Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/codeconut-ltd/wordpress-plugin-default-config
WordPress plugin with some hardcoded, opinionated defaults for enhanced security and frontend performance. Reduced feature set that might not work with all plugins. Only use if you know what you need.
composer configuration configuration-management default-project opinionated-defaults ph7 php phpcs phpcs-wordpress plugin security security-hardening wordpress wordpress-development wordpress-plugin wordpress-security wordpress-settings
Last synced: 08 Oct 2025
https://github.com/r3dhulk/sqli-detector-in-ruby
SQL Detector Tool In Ruby
blackhat ethical ethical-hacking ethical-hacking-tools ethicalhacking hacking hacking-tool penetration-testing pentesting ruby ruby-for-ethical-hacker ruby-for-ethical-hackers ruby-for-ethical-hacking ruby-on-rails security sql sqli-scanner sqli-vulnerability-scanner
Last synced: 09 Oct 2025
https://github.com/elliotwutingfeng/passwordsim
passwordsim lets you search for passwords similar to your specified password in any passwords dataset. The similarity metric used is the Damerau-Levenshtein distance.
cybersecurity damerau-levenshtein data-breaches hacktoberfest haveibeenpwned osint password password-manager security
Last synced: 29 Apr 2025
https://github.com/picobaz/pyformblaster
PyFormBlaster: A sleek Python web form fuzzer for ethical security audits. Blast forms with random and malicious inputs to uncover XSS, SQL Injection, and more. Features auto-field detection, CSV logging, and modular config. Test responsibly!
cybersecurity ethical-hacking form-fuzzer fuzzing penetration-testing python security web-security
Last synced: 09 Oct 2025
https://github.com/codeintelligencetesting/gofuzz
Bug detectors for Golang
bug-detection fuzzing golang security
Last synced: 11 Apr 2025
https://github.com/itszeeshan/subdomainx
all-in-one subdomain enumeration and reconnaissance tool designed for modern cybersecurity professionals, penetration testers, and security researchers.
amass assetfinder bug-bounty cybersecurity dnsrecon findomain hacking httpx infosec nmap offensive-security osint penetration-testing port-scanning reconnaissance red-team security security-tools subdomain-discovery subfinder
Last synced: 09 Sep 2025
https://github.com/tankerhq/sdk-python
Tanker Python SDK - mirror of https://gitlab.com/TankerHQ/sdk-python
cryptography encryption end-to-end privacy python sdk security tanker
Last synced: 09 Sep 2025
https://github.com/middlewares/recaptcha
PSR-15 middleware to use Google reCAPTCHA for spam prevention
http middleware prevention psr-15 recaptcha security
Last synced: 06 May 2025
https://github.com/rix4uni/paramfinder
Find input and textarea hidden parameters in html.
bug-bounty bugbounty bugbountytips hacking hidden-parameters infosec osint osint-resources osint-tool parameters penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence
Last synced: 20 Jan 2026
https://github.com/ryandaniels/ansible-role-dnsmasq-adblock
Use dnsmasq for adblocking with OpenVPN. Use this Ansible role after installing OpenVPN (PiVPN or Streisand, etc) on a RaspberryPi or a VPS for example.
adblock ansible ansible-role dnsmasq openvpn privacy raspberry-pi security ubuntu vpn
Last synced: 10 Apr 2025
https://github.com/jwhitt3r/SIEMEz
A open-source Django Security Incident and Event Management System
django incident-response python python3 security siem
Last synced: 12 Jul 2025
https://github.com/kerberjg/chillinode
Node.js-based captive portal system for Linux
captive-portal linux network-management nodejs openwrt security
Last synced: 11 Apr 2025
https://github.com/brainhub24/titanshield
A classical Frameblocker for Websites
clickjacking coding cybersecurity cybersecurity-tools frame-blocker frame-busting javascript prevention programming protection safeguarding scripting security security-tools web-development website-security
Last synced: 12 Apr 2025
https://github.com/stackrox/jenkins-plugin
The StackRox Jenkins Plugin for image scanning and security
containers hacktoberfest jenkins k8s security stackrox
Last synced: 06 May 2025
https://github.com/angelej/php-insider
A simple static application security testing (SAST) tool for locating dangerous sinks in php applications.
appsec php sast security static-code-analysis whitebox
Last synced: 06 Apr 2026
https://github.com/kyopark2014/aws-security-token-service
It shows how to generate and use temporary security credential using AWS STS.
