An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/robertdebock/ansible-role-enpass

Install the Enpass password manager on your system.

ansible enpass molecule password passwordmanager playbook security tox

Last synced: 10 Jun 2025

https://github.com/leodog896/redos.deno

check for ReDoS vulnerabilities in code.

cli redos redos-checker redos-detector security security-automation

Last synced: 06 Mar 2025

https://github.com/belajarqywok/xml_web_token

XWT (XML Web Token) is a personal experiment concept by modifying the JWT (JSON Web Token) algorithm into XML for the development of SOAP (Simple Object Access Protocol) security.

authentication experimental protocol-security research security soap-api

Last synced: 25 Aug 2025

https://github.com/gummibeer/wp_disable_apis

Disables the REST-API and XMLRPC to secure your Wordpress installation.

api php rest rest-api security wordpress wordpress-plugin xmlrpc

Last synced: 17 May 2026

https://github.com/ascender1729/healthfraudmlchain

This project focuses on addressing healthcare insurance fraud using advanced technologies such as machine learning and blockchain. It explores the use of various machine learning algorithms for detecting fraudulent activities in healthcare insurance claims and employs blockchain technology to ensure data integrity.

analytics blockchain claim-processing fraud-prevention healthcare-fraud-detection healthcare-technology machine-learning security

Last synced: 31 Mar 2025

https://github.com/sqreen/sqreen-monitoring-wordpress

Automatically monitor Wordpress with Sqreen PHP agent

security wordpress

Last synced: 17 May 2026

https://github.com/kevcui/pinky

:1234: Generate PIN codes from letters using phone keypad layout

bash bash-script keypad pin-code pin-generator security security-tools

Last synced: 02 May 2026

https://github.com/hasip-timurtas/solana-watchtower

🛡️ Watch and analyze Solana programs in real time. Alerts, metrics, logs, rules, and dashboards for on-chain activity.

alerts auditing blockchain cli-tool monitoring rust security smart-contracts solana solana-program watchtower

Last synced: 16 May 2026

https://github.com/kattecon/gh-app-access-token-gen

Generate a temporary access token for a github app using app id and its private key and either installtation id or installation repository name.

access gh security token

Last synced: 17 Jan 2026

https://github.com/barek2k2/local_llm

Lightweight Ruby gem for interacting with locally running Ollama LLMs with streaming, chat, and full offline privacy.

ai artificial-intelligence chatbot data-privacy-compliance data-security llm local-ai local-ai-development local-ai-llm machine-learning offline-ai privacy private-chat ruby ruby-on-rails security

Last synced: 19 Apr 2026

https://github.com/anubra266/browser-sessions

🧑‍💻 Manage Browser Sessions in a Laravel Application

laravel php security session-management

Last synced: 13 Mar 2025

https://github.com/vdlp/oc-securitytxt-plugin

October CMS plugin which adds routes for a security.txt.

laravel octobercms octobercms-plugin php security securitytxt

Last synced: 12 Apr 2025

https://github.com/shisa-ai/textguard

Hostile-text normalization, inspection, and cleaning for LLM-adjacent systems.

cli llm prompt-injection python sanitization security text-processing unicode unicode-normalization yara

Last synced: 28 May 2026

https://github.com/weavc/weav-totp

A javascript implementation of the TOTP algorithm, used in applications like Google Authenticator

2fa javascript npm security totp typescript

Last synced: 17 Jan 2026

https://github.com/node-link/cakephp-remember-me

CakePHP plugin that performs Remember-me authentication with the new cookie algorithm of version 3.5 or later.

cakephp cakephp-plugin cookie remember-me security

Last synced: 26 Jul 2025

https://github.com/boburmirzo/authgear-spring-oauth2-example

Authentication for Spring Boot App with Authgear and OAuth2

authentication low-code security spring-boot

Last synced: 07 Aug 2025

https://github.com/neuralegion/run-scan

Action runs a new security scan in NeuraLegion, or reruns an existing one

github-actions scan security

Last synced: 10 Jun 2025

https://github.com/itaybre/cocoapods-protected-dependencies

Protect your project from using dependencies from undesired sources

cocoapods security

Last synced: 06 Oct 2025

https://github.com/robertdebock/ansible-role-fips

Install and configure fips on your system.

