An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/soapbucket/mcptest

The test suite your MCP server is missing. Tool, resource, agent-loop, schema-drift, compliance, and security tests against any Model Context Protocol server, in CI on every commit. One YAML suite, deterministic cassette replay, multi-model comparison, and LLM-judge evals. Rust, Apache-2.0.

agent-testing ai-agents anthropic compliance conformance developer-tools evals llm llm-as-a-judge llm-as-a-jury llm-evaluation llm-testing mcp mcp-testing openai security test-automation testing

Last synced: 26 Jun 2026

https://github.com/alexmacarthur/wp-sniff

A Python script that searches a site's source code for signs that it runs on WordPress.

python security wordpress

Last synced: 13 Feb 2026

https://github.com/radareorg/r2sarif

Load, manage and create SARIF documents with radare2

radare2 reports sarif security

Last synced: 14 Feb 2026

https://github.com/mycloudlab/example-maven-dependency-check-sonar

Exemplo de uso do dependency check com sonar

dependency-check devops devsecops java security sonar

Last synced: 04 May 2026

https://github.com/ree-verse/rexor

Cross-platform Rust library with CLI app implementing XOR encryption/decryption

cli decryption encryption security xor

Last synced: 04 Apr 2026

https://github.com/ryarmst/fuzzdeep

An Android Deep Link Fuzzer

android appsec fuzzing pentest security

Last synced: 30 Apr 2026

https://github.com/jpcertcc/yamagoya

Yet Another Memory Analyzer for malware detection and Guarding Operations with YARA and SIGMA

security sigma threat-hunting yara

Last synced: 02 Mar 2026

https://github.com/karakun/encrypted-filechannel

Transparent encryption for java.nio.channels.FileChannel

crypto cryptography java nio security tink

Last synced: 05 Mar 2026

https://github.com/falc0ntech/sarifcourier

A GitHub Action to render SARIF Security Reports right into your Pull Requests. Without the need for GHAS support!

cli github-actions sarif security

Last synced: 18 Apr 2026

https://github.com/wolfeidau/github-action-workflow-check

CLI which checks if the version of actions used in your workflow are up to date

github github-actions security

Last synced: 03 May 2026

https://github.com/bvdcode/cotton

Files. Snapshots. Search. Stream. Restore. One container. Two faces: simple up top, full control under the hood. Built with .NET / C# because performance and sanity matter.

cloud crypto dotnet security self-hosted storage

Last synced: 28 May 2026

https://github.com/atani/mysh

MySQL connection manager with SSH tunnel support. Auto-masks sensitive data for AI/non-TTY environments. Supports MySQL 4.x+.

ai-safety cli connection-manager data-masking database golang mysql mysql-client security ssh-tunnel

Last synced: 03 Jun 2026

https://github.com/brandonfl/discord-virustotal-bot

Discord bot using VirusTotal API to check if the content of messages sent by discord users is safe

discord discord-bot security virustotal

Last synced: 17 Apr 2026

https://github.com/bluet/express-pwnd-pw

Express.js security middleware for checking user password safety with Have I Been Pwned (HIBP) API

express express-middleware expressjs hacktoberfest hibp middleware node nodejs password password-safety security

Last synced: 14 Feb 2026

https://github.com/mablanco/ansible-osint

Ansible role to install several OSINT tools on a Linux system

ansible-role osint security

Last synced: 02 Jun 2026

https://github.com/dredozubov/hazmat

macOS containment for AI agents — user isolation, kernel sandbox, pf firewall, DNS blocklist, backup/rollback. TLA+ verified.

ai-agents claude-code cli containment developer-tools formal-verification go macos pf-firewall sandbox seatbelt security tla-plus

Last synced: 10 Apr 2026

https://github.com/turbot/steampipe-mod-terraform-oci-compliance

Run compliance and security controls to detect Terraform OCI resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

compliance hacktoberfest oci oracle-cloud oracle-cloud-infrastructure powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 12 Feb 2026

https://github.com/bouke/clibsodium

Swift overlay for libsodium

encryption libsodium security

Last synced: 13 May 2026

https://github.com/kevcui/passgen

:key: Sync-less password manager generating password from a string and a file

bash bash-script passgen password password-generator password-hash password-manager password-safety password-store security security-tools

