synced: 15 Jul 2025

https://github.com/daltonmenezes/discord-guardian-action

🤖 An action that fetches the list of malicious domains on Discord in different providers and creates/updates a JSON file with them from time to time.

action discord domains github-actions javascript json malicious-domains security typescript

Last synced: 29 Oct 2025

https://github.com/fiware/tutorials.ngsi-v2

:department_store: :handbag: NGSI-v2 Tutorials based around a Smart Supermarket

access-control contextual-data fiware iot-agent ngsi-v2 security tutorial

Last synced: 30 Apr 2025

https://github.com/ronin-rb/ronin-db-activerecord

ActiveRecord backend for the Ronin Database

activerecord activerecord-models database infosec recon ruby security

Last synced: 09 Sep 2025

https://github.com/cipherstash/cipherstash-playground

A playground to experiment with CipherStash and our data security capabilities.

aws-dynamodb data-security dynamodb encryption postgres postgresql searchable-encryption security security-tools

Last synced: 15 Jul 2025

https://github.com/davemolk/dorking

advanced searching for bing, brave, duck duck go, and yahoo

bug-bounty bugbounty dorking go golang infosec osint pentesting pentesting-tools recon research search search-engine security

Last synced: 14 Jul 2025

https://github.com/fiware/tutorials.pep-proxy

:closed_book: FIWARE 404: Securing Microservices and IoT Devices with a PEP Proxy

access-control fiware fiware-wilma iot-agent pdp pep pep-proxy security tutorial

Last synced: 30 Apr 2025

https://github.com/johnshajiang/blog

The original technicial articles

curl hpack http2 java jetty nss openssl security tls tls13

Last synced: 04 May 2025

https://github.com/zemasterkrom/zmkr-cloudflare-turnstile-bundle

Extensible and configurable integration of Cloudflare Turnstile with Symfony

anti-spam bundle captcha cloudflare form security symfony turnstile

Last synced: 30 Apr 2025

https://github.com/davidmoremad/awspice

Awspice is a wrapper tool of Boto3 library to list inventory and manage your AWS infrastructure The objective of the wrapper is to abstract the use of AWS, being able to dig through all the data of our account

aws boto3 cloud region security wrapper

Last synced: 12 Apr 2025

https://github.com/rix4uni/msarjun

Mass-scale hidden parameter discovery using Arjun. A high-performance wrapper that parallelizes Arjun for efficient parameter discovery across multiple targets.

api-fuzzer api-fuzzing api-testing arjun bug-bounty bugbounty bugbountytips content-discovery hacking infosec osint osint-tool parameter-discovery penetration-testing pentest-tool pentesting recon reconnaissance security security-tools

Last synced: 07 Apr 2026

https://github.com/jwilk/longutf8

generate overlong UTF-8 sequences

security unicode

Last synced: 12 Apr 2025

https://github.com/netlify/integration-csp

Netlify integration to use a nonce for the script-src directive of your site's Content Security Policy.

csp netlify security

Last synced: 04 May 2025

https://github.com/literallyethical/r3conwhal3

r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing performance and resource consumption through a concurrency-based approach.

automation-framework bug-bounty-tools bugbounty dns fuzzing osint pentest pentest-tool recon reconnaissance scanner security security-tools subdomain-enumeration subdomain-scanner

Last synced: 15 Dec 2025

https://github.com/tecnickcom/rndpwd

Web Service Random Password Generator written in GO

go golang password-generator security webservice

Last synced: 04 Mar 2026

https://github.com/jonhadfield/ipscout

Host threat aggregator for network administrators and security analysts.

cli ip ip-reputation netsec netsec-tools network security

Last synced: 07 Feb 2026

https://github.com/ubernostrum/django-flashpolicies

Flash cross-domain policies for Django.

django flash python security

Last synced: 26 Oct 2025

https://github.com/kardespro/nosqlmap

NoSQLMap CLI Tool is a command-line interface (CLI) tool designed to test for NoSQL injection vulnerabilities using Node.js, TypeScript, and Axios. It supports both HTTP and HTTPS requests and works with all HTTP methods.

exploit mongodb mongodb-database mongoose nosqlmap pentesting scan-tool security security-tools sqlmap

Last synced: 24 Oct 2025

https://github.com/crodjer/biip

Strip out PII before Sending Data

cli pii privacy prompt-engineering prompt-toolkit rust security

Last synced: 25 Apr 2026

https://github.com/mrcloudsec/mitre-aws-checks

Script for analyzing the compliance of your AWS account based on the adversary techniques on the MITRE ATT&CK Iaas Matrix.

aws mitre security security-scanner security-tools

Last synced: 24 Oct 2025

https://github.com/khalidelboray/zap-api-raku

A Raku module for the OWASP ZAP API.

owasp raku raku-module security web-security zaproxy

Last synced: 01 Apr 2026

https://github.com/vpereira/brucutu

Brute force tool for SSH, IMAP, HTTP, FTP, POP3 and others

brute-force go golang security security-audit

Last synced: 14 Feb 2026

https://github.com/djx-y-z/libsignal_dart

Wrapper for libsignal, implementing the Signal Protocol for end-to-end encryption. Features Double Ratchet, X3DH, Sealed Sender, Group Messaging (SenderKey), and Kyber post-quantum key exchange. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows). AGPL-3.0 Licensed.

cross-platform cryptography dart double-ratchet encryption end-to-end-encryption flutter flutter-rust-bridge frb libsignal messaging privacy rust sealed-sender security signal-protocol x3dh

Last synced: 01 May 2026

https://github.com/wan0net/awesome-abac

List of Applications that enable or natively support Attribute Based Access Control

abac access-control attribute-based-access-control authorization awesome-list cybersecurity security zero-trust