aws aws-lambda aws-sdk lambda security temporary-credentials
Last synced: 12 Apr 2025
https://github.com/globaleaks/globaleaks-eph-fs
An ephemeral ChaCha20-encrypted filesystem implementation using fusepy and cryptography suitable for privacy-sensitive applications, such as whistleblowing platforms.
chacha20 cryptography fuse-filesystem privacy security whistleblowing-software
Last synced: 14 Dec 2025
https://github.com/jsign/timing-attack
Timing attack proof-of-concept in Go
go security statistics timing-attack
Last synced: 18 Mar 2025
https://github.com/eziriz/dotnet-reactor-install-action
.NET Reactor Install Action
licensing net-obfuscator obfuscation obfuscator protection security
Last synced: 15 Jan 2026
https://github.com/googlechromelabs/web-identity-demos
Demos for identity on the web. Built by the Chrome Developer Relations team and friends.
authentication autofill demo passkeys security
Last synced: 09 Jul 2025
https://github.com/nearata/flarum-ext-twofactor
A Flarum extension. Allow your users to enable two factor authentication.
flarum flarum-extension security two-factor
Last synced: 10 Apr 2025
https://github.com/przemub/cysectool
CySecTool is a tool that finds a cost-optimal security controls portfolio in a given budget for a probabilistic attack graph.
Last synced: 17 Jan 2026
https://github.com/vdlp/oc-csrf-plugin
Adds CSRF protection to October CMS frontend.
csrf october-cms october-plugin octobercms php security
Last synced: 12 Apr 2025
https://github.com/instaclustr/cassandra-kerberos
GSS-API authenticator plugin for Apache Cassandra
auth authentication cassandra cassandra-kerberos driver gssapi-authentication kerberos keytab netapp-public plugin principal security service
Last synced: 10 Apr 2025
https://github.com/spiral/security
[READ ONLY] RBAC security layer based on NIST definition, role/rule/permission associations, bulletproof. Subtree split of the Spiral Security component (see spiral/framework)
Last synced: 28 Oct 2025
https://github.com/sigseg5/thgtoa-ru
[WIP] Russian version of The Hitchhiker’s Guide to Online Anonymity
activism anonymity anonymization anticensorship gpg privacy privacy-aware privacy-by-design privacy-enhancing-technologies privacy-online privacy-policy privacy-protection privacy-tools qubes-os security security-hardening tails veracrypt whonix
Last synced: 01 Feb 2026
https://github.com/dosaic/dosaic
A plugin-first dotnet framework for rapidly building anything hosted in the web.
auto-discovery csharp dependency-injection dotnet dotnet-core dotnet9 logging metrics microservices minimal-api modular observability performance plugin-framework plugin-system security source-generator tracting web-framework webhost
Last synced: 21 Apr 2026
https://github.com/strmprivacy/data-plane-helm-chart
Care about your data leaving your VPC/environment in SaaS mode? With our self-hosted option you can run our privacy focused Data Plane in your own Kubernetes Cluster. Just (1) sign-up, (2) request a self-hosted installation, (3) use our values.yaml on your own k8s clusters and (4) run your (customer) data inside your own cloud like 🪄
charts data helm kubernetes privacy security
Last synced: 23 Jun 2025
https://github.com/sammcj/github-app-installation-token
Generates Github tokens using a Github App install
actions authentication security token workflow
Last synced: 10 Apr 2025
https://github.com/goldstrike77/ansible-role-linux-wazuh
Ansible role for install and configure Wazuh manager on Linux operating system.
ansible ansible-role compliance file-integrity-management hids ids incident-response intrusion-detection log-analysis loganalyzer ossec pci-dss policy-monitoring security security-awareness security-hardening vulnerability-detection wazuh
Last synced: 05 May 2025
https://github.com/winnpixie/log4noshell
A Java Agent that disables Apache Log4J's JNDI Lookup to mitigate CVE-2021-44228 ("Log4Shell").
apache cve log4j patch security vulnerability
Last synced: 11 Jul 2025
https://github.com/wolftech-innovations/cybr
Welcome to cybr
deployable distro fast foss kernel kordos linux linux-distribution linuxdistros operating-system os secure security ubuntu wolftech
Last synced: 21 Jun 2025
https://github.com/oktsec/oktsec
Security layer for AI agent-to-agent communication. Every message is signed, inspected, and logged. If it doesn't comply, it doesn't pass. No LLM. No cloud. Single binary. Your infra, your data.
ai-agents audit ed25519 golang identity inter-agent mcp open-source proxy security
Last synced: 02 Apr 2026
https://github.com/aw-junaid/android-security
Explore Android security: secure app development, reverse engineering, vulnerability testing, and best practices for data protection and encryption.