ansible fips infrastructure linux molecule playbook security system tox

Last synced: 04 Sep 2025

https://github.com/bormaxi8080/nmap-scanner

Nmap packet domain list scanner to find exploited vulnerabilities

nmap pentesting security shell

Last synced: 23 Nov 2025

https://github.com/NeuraLegion/sectester-net

SecTester is a new tool that integrates our enterprise-grade scan engine directly into your unit tests.

appsec brightsec c-sharp e2e pentesting qa security test testing

Last synced: 16 Nov 2025

https://github.com/chaoticbyte/wid-notifier

A service that waits for security notices from wid.cert-bund.de and wid.lsi.bayern.de and sends configurable email notifications

advisories bsi cert-bund email federal-bureau-of-information-security filter go golang lsi-bayern mail-notification notices notifications security security-notices wid

Last synced: 24 Dec 2025

https://github.com/ggeorgovassilis/webencryption

Simple (offline) HTML and Javascript for encrypting stuff

cryptography javascript security web

Last synced: 05 Apr 2025

https://github.com/aabbtree77/auth-starter-backend

Backend for a complete session-based user authentication: Bun, Hono, Drizzle, SQLite.

authentication authorization backend-api bun cookie cors credentials crud drizzle hono minimalism ngrok security session sqlite typescript user-password xss

Last synced: 07 May 2025

https://github.com/milenmk/laravel-email-change-confirmation

A Laravel package for secure email change confirmation with support for both traditional controllers and Livewire components

email email-security laravel laravel-package security

Last synced: 12 Sep 2025

https://github.com/fadhilthomas/repository-audit

run github repository access audit and send report to notion and slack

golang security

Last synced: 10 Mar 2026

https://github.com/87owo/pyae

Python Antivirus Engine Scanner

beta pefile scanner security tools

Last synced: 05 Apr 2025

https://github.com/christianklisch/smartmask-spring-boot-starter

A unified data masking library for Spring Boot applications that consistently masks sensitive data in JSON responses and logs, reducing GDPR/DSGVO risks while enabling secure audit and security logging.

audit-logging compliance data-masking dsgvo gdpr jackson java json logging pii-masking privacy security spring-boot spring-boot-starter

Last synced: 13 Jan 2026

https://github.com/cryptix720/prokfuzz

Tiny Fuzzer extension for Burp suite

burp experiment fuzz fuzzing python security test

Last synced: 19 May 2026

https://github.com/24greyhat/hips

Hidden in plain sight! simple yet effective covert way to obfuscate data (e.g., shellcode), no one will tell gibberish from malicious!

av-bypass av-evasion cipher covert encoding-decoding forensics ids-evasion malware-analysis malware-development obfuscation penetration-testing pentester python python-script secret-sharing security security-tool security-tools shellcode

Last synced: 13 Feb 2026

https://gitlab.com/parcifal/flask-security-txt

A Flask extension that provides a simple way to generate a security.txt file for a website.

Web Development flask flask extension python security security.txt

Last synced: 19 Apr 2025

https://github.com/davidzajac1/iamscan

Checks code for needed AWS IAM Privileges

aws iam javascript python security shell-scripting

Last synced: 06 May 2026

https://github.com/simonkowallik/irulescan-action

:shield: irulescan-action is a static security analyzer for iRules for use with Github Actions

ci cicd devsecops f5 f5-bigip f5networks irules security security-tools

Last synced: 07 Jul 2025

https://github.com/turbot/flowpipe-mod-uptimerobot

UptimeRobot pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect UptimeRobot to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines security uptimerobot uptimerobot-api workflow workflow-automation workflow-engine

Last synced: 28 Feb 2026

https://github.com/abdellatif-temsamani/cryptjs

`cryptjs` is a JavaScript/TypeScript library that brings cryptographic functionality from Dart to the web

crypt-lib cryptography hash javascript password-hashing security sha-256 sha-512 sha512 typescript

Last synced: 22 Jan 2026

https://github.com/ashlrai/binshield

Snyk for binaries. Ghidra-backed decompile + AI classification + YARA for npm supply-chain threats. MIT.

ai ghidra malware-detection npm security supply-chain yara

Last synced: 21 Jun 2026

https://github.com/c0nw0nk/javascript-block-proxy

Simple method to block proxies using javascript

blocking html javascript proxies proxy security

Last synced: 24 Jun 2026

https://github.com/sjinks/hwp-csp-plugin

Content Security Policy plugin for html-webpack-plugin

content-security-policy csp html-webpack-plugin html-webpack-plugin-plugin security