Last synced: 03 May 2026

https://github.com/jeckel/eloquent-signature

Add signature check on your Eloquent models

eloquent laravel security signature

Last synced: 21 Apr 2026

https://github.com/rudra496/site

Personal portfolio website of Rudra Sarker featuring projects in Robotics, IoT, Artificial Intelligence, and Web Development, with blogs, achievements, and engineering work.

ai ai-projects developer-portfolio engineering-student frontend-development iot iot-application javascript machine-learning open-source personal-website portfolio portfolio-website python robotics robotics-projects security technical-blogs typescript web-development

Last synced: 09 Jun 2026

https://github.com/sofianhw/dlyscl-web3-bootcamp

Web3 Developer Bootcamp by DailySocial.id - Day 2

bootcamp frontend security web3

Last synced: 05 Mar 2026

https://github.com/silinternational/ssp-base

Base Docker image for simpleSAMLphp

hub idp security simplesamlphp

Last synced: 05 Jul 2025

https://github.com/robertdebock/ansible-role-collectd

Install and configure collectd on your system.

ansible collectd molecule playbook security tox

Last synced: 24 Apr 2025

https://github.com/ladjs/mongoose-omit-common-fields

Array of common fields to emit for Mongoose toObject/toJSON (helpful for security)

common fields helper koa lad mongo mongodb mongoose omit security select

Last synced: 15 Apr 2025

https://github.com/abhishekpanda0620/eol-check

A CLI tool to check the End-Of-Life (EOL) status of your development environment and project dependencies.

cli-tool devops end-of-life eol nodejs security sre typescript

Last synced: 13 Jan 2026

https://github.com/albinvar/smart-lock-uno

🔒🤖🔑 A simple prototype smart lock system utilizing facial recognition and RFID authentication, controllable via web API. Developed with 🧠👨‍💻 and inspired by the creativity of the open-source community. 🌟 Now with voice feedback, telegram notification and detailed documentation! 💻📄

access-control arduino arduino-project arduino-uno beginner-friendly college college-project diy electronics facial-recognition hacktoberfest hacktoberfest-accepted hardware home-automation iot low-cost opensource python security smartlock

Last synced: 17 May 2026

https://github.com/teezzan/ohtp

A secured and extensible authentication service with support for multiple media and integration forms.

open-source otp-generator otp-verification security

Last synced: 12 Jun 2025

https://github.com/kulkansecurity/mindthegap

A Python-based tool specifically designed for users to identify the "patch gap" in their Ubuntu release - the delay between the disclosure of a vulnerability and the patch release. By querying Ubuntu's CVE system, it provides a clearer picture of the current security standing of different Ubuntu versions.

cve patchgap security ubuntu

Last synced: 14 Mar 2025

https://github.com/alexrasch/virustotal-desktop-widget

VirusTotal Desktop Widget: A VirusTotal desktop widget for Windows that performs file scans and displays system information such as RAM and CPU usage. Note: An API key is required to use the VirusTotal API.

api desktop desktop-app dotnet-core security virustotal virustotal-api windowsforms

Last synced: 04 Jan 2026

https://github.com/oqullcan/berry-privacy

BERRY-privacy is a PowerShell script designed to enhance your privacy by blocking telemetry fields and IP addresses.

automation firewall hosts network-security powershell privacy privacy-protection script security telemetry-blocking windows

Last synced: 15 Apr 2025

https://github.com/psnappz/shadowguard

Fast & Reliable API Security Engine

api-security firewall security

Last synced: 15 Apr 2025

https://github.com/x13a/fschk

List persistence items on macOS.