android android-rat androidsecurity hacking hacking-tool security vulnerabilities
Last synced: 01 Jul 2025
https://github.com/habilelabs/cvss-v3.1-react
React CVSS v3.1 Base Score Calculator
cvss cvssv3 reactjs security security-vulnerability
Last synced: 20 Jun 2025
https://github.com/ashishb/checkdevicecredentials
Force device credential check before decrypting data
android android-security keystore security
Last synced: 02 May 2025
https://github.com/ahliweb/awcms
AWCMS (AhliWeb Content Management System) — an enterprise-grade, multi-tenant, ABAC-secured CMS built with React, Supabase, and modern web architecture.
abac audit-log cloudflare cms cms-framework enterprise-cms headless-cms multi-tenant postgresql react rls saas security supabase vite workflow-engine
Last synced: 08 Mar 2026
https://github.com/fkie-cad/bidcos-security-doc
A documentation of the Bidcos (homematic) radio protocol with focus on practical security aspects
eq3 home-automation homematic security urh
Last synced: 06 May 2025
https://github.com/dimon222/py-gitsshgen
Automatic generation of SSH keys for VCS
automation git hacktoberfest python security ssh vcs
Last synced: 29 Oct 2025
https://github.com/riccio8/threatlab
Collection of tools for security purpouse
assembly cpp cybersecurity golang memo net network processes python security security-tools yara
Last synced: 15 Dec 2025
https://github.com/dguo/digital-security-coach
:lock: Accessible crash course on digital security
cybersecurity guide haveibeenpwned security
Last synced: 17 Jun 2025
https://github.com/weixian-zhang/fuzzie
A VSCode GUI-based fuzzer for Rest API and GraphQL
fuzzing python3 rest-api security vscode-extension
Last synced: 30 Dec 2025
https://github.com/ramitsurana/hashicorp-tools-setup
A Sample art of work on hashicorp tools
aws database hashicorp nomad security security-audit vault vault-ui
Last synced: 06 May 2025
https://github.com/spaze/security-txt
security.txt (RFC 9116) generator, parser, validator
generator parser security security-txt securitytxt validator
Last synced: 06 Apr 2026
https://github.com/petr-panteleyev/password-manager
Desktop application to keep passwords and other sensitive information
aes-256 desktop-application java java-24 javafx javafx-application password-manager security
Last synced: 29 Apr 2025
https://github.com/revanmalang/thm-offensive-security
security security-tools thm-offensive-security
Last synced: 04 Jan 2026
https://github.com/didjacome/modules.azure
This repository aims to have modules and scripts created for Microsoft Azure administration
accounts assessment azure engineer management powershell rbac resources security snapshot
Last synced: 17 Jan 2026
https://github.com/andiveloper/ts-rbac
Use ts-rbac if you need role-based access control in your TypeScript application, independent from your architecture.
Last synced: 06 May 2025
https://github.com/john-b-yang/course-dev
Personal repository of teaching material
databases pedagogy security software-development
Last synced: 15 Jun 2025
https://github.com/geniuszly/cve-2022-44149
it is script designed to interact with a router by sending a payload to its system tools. The script retrieves the router's configuration from environment variables to ensure security. It includes functions for generating an authorization header, sending a payload, and logging the process.
cve cve-2022-44149 cybersecurity ethical-hacking exploit exploit-development linux payload penetration-testing poc privilege-escalation security vulnerability vulnerability-research
Last synced: 11 Apr 2025
https://github.com/geniuszly/cve-2022-45701
it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.
arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research
Last synced: 11 Apr 2025
https://github.com/ms2138/cameraviewer
Add/View Dahua security camera video streams
camera dahua dahua-cameras onvif onvif-camera security swift uikit xcode
Last synced: 04 May 2025
https://github.com/notoriousrebel/social_media_shamer
Breaches happen all the time, it would be a shame if people used those credentials for their social media accounts.
Last synced: 11 Apr 2025
https://github.com/sakryukov/storage-free-pass
Storage-Free Pass is a generator of highly secure passwords based on cryptographic hash and master password, which should be memorized; no password storage is involved
authentication criptographic-hash cryptography css html javascript security
Last synced: 07 May 2025
https://github.com/volkansah/tor-network-application-with-stem-and-scapy
This project demonstrates how to use the Stem library to interact with the Tor network and the Scapy library for network packet manipulation. The goal is to create an application that can leverage Tor for anonymized network analysis, including scanning both Onion and regular websites.