Last synced: 10 Apr 2025

https://github.com/tinywaf/tinywaf

The self-hosted lightweight Web Application Firewall

firewall go security self-hosted waf

Last synced: 24 Feb 2026

https://github.com/mpdenisov/laravel_admin_module

Rhinoda Admin Module. Role management and creating CRUD controllers

admin-panel auth crud laravel-5-package laravel-framework permissions security

Last synced: 12 Feb 2026

https://github.com/a1573595/securitysharedpreferences

A small SharedPreferences wrapper and cryptographic android library power by Kotlin.

aes android base64 keystore kotlin rsa security sharedpreferences

Last synced: 22 Apr 2026

https://github.com/adudley78/mcp-audit

Security scanner for MCP (Model Context Protocol) server configurations. Detects prompt injection, credential exposure, supply chain risks, and more.

ai-security claude cli cursor devsecops llm-security mcp model-context-protocol prompt-injection python security static-analysis supply-chain-security vulnerability-scanner

Last synced: 14 Jun 2026

https://github.com/e107inc/twofactorauth

Two-Factor Authenthication (2FA) for e107

2fa e107 plugin security two-factor-auth twofactorauth

Last synced: 24 Oct 2025

https://github.com/target/strelka-docs

Autodocumentation for the Strelka System

cfc detection mkdocs mkdocs-material security target-cfc

Last synced: 28 Feb 2026

https://github.com/sezaakgun/yolonot

Smart auto-mode for Claude Code. The safe alternative to --dangerously-skip-permissions.

claude-code cli developer-tools go llm security

Last synced: 07 May 2026

https://github.com/namecoin/certinject

Inject certificates into Windows CryptoAPI trust store, with EKU and name constraints.

certificates cryptoapi cryptography hacktoberfest name-constraints privacy security tls windows x509

Last synced: 27 Jan 2026

https://github.com/moolen/neuwerk

🛡️ cloud-native eBPF network egress firewall

cloud-native ebpf firewall kubernetes security

Last synced: 27 Jan 2026

https://github.com/a3020/composer_security

concrete5 package (8.1+) that installs a job to automatically check your composer.json file(s!) for vulnerabilities

add-on composer concrete5 security

Last synced: 14 Jun 2026

https://github.com/blessedrebus/advanced-web-face-authentication

Web authentication based on RSA keys and BLS elliptic curve as signatures

blockchain bls rsa security web

Last synced: 29 Jun 2026

https://github.com/r3li4nt/awsecure

Herramienta de seguridad para entornos AWS, diseñada para analizar la infraestructura.

aws cloud hacking scanner security vulnerabilities

Last synced: 29 Apr 2026

https://github.com/ctkqiang/chilli

小辣椒 (Chilli) 是一个基于 Rust 构建的高性能系统遥测与网络安全监控平台。它集成了实时进程监控、GitHub 安全公告同步、系统状态采集等功能,为开发者和运维人员提供全面的系统可视化和安全态势感知能力。

c chilli ctkqiang monitoring rust security telementry

Last synced: 25 Apr 2026

https://github.com/3qnrpdwd/juststone

[ JustStoneTransferProtocol&Backdoor ] This project stems from my interest in protocols and security, leading to the creation of a small backdoor and a proprietary protocol.

api backdoor eternalblue exploit protocol rust secure security socket socket-io

Last synced: 25 Apr 2026

https://github.com/cjbarker/pyhack

A collection of white-hat custom security tools for education and ethical testing.

cybersecurity hack hacking infosec pyhack python security whitehat

Last synced: 18 Jan 2026

https://github.com/slashexx/sentinel

A VSCode extension for intelligent code analysis and security monitoring. Security is not an afterthought anymore :)

extension security typescript vscode vscode-extension

Last synced: 16 May 2026

https://github.com/marc-shade/dos-detector-mcp

DoS/DDoS Attack Detection - Log analysis, traffic patterns, and anomaly detection

ai-tools anomaly-detection anthropic claude ddos mcp model-context-protocol security

Last synced: 05 Apr 2026

https://github.com/trcyberoptic/openvas-tracker

Vulnerability management dashboard for OpenVAS/Greenbone — automated ticketing, scan comparison, LDAP auth, risk acceptance rules. Single Go binary with embedded React UI.