Last synced: 03 May 2026

https://github.com/mofneko/jbinspector

iOS JailBreak Detector Unity Compatible.

ios-library security unity3d-plugin

Last synced: 24 Oct 2025

https://github.com/celenityy/dove

Dove is a suite of configurations & advanced modifications for Mozilla Thunderbird, designed to put the user first - with a focus on privacy, security, freedom, & usability.

anti-tracking email gecko hardened hardening mozilla privacy private secure security settings thunderbird tracking user-js userjs

Last synced: 25 Feb 2026

https://github.com/riquedev/django-login-history2

It's easy to use, plug-in django app that once included, stores logins history (with device data, like IP, user-agent, location etc.) of all users

authenticate django ip location login security session

Last synced: 17 Mar 2026

https://github.com/open-sspm/open-sspm

Open-SSPM is a small “who has access to what” service. It syncs identities from Okta (IdP) and permissions from connected apps (GitHub, Datadog, AWS Identity Center). Demo: admin@admin.com / admin

security sspm

Last synced: 18 Apr 2026

https://github.com/djinn-soul/cytoscnpy

Fast Python static analysis powered by Rust. Detects dead code, security issues (including taint analysis), and code quality metrics like complexity, Halstead, maintainability, and nesting depth.

code-quality dead-code-detection python python-linter quality secret-detection security vscode-extension

Last synced: 18 Apr 2026

https://github.com/egorsmkv/npm-audit-to-report

A simple Go program that converts `security-audit.json` to `security-audit.md` so you can use it in CI pipeline.

ci cve go npm security yarn

Last synced: 25 Oct 2025

https://github.com/projectachilles/projectachilles

Continuous security testing and cyber-risk quantification for every organization

breach-a cyber-ri docker golang mitre purple-team security self-hosted typescript

Last synced: 03 Apr 2026

https://github.com/hartwork/mozilla-password-decrypt

:unlock: Decrypt passwords stored by Firefox, Thunderbird, Iceweasel, Icedove using libnss3.so

cli cli-app firefox icedove iceweasel mozilla mozilla-firefox mozilla-thunderbird password password-retrieval security thunderbird

Last synced: 03 Apr 2026

https://github.com/r3dhulk/bad-usb

bad usb also known as rubber ducky is a usb device to hack your target when you are in device's physical access

attack hacking security security-tools usb

Last synced: 13 Jun 2026

https://github.com/z-m-huang/vcp

Vibe Coding Protocal - Security-first protocol for AI-generated code, multiple standards with real-time enforcement and multi-AI pipeline orchestration

ai-coding claude-code claude-skills security security-audit vibe-coding

Last synced: 18 Apr 2026

https://github.com/mostafahussein/kubernetes-sec-alert

Track Kubernetes CVEs by native GitHub notifications!

cve devops github-actions golang k8s kubernetes security

Last synced: 28 Oct 2025

https://github.com/dionyziz/hackme

The website describing my bounty hunt game.

bounty security

Last synced: 24 Jan 2026

https://github.com/philippnormann/sec-grep

🔎 Fast, local search across the security & privacy literature, with an expressive query language, an interactive TUI, and scriptable output.

academic cli dblp papers privacy research-tool rust security security-research tui

Last synced: 10 Jun 2026

https://github.com/italomaia/uri-faker

See how fonts can be used to create fake URIs

fonts html jquery pentest phishing security semantic-ui uri usability

Last synced: 28 Oct 2025

https://github.com/nour-karoui/encrypt-storage

NPM package that encrypts Local/Session Storage (available for TS & JS)

angular client-side encryption javascript localstorage reactjs security sessionstorage storage typescript

Last synced: 27 Oct 2025

https://github.com/fearlesssolutions/engineering-practice-domains

A mono-repo for the Engineering Practice Domains of Development, Data, Infrastructure, Testing, and Platforms

data data-engineering data-science database-design devops drupal end-to-end-testing engineering infrastructure machine-learning salesforce security testing web-development

Last synced: 26 Oct 2025

https://github.com/elijahhx/dead1ock-h4ck

"Dead1ock-h4ck" is an open-source project dedicated to exploring cybersecurity and ethical hacking techniques. The project aims to provide resources and tools for learning about network security, cryptography, and penetration testing.

cyber-defense cybersecurity cybersecurity-research dead1ock-h4ck exploit github hacking hacktivism infosec malware pentesting programming ransomware security technology vulnerability

Last synced: 23 Apr 2025

https://github.com/panagiotisdrakatos/universal-encryption-channel

Cross-platform socket API for Windows Universall Apps and Java

cross-platform encryption key-exchanges security

Last synced: 16 Aug 2025

https://github.com/tldr-devops/auto-security-patching

Apply updates to your servers automatically and securely

automation patching security updates

Last synced: 04 Dec 2025

https://github.com/oops-org-php/mod_execdir

mod_execdir: jailed system function. Run only the shell command in the specified directory

jail php8 security shell-injection

Last synced: 26 Apr 2025

https://github.com/imranismail/cloudcreds

Secure access to your organization's AWS accounts for both programmatic and console use-case via federated identity and short-lived credentials

aws federated-identity google oauth oidc security

Last synced: 22 Apr 2025

https://github.com/simpleclub/firebase-rules-helper

A collection of packages aimed to make working with Firebase rules easier.

code-generation coverage coverage-report firebase firebase-firestore firebase-storage firestore security

Last synced: 22 Feb 2026

https://github.com/fossable/autovet

Automated security testing for open source libraries and applications.

security security-tools supply-chain

Last synced: 25 Apr 2025