An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/threagile/run-threagile-action

GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file

cicd devsecops devsecops-pipeline github-actions github-workflow risk-analysis security threagile threat-modeling

Last synced: 04 Jul 2025

https://github.com/hotaydev/audit-export

A handy tool to export npm audit results to a fully offline HTML page for a better view of your project's vulnerabilities.

audit npm-audit packages security vulnerabilities

Last synced: 15 May 2025

https://github.com/wmnsk/milenage

MILENAGE algorithm implemented in the Go Programming Language.

epc eutran lte milenage security telecom

Last synced: 28 Jan 2026

https://github.com/ethereum-optimism/monitorism

Suite of tools for Monitoring OP Stack Chains 🔴 Offers real-time detection and Incident response capabilities ✨

monitoring onchain optimism security

Last synced: 26 Apr 2025

https://github.com/yottayoshida/llm-key-ring

Secure CLI for managing LLM API keys via macOS Keychain. No more plaintext .env files.

api-key cli keychain llm macos rust secret-management security

Last synced: 13 Mar 2026

https://github.com/cerbos/demo-graphql

A Typescript GraphQL demo of integrating Cerbos with GQL

access-control graphql nodejs policy security typescript

Last synced: 06 Oct 2025

https://github.com/gaetangr/synaudit

A fast and user-friendly security auditing tool for Synology NAS systems built in Go.

auditing go golang security synology

Last synced: 14 Jan 2026

https://github.com/dkosmari/gnome-shell-extension-totp

A GNOME Shell extension to generate Time-based One-Time Passwords (TOTP aka Time-based OTP) for websites that use 2FA.

2fa 2factor cryptography gnome gnome-shell gnome-shell-extension javascript otp otp-generator otpauth security totp

Last synced: 21 Aug 2025

https://github.com/hannesm/ocaml-hkdf

HMAC-based Extract-and-Expand Key Derivation Function (HKDF) (RFC 5869)

hkdf ocaml rfc5869 security

Last synced: 07 Aug 2025

https://github.com/heartsucker/rust-csrf

Primitives for CSRF protection.

cryptography csrf csrf-protection http rust security

Last synced: 07 Aug 2025

https://github.com/msfidelis/aws-vpc-best-pratices

Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:

aws cloud networking security terraform

Last synced: 13 Jun 2025

https://github.com/sercanarga/ipmap

ipmap is an open source, cross-platform and powerful network analysis tool.

ipmap linux macos security windows

Last synced: 10 Mar 2026

https://github.com/peppelinux/django-audit-wazuh

Django middleware and signals for handling security events

django loganalysis ossec ossec-wazuh security siem wazuh

Last synced: 23 Mar 2025

https://github.com/shivammathur/php-src-backports

Security backports for EOL versions of PHP.

backports end-of-life php security

Last synced: 07 May 2025

https://github.com/orsinium-labs/flake8-warnings

Python linter (flake8, pylint, CLI) that warns you about using deprecated modules, classes, and functions

clean-code code-quality flake8 flake8-extension flake8-extensions flake8-plugin flake8-plugins linter pylint python python3 qa security

Last synced: 15 Apr 2025

https://github.com/weebdatahoarder/go-away

[Mirror] Self-hosted abuse detection and rule enforcement against low-effort mass AI scraping and bots.

ai-scraping http-proxy mirror security

Last synced: 16 May 2025

https://github.com/kicksecure/gpg-bash-lib

gpg file verification bash library, addresses comprehensive threat model, that covers file name tampering, indefinite freeze, rollback, endless data attacks, etc.

bash-scripts diagnostic-output gpg security verification

Last synced: 19 Apr 2025

https://github.com/mam-dev/security-constraints

Fetches security vulnerabilities and creates pip-constraints based on them.

dependencies pip python security supply-chain-security

Last synced: 01 Jul 2025

https://github.com/nategraf/naumachia-challenges

Open-source challenges for Naumachia

ctf ctf-challenges docker docker-compose network security

Last synced: 24 Apr 2025

https://github.com/paretosecurity/aremykeyssafe

Find out if your SSH keys are safe!

public-key security ssh

Last synced: 12 Jul 2025

https://github.com/wolfssl/arduino-wolfssl

This repository is a restructured copy of https://github.com/wolfSSL/wolfssl/ for the Arduino environment. Any Pull Requests for code changes should be opened there.