example-code examples hacking network nikto nmap python scapy security socat stem tor
Last synced: 12 Apr 2025
https://github.com/fiware/tutorials.roles-permissions
:closed_book: FIWARE 402: IDM - Application Roles and Permissions
fiware fiware-keyrock identity-management security tutorial
Last synced: 30 Apr 2025
https://github.com/0x4f53/piiscout
Continuous PII classification and reporting on the internet, powered by AI!
artificial-intelligence blackhat blueteam golang ocr optical-character-recognition osint perplexity personally-identifiable-information pii python reconnaissance security security-tools transformer
Last synced: 01 May 2025
https://github.com/0x4f53/secretsnitch
A lightning-fast, modular secret scanner
artificial-intelligence blueteam chatgpt concurrency golang gpt openai-api pentesting pentesting-tools recon reconnaissance redteam secrets secrets-management security security-tools
Last synced: 01 May 2025
https://github.com/anthonyharrison/sbom4rust
SBOM4Rust generates a Software Bill of Materials (SBOM) for a Rust component.
cyclonedx devsecops rust sbom sbom-generator security spdx
Last synced: 28 Oct 2025
https://github.com/ebauman/simpleca
Simple PKI for developers.
certificates cli golang pki security tls
Last synced: 17 Jan 2026
https://github.com/luketainton/pwnedpw
Checks if your password has been leaked.
password pwned pwned-passwords pwnedpasswords security
Last synced: 30 Apr 2025
https://github.com/aguafrommars/templates
TheIdServer dotnet new template
authentication dotnet-new duende-identityserver iam identity identityserver4 oauth oidc security templates theidserver
Last synced: 13 Apr 2025
https://github.com/r3dhulk/mission-arp
All in one arp tool
arp arp-poisoning arp-spoof-attack arp-spoof-attack-detector arp-spoofing arpspoof blackhat blackhat-python blackhatpython cybersecuirty ethical hacking hacking-tool hacking-tools python pythonforethicalhacking security
Last synced: 30 Apr 2025
https://github.com/tlindsay42/armorpowershell
Community PowerShell Module for Armor
anywhere appveyor armor automation cloud complete coveralls devops powershell powershell-core powershell-gallery sdk security travis-ci
Last synced: 29 Oct 2025
https://github.com/douglascamata/passman_cli
A CLI for Passman.
passman password python security
Last synced: 19 Mar 2025
https://github.com/zuazo/encrypted_attributes-cookbook
Chef cookbook to install and load chef-encrypted-attributes gem.
chef cookbook credentials devops encrypted-attributes encryption gcm keys passwords pki plugin secrets security
Last synced: 13 Apr 2025
https://github.com/cihatsolak/net7-jwt-token
Main project is audience dependent on access to other api projects. I am providing information about the structure and architecture of the jwt token.
entity-framework-core jwt-token migration net7 nlayer-architecture security webapi
Last synced: 06 May 2025
https://github.com/contributte/security
:sparkles: Extra contrib to nette/security (@nette)
authentication authorization contributte nette nette-framework security
Last synced: 12 Apr 2025
https://github.com/rm3l/container-scan-to-sarif
Converts Azure Container Scan Action output to SARIF, for an easier integration with tools like GitHub Code Scanning
container-scanning go golang sarif sarif-report security
Last synced: 26 Mar 2025
https://github.com/illegalstudio/insideauth
Seamless side authentication solution for Laravel
auth authentication laravel laravel-admin laravel-auth laravel-authentication laravel-framework laravel-package middleware security tailwindcss
Last synced: 13 Apr 2025
https://github.com/turbot/steampipe-mod-snowflake-compliance
Run individual controls or full compliance benchmarks across all of your Snowflake accounts using Powerpipe and Steampipe.
compliance hacktoberfest powerpipe powerpipe-mod security snowflake snowflakedb steampipe steampipe-mod
Last synced: 11 Jul 2025
https://github.com/hrchlhck/kubemon
A tool for distributed container monitoring over Kubernetes.
docker kubemon kubernetes monitoring-tool security
Last synced: 01 Apr 2026
https://github.com/base4security/dolos-t
Deceptive Operations: Lure, Observe, and Secure Tool
automation containerization containers containers-as-a-service deception deception-defense deception-technology deceptive-defense deceptive-design docker dockerfiles framework gplv3 honeypot honeytoken network-security open-source orchestrator python3 security
Last synced: 11 Jul 2025
https://github.com/jbruchon/php_secure_auth
Secure user login/authentication template for PHP web applications
authentication pdo pdo-mysql php security
Last synced: 13 May 2025
https://github.com/xkcoding/magic-starter-secure-demo
magic-starter-secure 极简的权限控制框架的 demo
demo jwt magic-starter security spring-boot-2 spring-boot-starter xkcoding
Last synced: 09 Mar 2026
https://github.com/jcsec-security/cosmwasm-security-spotlight
Posts and labs to learn CosmWasm smart contract security vulnerabilities and audit
audit blockchain bug bugbounty contract cosmos cosmossdk cosmwasm ctf dapp defi hacking rust security smart smartcontract vulnerabilities
Last synced: 26 Oct 2025
https://github.com/ahmetozer/iptables-ddns
Using domain name on IPtables. Keep updated firewall rules from dynamic DNS (DDNS).
