An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/azu/github-advisory-database-rss

GitHub Advisory Database RSS Feeds.

github rss security

Last synced: 15 Jan 2026

https://github.com/tintinweb/vscode-chonky

🍣 Chonky - A Superhuman LLM Auditing Agent for Solidity

agentic-ai security solidity vscode-extension

Last synced: 15 May 2026

https://github.com/swamithedev/password_strength

The Password Strength Checker project aims to help users assess the robustness of their passwords quickly and effectively.

frontendproject frontendprojects password password-checker password-generator password-strength password-strength-checker security swaminathanselvam swamithedev ui ui-components ui-design

Last synced: 19 Oct 2025

https://github.com/thalesgroup/gose

GOSE = JOSE and friends for the Go developer

golang jsonwebtoken security

Last synced: 03 Oct 2025

https://github.com/express-rate-limit/rate-limit-postgresql

A PostgreSQL store for express-rate-limit middleware

express-middleware nodejs postgresql rate-limiting security

Last synced: 30 Apr 2025

https://github.com/bbva/masquerade

High-performance, real-time, multi-location data obfuscation tool

encrypted-data masquerade security tokenizer

Last synced: 21 Jun 2025

https://github.com/benwestgate/bitcoin-core-on-tails

Deprecated Setup script for installing Bitcoin Core to Tails persistent storage. Full node, wallet, backup and clone for a friend functions

bash bash-script bitcoin bitcoin-core debian full-node linux operating-system privacy security shell tails

Last synced: 28 Oct 2025

https://github.com/0x4f53/getperms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 01 May 2025

https://github.com/zuazo/dradis-docker

A Docker image with Dradis: A collaboration and reporting platform for IT security experts.

devops docker dradis minimal repository security

Last synced: 13 Apr 2025

https://github.com/rennf93/flaskapi-guard

A security library for Flask that provides an extension to control IPs, log requests, and detect penetration attempts. It integrates seamlessly with Flask to offer robust protection against various security threats.

api extension flask ip python rest security

Last synced: 03 Jun 2026

https://github.com/tomwechsler/cyber_and_information_security_knowledge_base

A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.

cybersecurity information-security knowledge-base security

Last synced: 13 Feb 2026

https://github.com/proxylity/wg-client

Standalone UdpClient-compatible WireGuard client for .NET. Implements the Noise_IKpsk2_25519_ChaChaPoly_BLAKE2s handshake with ChaCha20-Poly1305 transport encryption.

api-client dotnet network-programming security udp wireguard

Last synced: 16 Jun 2026

https://github.com/charlesjones-dev/claude-code-plugins-dev

Automate developer busy work with AI-powered plugins for Claude Code.

ai claude claude-code developer-tools git git-tools llm performance performance-tools security security-tools

Last synced: 01 Apr 2026

https://github.com/docker-secret-operator/dso

Zero-persistence secret injection for Docker. CNCF Sandbox project. AWS, Azure, Vault support.

cncf cncf-sandbox devops docker docker-plugin kubernetes secret-management security

Last synced: 02 Jun 2026

https://github.com/quodeq/quodeq

AI-powered code quality and security scanner. Open source, MIT, runs locally. <🧭>

ai-tools cli code-analysis code-quality cwe devtools iso-25010 llm open-source python quality-assurance security static-analysis vulnerability-scanner

Last synced: 10 May 2026

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/dneprdroid/chrome-poc-demo

Example for the Google Chrome cache attack to inject custom code into web pages (macOS, Linux, browser version: 124.0.6367.62 and older)

attack cache google-chrome poc proof-of-concept security

Last synced: 05 Mar 2026

https://github.com/groupe-edf/watchdog

Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.

ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security

Last synced: 14 Jan 2026

https://github.com/rix4uni/tldscan

A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence tldfinder tldscanner

Last synced: 20 Apr 2026

https://github.com/daggerok/csrf-spring-webflux-mustache

This repository is contains example application using spring boot 2.0, webflux, spring security 5, reactive mongodb and mustache template engine: spring security 5, CSRF protection with mustache, spring webflux functional routes security, method security, authorization decision, etc

controller-advice csrf csrf-protection csrf-tokens css-grid css-grid-layout maven mongodb mustache reactive reactive-mongo reactive-programming security spring-boot spring-mvc spring-security spring-web spring-webflux webflux

Last synced: 20 Oct 2025

https://github.com/lithnet/ad-password-protection-lists

Banned word lists for use with Lithnet Password Protection for Active Directory

active-directory lithnet-password-protection lpp password security

Last synced: 07 Feb 2026

https://github.com/netguru/mobile-security-review

Security review guidelines for mobile projects

android ios owasp security

Last synced: 11 Sep 2025

https://github.com/grapheneos-archive/device_google_coral

Pixel 4 and Pixel 4 XL device sources.

android grapheneos security

Last synced: 13 Apr 2025

https://github.com/weebdatahoarder/go-away

[Mirror] Self-hosted abuse detection and rule enforcement against low-effort mass AI scraping and bots.