arduino-library cryptography security ssl tls tls12 tls13

Last synced: 27 Apr 2025

https://github.com/ffmancera/ping_of_death

Some scripts to do a ping of death attack.

ddos-attacks networking python3 scapy security

Last synced: 09 Oct 2025

https://github.com/daggerok/csrf-spring-webflux-mustache

This repository is contains example application using spring boot 2.0, webflux, spring security 5, reactive mongodb and mustache template engine: spring security 5, CSRF protection with mustache, spring webflux functional routes security, method security, authorization decision, etc

controller-advice csrf csrf-protection csrf-tokens css-grid css-grid-layout maven mongodb mustache reactive reactive-mongo reactive-programming security spring-boot spring-mvc spring-security spring-web spring-webflux webflux

Last synced: 20 Oct 2025

https://github.com/alexeev-prog/nadzoring

An open source tool for detecting website blocks, downdetecting, and network analysis

ai-friendly arp censorship cli dns network network-analysis network-monitoring python security security-tools utility

Last synced: 01 Apr 2026

https://github.com/docker-secret-operator/dso

Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.

cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security

Last synced: 02 Jun 2026

https://github.com/tomwechsler/cyber_and_information_security_knowledge_base

A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.

cybersecurity information-security knowledge-base security

Last synced: 13 Feb 2026

https://github.com/AmoloHT/CVE-2022-26134

「💥」CVE-2022-26134 - Confluence Pre-Auth RCE

confluence cve cve-2022-26134 exploit hacking infosec rce security

Last synced: 10 Mar 2025

https://github.com/fi5t/nimbussrp-android

Classic NimbusSRP library is optimized for Android

android android-library nimbusds security srp-6a

Last synced: 09 May 2025

https://github.com/grapheneos/platform_external_pdfviewer

PdfViewer app prebuilt using the latest official release of the PdfViewer app.

android grapheneos pdf pdf-viewer security

Last synced: 13 Apr 2025

https://github.com/containerscrew/rootisnaked

Simple root privilege escalation detection using eBPF 🐝

cilium-ebpf ebpf ebpf-go go golang linux-kernel privilege-escalation security

Last synced: 12 Apr 2025

https://github.com/phosphore/cwmpwn

Leveraging CWMP (CPE WAN Management Protocol) to extract vendor specific secrets and configurations from CPEs

cpe cwmp security tr-069

Last synced: 29 Apr 2025

https://github.com/elliotwutingfeng/2fas-backup-decryptor

CLI tool to decrypt backup files exported from the 2FAS Authenticator app. This application is neither affiliated with Two Factor Authentication Service, Inc. nor 2FAS.

2fa 2fas aes aes-gcm android backup cryptography cybersecurity decryption encrypt encryption hmac-sha256 ios linux macos otp pbkdf2 security totp windows

Last synced: 29 Apr 2025

https://github.com/elsevierlabs-os/terraform-cloud-custodian-lambda

A collection of terraform modules that allow you to deploy and manage cloud-custodian lambda resources using native terraform as opposed to using the cloud-custodian CLI

aws aws-lambda c7n c7n-mailer cloud cloud-custodian compliance cost-optimization lambda rules-engine security serverless

Last synced: 06 Mar 2026

https://github.com/elfenware/obliviate-web

A password manager that forgets your passwords

hacktoberfest manager passphrase password security svelte

Last synced: 14 May 2025

https://github.com/thecyberarcher/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 13 Apr 2025

https://github.com/rubennati/vulnerable-php-code-examples

Deliberately vulnerable PHP code examples for testing static analysis tools and security training, covering common vulnerabilities such as SQL Injection, XSS, CSRF, and more.

owasp php security static-analysis vulnerable

Last synced: 26 May 2026

https://github.com/nsneruno/magisk_detector

Flutter Support for integrating Magisk Detector for Android Application. Based from MagiskDetector.

android android-library c dart flutter flutter-library flutter-plugin magisk ndk root-detection root-detection-bypass security

Last synced: 09 May 2025

https://github.com/datalux/notification-sniffer

An Android Library that implements a Notification Sniffer

android android-library notifications security sniffing

Last synced: 23 Jul 2025

https://github.com/aiven-open/pghostile

Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.

exploitation postgresql security security-audit security-tools

Last synced: 29 Apr 2025

https://github.com/milouk/sphinx-bullhead

Sphinx Custom Linux Kernel for Bullhead (Nexus 5X)

android battery bullhead kernel lineageos linux-kernel nexus-5x oreo performance security stability