macos osx security swift

Last synced: 27 Feb 2025

https://github.com/yowainwright/intrinsic-dependencies

a simple utility ensuring invisible but required node dependencies aren't removed

ci dependencies performance security

Last synced: 22 Apr 2025

https://github.com/om-mishra7/krmu-os-expo_2023

This repository contains code for a Certificate Management System implemented using Flask and Polygon blockchain based on Etereum. The system allows users to create, view, and verify certificates securely on the blockchain.

blockchain certsecure ethereum flask python security solidity

Last synced: 10 Apr 2026

https://github.com/sjinks/ww-hide-wplogin

A WordPress plugin to hide wp-login.php and use a custom URL for logging in.

login plugin security wordpress wordpress-plugin

Last synced: 15 Oct 2025

https://github.com/timokoessler/easy-waf-data

This repository provides ip data for the Web Application Firewall EasyWAF.

javascript nodejs security typescript waf web-application-firewall

Last synced: 29 Oct 2025

https://github.com/marcjulian/pyoram

Crypto tool written in python which stores files on a cloud storage and disguises the access of the files

cloud-storage oram privacy python security

Last synced: 31 Mar 2025

https://github.com/zebrunner/carina-crypto

Cryptographic Java Library. Provides an interface for encrypting / decrypting based on Cipher. Part of the Carina Framework

carina carina-framework cryptography java security

Last synced: 30 Apr 2025

https://github.com/skyf0l/sveltekit-helmet

Important security headers for SvelteKit

csp headers helmet hsts http-headers security sveltekit

Last synced: 11 Apr 2025

https://github.com/jonzeolla/lab-smartcontractsecurity

A lab that focuses on smart contract security

ethereum lab security smart-contract

Last synced: 18 Oct 2025

https://github.com/valoran-m/keylogger

it is a keylogger with two different clients one for linux and the other for windows and a server that compiles under linux only

c explain keylogger schema security socket

Last synced: 27 Aug 2025

https://github.com/radhi1991/aran

Aran API Sentinel: Your AI-Powered API Security & Governance Platform

ai api cybersecurity ml security

Last synced: 26 Aug 2025

https://github.com/magnetikonline/cloudfront-edge-secgroup-update

Lambda function to synchronize a set of EC2 security groups allowing ingress only from CloudFront edge locations.

cloudfront ingress lambda security

Last synced: 02 Sep 2025

https://github.com/ayemunhossain/secure-session-based-jwt-authentication

🔒 Introducing an authentication project crafted with Node.js, featuring session-based JWT token authentication and fortified with CSRF protection. Elevate your security measures while enjoying the seamless user experience provided by this robust solution.

ayemunhossain csrf-protection jwt jwt-token jwt-vs-session security session session-management token

Last synced: 24 Mar 2025

https://github.com/telefonicaid/fiware-keystone-spassword

Keystone SPASSWORD is an OpenStack Keystone extension that enables some extra security checks over user passwords, as force the usage of strong passwords, expiration time for a password, number of bad login attempts before user account became temporarily blocked, a recover procedure password, second factor authentication (2FA), etc.

keystone ldap openstack-keystone-extension security

Last synced: 19 Apr 2025

https://github.com/thewh1teagle/magen

Pikud Haoref Apps and API's

alert israel pikudhaoref security

Last synced: 22 Aug 2025

https://github.com/trendmicro/v1-cloud-community

About Collection of Trend Micro Open Source Community Projects related to Trend Vision One

automation demo security trendmicro trendvisionone visionone

Last synced: 15 Apr 2025

https://github.com/dedene/claw-wrap

A secure credential proxy for CLI tools. Executes tools with secrets on behalf of sandboxed processes - credentials never enter the sandbox.

cli openclaw proxy security

Last synced: 21 Feb 2026

https://github.com/sebescudie/vl.virustotal

A not-complete-at-all implementation of the VirusTotal V3 API for vvvv

malware security virustotal vl vvvv

Last synced: 30 Oct 2025

https://github.com/dknauss/ai-assisted-docs

Methodology and process documentation for AI-assisted technical writing and review — a practical exploration.