active-directory cve cybersecurity dashboard devsecops go golang greenbone gvm infosec ldap nist openvas react security ticket-management vulnerability-assessment vulnerability-management vulnerability-scanner vulnerability-tracking

Last synced: 06 Jun 2026

https://github.com/jwilk/unfaithful-less

less (without -U) is not a faithful pager

security

Last synced: 14 Feb 2026

https://github.com/jairtorres1003/eslint-plugin-sensitive-env

ESLint plugin to prevent sensitive values from being hardcoded in the codebase

environment eslint eslint-plugin npm secrets security sensitive

Last synced: 12 Feb 2026

https://github.com/sagargupta16/agent-recipes

Copy-paste AI agent workflows for real-world developer tasks — code review, testing, migrations, and more

ai-agents ai-workflows claude-code code-review cursor developer-tools devops prompts security testing

Last synced: 03 May 2026

https://github.com/n1k0r/xnf

XDP-based Network Filter

ebpf firewall linux network rust security xdp

Last synced: 09 May 2026

https://github.com/csharper63/pihole_dnscrypt_config

This repository contains a working docker configuration for pihole and dnscrypt that support DoH.

dns-over-https dnscrypt pihole pihole-dnscrypt pihole-over-doh pihole-over-https privacy security

Last synced: 11 Feb 2026

https://github.com/fguisso/paulada

A burte force tool for apirest auth

hacktoberfest security security-tools

Last synced: 02 Mar 2025

https://github.com/kaiyou/acm

Agnostic/acentric cloud messaging - free alternative to GCM/FCM

broker notifications protocol security

Last synced: 12 Oct 2025

https://github.com/ugiordan/architecture-analyzer

Static analysis tool that extracts architecture data from Kubernetes repos, builds multi-language code property graphs (Go, Python, TS, Rust), and runs security/architecture queries with taint analysis

architecture code-property-graph golang kubernetes python sarif sbom security static-analysis

Last synced: 20 Jun 2026

https://github.com/tldr-it-stepankutaj/openvpn-client

A Go-based client for integrating OpenVPN server with OpenVPN Manager API

client golang openvpn openvpn-management openvpn-server security

Last synced: 15 Feb 2026

https://github.com/r1c0n/blacksmith

Blacksmith generates only the most secure passwords.

generator password password-generator security vue

Last synced: 04 Apr 2026

https://github.com/spirizeon/nixos-maxxing

Config using dendritic patterns with security hardening, NVIDIA GPU support, and a customized desktop environment.

modularization nixos nvidia-gpu security

Last synced: 02 May 2026

https://github.com/afadesigns/envkeep

Typed environment specifications, drift detection, and CLI tooling for devs who rely on .env files.

cli env security toolkit uv

Last synced: 17 Apr 2026

https://github.com/anthonyharrison/sbomdebt

Determine the technical debt for a Software Bill of Materials (SBOM)

cyclonedx devsecops sbom sbom-tool security spdx technical-debt

Last synced: 02 Feb 2026

https://github.com/rivassec/efi-bruteforce

Automates EFI password input using Teensy-based USB HID brute-force

brute-force devsecops efi firmware forensics hardware hardwaresecurity macbook macbook-pro security teensy usb-hid

Last synced: 14 Mar 2026

https://github.com/meysam81/go-auth

Production-ready authentication library for Go with Basic Auth, JWT, WebAuthn/Passkeys, TOTP 2FA, and OAuth2/OIDC SSO (Google, GitHub, Microsoft, and 7+ providers). Storage-agnostic, framework-agnostic, SOC2/GDPR compliant audit logging.

audit-logging auth-library authentication bcrypt compliance golang golang-authentication golang-library jwt middleware oauth2 oidc passkeys passwordless security session-management sso totp two-factor-authentication webauthn

Last synced: 01 Mar 2026

https://github.com/exfil0/mssqlsec

MSSQLSEC is a comprehensive toolkit, incorporating advanced tools and methodologies, specifically designed for performing in-depth audits on MSSQL databases. It is more than just a static set of tools; it's a dynamic framework that continuously evolves to meet the demands of the changing landscape of database security and audit requirements.

active-directory audit linux mssql mssql-database mssqlserver security windows

Last synced: 09 Feb 2026

https://github.com/macmod/cloudpersist

A collection of simple scripts to achieve persistence quick in cloud environments without generating too much noise.

aws azure cloud gcp infosec pentest persistence post-exploitation redteam security

Last synced: 09 May 2026