Last synced: 13 May 2025

https://github.com/thotypous/operagbas

Alternative "security" module for Brazilian banks

banking-applications security

Last synced: 12 Oct 2025

https://github.com/fxamacker/webauthn-demo

WebAuthn server demo for registration and authentication (Go/Golang)

authentication fido2 passwordless security web-application webauthn webauthn-demo yubikey

Last synced: 28 Apr 2025

https://github.com/lithnet/ad-password-protection-lists

Banned word lists for use with Lithnet Password Protection for Active Directory

active-directory lithnet-password-protection lpp password security

Last synced: 07 Feb 2026

https://github.com/0xle0ne/socknet

PropTypes style for secure your socket.io application

argument-parser framework nodejs security socket-io websockets

Last synced: 02 Apr 2026

https://github.com/rennf93/flaskapi-guard

A security library for Flask that provides an extension to control IPs, log requests, and detect penetration attempts. It integrates seamlessly with Flask to offer robust protection against various security threats.

api extension flask ip python rest security

Last synced: 03 Jun 2026

https://github.com/raforg/libslack

A UNIX/C library of general utilities for programmers with Slack

bsd c daemon daemonize debian freebsd library linux macos macosx netbsd openbsd posix redhat security svr4 ubuntu unix

Last synced: 16 Oct 2025

https://github.com/ph-7/fake-admin-honeypot-v1.1

:honey_pot: New Honeypot Version: 1.2! :honeybee: This pH7CMS module is a simple but effective honeypot fake Admin CP for the security of your website. Honeypot for the attackers!

admin admin-honeypot fake-admin-panel hacking honeypot honeypot-fake-admin honeypots ph7cms security

Last synced: 09 Apr 2025

https://github.com/paulveillard/cybersecurity-ctf

A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity

ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools

Last synced: 10 Apr 2025

https://github.com/leonjza/go-observe

🌌 Go-Observe: A command line Mozilla Observatory client written in Go

commandline go security web

Last synced: 05 Jul 2025

https://github.com/utsanjan/ffssdp-mitm

The SSDP engine in Firefox for Android (68.11.0 and below) can be tricked into triggering Android intent URIs with zero user interaction.

android android-intent-uri ffssdp firefox firefox-application intent-triggering lan maninthemiddle maninthemiddleattack mitm mitm-attacks newest security ssdp-engine vulnerability wifi-network

Last synced: 02 Jul 2025

https://github.com/dneprdroid/chrome-poc-demo

Example for the Google Chrome cache attack to inject custom code into web pages (macOS, Linux, browser version: 124.0.6367.62 and older)

attack cache google-chrome poc proof-of-concept security

Last synced: 05 Mar 2026

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/quodeq/quodeq

AI-powered code quality and security scanner. Open source, MIT, runs locally. <🧭>

ai-tools cli code-analysis code-quality cwe devtools iso-25010 llm open-source python quality-assurance security static-analysis vulnerability-scanner

Last synced: 10 May 2026

https://github.com/proxylity/wg-client

Standalone UdpClient-compatible WireGuard client for .NET. Implements the Noise_IKpsk2_25519_ChaChaPoly_BLAKE2s handshake with ChaCha20-Poly1305 transport encryption.

api-client dotnet network-programming security udp wireguard

Last synced: 16 Jun 2026

https://github.com/rix4uni/tldscan

A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner

Last synced: 20 Apr 2026

https://github.com/charlesjones-dev/claude-code-plugins-dev

Automate developer busy work with AI-powered plugins for Claude Code.

ai claude claude-code developer-tools git git-tools llm performance performance-tools security security-tools

Last synced: 01 Apr 2026

https://github.com/mishakorzik/detectvpn

Free vpn, tor, datacenter, threat detection on IP

detect detection information ip ipv4 ipv4-address ipv6 ipv6-address security tor vpn

Last synced: 02 Jan 2026

https://github.com/imagemlt/easyknife

a simple app like CKnife

security

Last synced: 13 Apr 2025

https://github.com/SocialGouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 02 Aug 2025

https://github.com/mattdl/dua

Source code "Unsupervised Model Personalization while Preserving Privacy and Scalability: An Open Problem." @ CVPR2020

cvpr2020 framework importance personalization privacy scalability security unsupervised-learning