ai ai-assisted-editing bdd-framework behavior-driven-development claude-code-skill documentation editorial security technical-writing wordpress wordpress-security

Last synced: 28 May 2026

https://github.com/olav-st/oram-visualizer

Web application to visualize Oblivious RAM (ORAM) algorithms.

javascript oblivious-ram oram privacy security visualization webapp

Last synced: 07 Aug 2025

https://github.com/vvv-keys/keysguard-unified-threat-intelligence-platform

KeysGuard is a modular cybersecurity suite combining Rust-powered memory scanning, AI-driven reconnaissance, and real-time threat intelligence visualization — built for defenders, red teamers, and curious minds alike.

algorithms antivirus computer-architecture computer-science cyber data-structure edr encryption-decryption guard guardian keys programming security security-audit security-tools siem virus-scanning vpn

Last synced: 05 Mar 2026

https://github.com/ahmed-alnassif/metasploit-termux-installer

The Metasploit-Termux-Installer script automates the setup of Metasploit Framework on Termux, enabling penetration testing on Android. It updates packages, installs dependencies, fetches Metasploit, and configures the environment for seamless use, allowing you to run Metasploit tools like `msfconsole` directly from your terminal.

ahmed-al-nassif android automation bash-script cybersecurity ethical github hacking installation-guide metasploit metasploit-framework penetration-testing script security termux vulnerability-assessment

Last synced: 09 Mar 2026

https://github.com/debricked/vs-code-extension

A Visual Studio Code extension that integrates the Debricked CLI to provide security vulnerability scanning and license compliance directly within the editor.

auditing compliance dependency license productivity risk-mitigation scan security vulnerability-scanners

Last synced: 27 Jul 2025

https://github.com/thezakman/thegoonies-assets

All the assets done for TheGoonies CTF Team.

assets ctf hacking security

Last synced: 07 Feb 2026

https://github.com/edmartt/profilesaver

This is a password manager developed for fun and learning about MVC.

desktop-application java mvc-application password password-generator password-manager passwordmanager security

Last synced: 06 Jan 2026

https://github.com/joaomilho/vault-mobile

🔑 [really] safe password management mobile UI

android ios password react-native security stateless vault

Last synced: 06 May 2026

https://github.com/hollobit/wg3_tcm

a matrix to provide the clarified definition and relationship information of trustworthiness characteristics between in the AI/ML standards

accountability ai bias consistency controllability effectiveness explainability integrity ml quality reliability risk robustness security testing traceability transparency trust trustworthiness vulnerability

Last synced: 29 May 2026

https://github.com/eth-sri/insec

Reproduction Package for "Black-Box Adversarial Attacks on LLM-Based Code Completion" [ICML 2025]

adverserial-attack code-completion llm security

Last synced: 23 Jul 2025

https://github.com/atbashee/jsf-renderer-extensions

Extensions on the JSF renderer to have advanced validation and security

java javaee jsf security validation

Last synced: 28 Jun 2025

https://github.com/oefenweb/ansible-apparmor

Ansible role to remove apparmor in Debian-like systems

ansible apparmor debian security ubuntu

Last synced: 13 Jul 2025

https://github.com/zebbern/reconx

🕷️ | ReconX is a Live-Website Crawler made to gather critical information with an option to take a picture of each site crawled!

crawler hacking information-gathering information-retrieval information-security livedata opsec osint osint-tool pentest python python-crawler search-engine security security-tools website website-crawler website-scraper website-security

Last synced: 03 Jul 2025

https://github.com/sidhaler/jmsscanner

JmS network port scanner

network rust scanner security

Last synced: 25 Mar 2025

https://github.com/praqma/sdelements-plugin

Jenkins plugin for SD Elements risk assessment tool by Security Compass

jenkins-ci jenkins-plugin plugin security

Last synced: 10 Apr 2025

https://github.com/t94j0/mwnn

IRC, but with privacy - Also a way to help me learn Go

gpg irc messenger security

Last synced: 04 Nov 2025

https://github.com/kimbeobwoo/nestjs-security

A package that provides a variety of security features applicable at the application level. It is basically designed to be compatible with the nestjs framework and can be applied to traditional business logic without any impact.