ddns ddns-firewall dynamic-dns firewall iptables ipv4 ipv6 linux linux-firewall network network-admins network-management security security-tools system-security
Last synced: 23 Jul 2025
https://github.com/fabian-hk/secure-two-party-computation
Python implementation of the TPC protocol from the paper "Authenticated Garbling and Efficient Maliciously Secure Two-Party Computation"
google-protocol-buffers multi-party-computation network-communication python3 secure-computation security tpc two-party-computation
Last synced: 14 Apr 2025
https://github.com/divineomega/laravel-password-security-audit
🔏 Artisan command to audit the security of your users' passwords
laravel laravel-package password php security security-audit users
Last synced: 24 Aug 2025
https://github.com/teh9/laravel-tg-2fa
A simple implementation of a two-factor authentication via Telegram for Laravel
2fa auth authentication laravel login php security telegram two-factor
Last synced: 22 Aug 2025
https://github.com/lombiq/orchard-login-as-anybody
Orchard module for site owners to be able to log in as any user.
orchard orchard-cms orchard-core orchard-module security
Last synced: 17 Aug 2025
https://github.com/kardelruveyda/aspnet-security
We write code for hours during the day. So how many of these codes are safe? I found training on security from Udemy. And I started watching. Thank you Fatih Çakıroğlu
Last synced: 13 Apr 2025
https://github.com/sindecker/pentest-playbook
The Penetration Testing Playbook — Beginner to Intermediate Field Guide. 359 pages, 731 code examples, 37+ compliance frameworks. Read free on GitHub.
active-directory beginner bug-bounty burp-suite ctf cybersecurity ethical-hacking hacking infosec oscp oscp-prep owasp penetration-testing pentest red-team security security-tools web-security
Last synced: 18 Apr 2026
https://github.com/bocaletto-luca/bug-github-farms-points
Auto Farms Points BUG in Github Author: Bocaletto Luca Hi there! I’m Luca (@bocaletto-luca), and I’ve put together this repo to demonstrate a surprising “feature” (or vulnerability?) in GitHub’s contribution model. With a single workflow file, you can automatically farm commits, issues, PRs, wiki edits, releases and comments every hour—artificially
bocaletto-luca bug farms github github-bug hack hacking points security yaml
Last synced: 27 Apr 2026
https://github.com/gobiassomecoffeeco/gosilent
A silent SYN scanner.
cyber-security golang goroutines hacking hacking-tools ip-scanner network-scanner networking networking-tools nmap pentesting portscanner scanning security security-scanner security-tools synscan synscanner
Last synced: 27 Jun 2025
https://github.com/chinmay29hub/stegmoji
Stegmoji is a client-side steganography tool. Encode secret messages into emoji or text using invisible Unicode characters (variation selectors, zero-width joiners). Supports three embedding modes (Tail, Interleaved, ZWJ-aware), optional compression, AES-GCM encryption, and full Unicode analysis/visualization
client-side compression cryptography data-visualization javascript nextjs open-source privacy react security steganography unicode web-app web-crypto
Last synced: 17 Jan 2026
https://github.com/exabrial/javax-security-cdi-extension
A CDI Portable Extension for Java EE 7 (and maybe 8) that allows you to use @RolesAllowed on CDI Beans and their Methods
cdi cdi-extension interceptors java java-ee-7 role-based-access-control security
Last synced: 11 Jan 2026
https://github.com/shgtkshruch/ssh-connection-with-session-manager
Access AWS resources with Session Manager
aws capistrano rails security session-manager terraform
Last synced: 15 Apr 2025
https://github.com/maester365/maester-action
GitHub action for Maester
devops entra entra-id github-actions hacktoberfest maester microsoft-365 microsoft-graph security
Last synced: 18 Feb 2026
https://github.com/skyzyx/engineering-for-site-reliability
Overall map of topics to cover for my “Engineering for Site Reliability” blog series.
ci-cd cicd devops docker security site-reliability site-reliability-engineering sre terraform
Last synced: 25 Mar 2025