Last synced: 21 Jul 2025

https://github.com/a3r0id/php-rate-limiting

A simple system to rate-limit site visitors by time interval/request amount.

include measures php rate-limiting security simple turnkey turnkey-script

Last synced: 06 Apr 2025

https://github.com/qkaiser/awind-research

This repository holds interesting bits and pieces related to research I performed on wireless presentation devices manufactured by Awindinc and OEM'ed to multiple manufacturers.

awind barco crestron exploits extron haworth infocus newline pentesting security teqavit

Last synced: 15 Aug 2025

https://github.com/epsylon/paranoia-browser

pArAnoIA - Tiny "Secure" Browser

browser cryptography privacy security toolkit

Last synced: 29 Jun 2025

https://github.com/teverett/fbsd-secured

Ansible playbook to harden FreeBSD installations

ansible freebsd security

Last synced: 22 Mar 2025

https://github.com/ege-erdogan/unsplit

Supplementary code for the paper "UnSplit: Data-Oblivious Model Inversion, Model Stealing, and Label Inference Attacks Against Split Learning".

deep-learning machine-learning privacy security

Last synced: 13 Aug 2025

https://github.com/chhayac/awesome-dga

Domain Generation Algorithms research papers, datasets and code

cybersecurity deeplearning dga dga-detection dgapapers domaingenerationalgorithms machinelearning security

Last synced: 02 Jan 2026

https://github.com/r-net-tools/net.security

Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

attck capec cpe cve cwe mitre nist oval r sard security

Last synced: 18 Feb 2026

https://github.com/umair9747/staticot

A BASH script to automate simple tasks related to static malware analysis

cybersecurity malware malwareanalysis security static-malware-analysis staticanalysis threatintel threatintelligence

Last synced: 31 Jul 2025

https://github.com/tuxerrante/kapparmor

AppArmor profiles loader to deploy and update them through a Kubernetes daemonset

apparmor devsecops golang helm k8s kubernetes security

Last synced: 02 Mar 2026

https://github.com/carekit-apple/ibm-hyperprotectsdk

The IBM Hyper Protect iOS SDK for CareKit is an addon for the CareKit framework that consumes IBM Hyper Protect Services for zero-trust persistent cloud storage and bi-directional synchronization across multiple devices with just 2 lines of code

ios-swift mbaas mongodb security typescript

Last synced: 12 May 2025

https://github.com/lukehinds/fastllm

FastLLM - Rust based LLM Inference API

inference llama llm mistral rust security speed

Last synced: 15 Apr 2025

https://github.com/modem-dev/drizzle-scoped-db

Scope-enforced DB queries for Drizzle ORM

db drizzle drizzle-orm security

Last synced: 04 Jul 2026

https://github.com/rezen/zap-tutorial

WIP - A tutorial for OWASP ZAP

security tutorial zap

Last synced: 30 Aug 2025

https://github.com/rexs-io/blocksec2go-ethereum

Wrapper for blocksec2go allowing easy hardware-based signing of Ethereum transactions

blockchain blocksec2go ethereum hardware-wallet security

Last synced: 02 Apr 2026

https://github.com/ramborogers/cyberchat

CyberChat - P2P Zero Config Chat and Files

chat golang mdns p2p security

Last synced: 25 Jun 2025

https://github.com/anqorithm/saudi-cert-api

This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.

alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities

Last synced: 29 Jun 2025

https://github.com/ansible/ansible-sign

The `ansible-sign` utility for signing and verifying Ansible project directory contents.

ansible ansible-dev-tools awx cryptography gpg security

Last synced: 01 Aug 2025

https://github.com/thalesgroup/security-risk-assessment-tool

The ISRA security-risk-assessment-tool project is an Electron based application used to do security risk assessments at a technical level

cvss cybersecurity engineering iso iso-27005 iso27005 risk-analysis risk-assessment security security-tools

Last synced: 17 Mar 2025

https://github.com/zuazo/dradis-docker

A Docker image with Dradis: A collaboration and reporting platform for IT security experts.

devops docker dradis minimal repository security

Last synced: 13 Apr 2025

https://github.com/azu/github-advisory-database-rss

GitHub Advisory Database RSS Feeds.

github rss security

Last synced: 15 Jan 2026

https://github.com/0x4f53/getperms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 01 May 2025