csrf ip nestjs nestjs-security rate-limiting security

Last synced: 23 Apr 2025

https://github.com/meinto/anonymous-api-auth-provider

Prevent unauthorised access of public endpoints by for example bots or bad clients.

auth authorization public-api security session-token

Last synced: 29 Mar 2025

https://github.com/rodrigooler/rrmd

Rust + Rocket + MongoDB + Docker

api docker fast http mongo mongodb rocket rust security type

Last synced: 08 Apr 2026

https://github.com/seroperson/zio-http-pac4j

zio-http wrapper for pac4j, security framework to protect your web applications

jwt oauth2 pac4j security zio zio-http

Last synced: 04 Sep 2025

https://github.com/nishkarshraj-legacy/Encrypted_Backup_Actions

Using GitHub Actions to create a compressed backup file using Tar on Ubuntu, encrypting it using GPG and storing it on Cloud.

backup devops docker git github github-actions linux open-source security shell ubuntu

Last synced: 05 Jul 2026

https://github.com/astrid-project/lcp

In each local agent, the control plane is responsible for programmability, i.e., changing the behaviour of the data plane at run-time.

agent beats control data ebpf elasticsearch log logstash management programmability security

Last synced: 06 Apr 2025

https://github.com/shirshadatta/server-hardening

Ansible Playbooks for Server Hardening, these playbooks have been tested in AWS servers to provide and configure security in multiple servers.

ansible ansible-galaxy ansible-playbook ansible-role automation hacktoberfest hacktoberfest2020 nginx-server security testing

Last synced: 19 May 2026

https://github.com/cppalliance/crypt

A C++20 module of cryptographic utilities for CPU and GPU

cpp20 cuda security

Last synced: 23 Apr 2025

https://github.com/containerssh/images

The ContainerSSH container images

devsecops docker kubernetes security ssh

Last synced: 23 Apr 2025

https://github.com/rsksmart/reproducible-builds

Reproducible builds of RSKj's dependencies

blockchain reproducible-builds rsk security smart-contracts

Last synced: 02 Jan 2026

https://github.com/th3s4mur41/demo-auto-security-release

How to leverage GitHub and semantic release to reduce vulnerabilities in your packages

article blog blogging demo dependabot dependencies github-actions security semantic-release vulnerabilities

Last synced: 18 Jul 2025

https://github.com/nkhmelni/obscura

An LLVM pass plugin for compile-time encryption of all primitive kinds of variables

arm64 code-protection compiler-plugin encryption llvm macos obfuscation security

Last synced: 07 Mar 2026

https://github.com/serverfarmer/sf-detect-suspicious

Lightweight suspicious/unwanted activity detector, that alerts about cryptocurrency mining software, P2P file sharing software and ngrok tunnels.

bittorrent btc cryptocurrency-mining detection devops devops-tools mining network-tunnel ngrok p2p security security-audit security-automation security-hardening security-scanner security-tools torrent xmrig

Last synced: 12 Jul 2025

https://github.com/landlock-lsm/tuto-lighttpd

Landlock tutorial to patch lighttpd

landlock linux sandboxing security

Last synced: 09 Aug 2025

https://github.com/moltenbit/ufw-automatic-ip-blacklisting

Automatic import of UFW rules for daily generated IP-blacklists.

blacklists security threats ufw

Last synced: 14 Apr 2025

https://github.com/ddosolitary/sunpkcs11wrapper

A wrapper of SunPKCS11 which is compatible with Java 8

android android-sdk java pkcs11 security yubikey

Last synced: 19 May 2026

https://github.com/edivangalindo/gistz

An easy way to dump gists

bugbounty osint red-team secrets security

Last synced: 25 Jan 2026

https://github.com/gordonzhang2024/xss-shield

A Python library to prevent your website from being attacked

python python-3 python-package python3 security web xss xss-attacks xss-scanner

Last synced: 24 Apr 2025