ai-scraping http-proxy mirror security

Last synced: 16 May 2025

https://github.com/msfidelis/aws-vpc-best-pratices

Personal compilation for best pratices for VPC Network architectures on AWS to improve performance, high avalilability and security for your apps. :cloud:

aws cloud networking security terraform

Last synced: 13 Jun 2025

https://github.com/tankerhq/sdk-android

Tanker client-side encryption SDK for Android

android cryptography encryption end-to-end java kotlin privacy sdk security tanker

Last synced: 09 Apr 2025

https://github.com/brosck/farllen

「🚪」Port forwarding tool to gain access to internal devices

c forwarding hacking network pivot port security tool

Last synced: 06 May 2025

https://github.com/peppelinux/django-audit-wazuh

Django middleware and signals for handling security events

django loganalysis ossec ossec-wazuh security siem wazuh

Last synced: 23 Mar 2025

https://github.com/nsneruno/magisk_detector

Flutter Support for integrating Magisk Detector for Android Application. Based from MagiskDetector.

android android-library c dart flutter flutter-library flutter-plugin magisk ndk root-detection root-detection-bypass security

Last synced: 09 May 2025

https://github.com/anqorithm/saudi-cert-api

This repository has a tool and an API for Saudi CERT alerts. Its goal is to help improve the level of cybersecurity awareness in Saudi Arabia. Using AWS Lambda, this project takes Saudi CERT's alerts, organizes them, and makes them easy to get through a public API.

alerts attacks-threats-vulnerabilites cyber-analytics cybersecurity log-analysis osint security siem soc threat-intelligence threats vulnerabilities

Last synced: 29 Jun 2025

https://github.com/grapheneos-archive/nginx-rotate-session-ticket-keys

Session ticket key rotation scripting / systemd units for nginx to work around the lack of built-in support. This may eventually be extended to support syncing keys across a group of servers providing the same service.

nginx privacy security

Last synced: 09 May 2025

https://github.com/heartsucker/rust-csrf

Primitives for CSRF protection.

cryptography csrf csrf-protection http rust security

Last synced: 07 Aug 2025

https://github.com/mattdl/dua

Source code "Unsupervised Model Personalization while Preserving Privacy and Scalability: An Open Problem." @ CVPR2020

cvpr2020 framework importance personalization privacy scalability security unsupervised-learning

Last synced: 21 Jul 2025

https://github.com/lchsk/django-insecure

Example of an insecure Django application

django education security

Last synced: 25 Apr 2025

https://github.com/aiven-open/pghostile

Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.

exploitation postgresql security security-audit security-tools

Last synced: 29 Apr 2025

https://github.com/t0mer/safeurl

SafeUrl is a small and lite [FastAPI]( https://fastapi.tiangolo.com/) based web application intended to help us validate any URL safely before clicking it.

docker fastapi ipinfo python security spam virustotal

Last synced: 15 Apr 2025

https://github.com/defeo/phishing-demo

Demonstration of wifi sniffing, dns poisoning, mitm and phishing attack

security wifi

Last synced: 09 Mar 2026

https://github.com/foxcpp/audit_pretty

Linux Auditing System logs pretty printer

linux-audit linux-security security

Last synced: 30 Oct 2025

https://github.com/voku/anti-xss-twig

AntiXSS for Twig

hacktoberfest html php php7 security xss

Last synced: 09 Apr 2025

https://github.com/supercowpowers/scp-labs

SCP Labs (Open Source Team for SuperCowPowers)

data-analysis data-science pandas python scikit-learn security

Last synced: 06 May 2025

https://github.com/damienbod/bff-aspnetcore-angular-downstream-api

BFF using downstream API and OAuth client credentials

angular aspnetcore bff iam nx oauth openidconnect security

Last synced: 19 Apr 2025

https://github.com/GeekMasher/quibble

A container security tool written in Rust focusing on making security easy for compose based configurations

containers docker docker-compose podman podman-compose security

Last synced: 18 Jul 2025

https://github.com/seadog007/crontab_botnet

A botnet (C&C) framework that create in bash and using crontab for periodic execute

botnet c2 command-and-control crontab security

Last synced: 27 Aug 2025

https://github.com/anunay-bhatt/secure-serverless-reference-architecture

A walkthrough of security controls for a serverless architecture via a demo application

cloud-security reference-architecture security security-architecture serverless

Last synced: 15 Apr 2025

https://github.com/shellrow/nrev

Simple and Fast Network Scanner/Mapper. Written in Rust.

network rust scanner security

Last synced: 04 Apr 2026

https://github.com/andresriancho/burp-proxy-search

Burp suite HTTP history advanced search

burp scanning search security statistics

Last synced: 10 Apr 2025

https://github.com/lorddashme/php-simple-captcha

A simple captcha package that fit to any type of web application built on php.

anti-spam captcha free php security simple

Last synced: 13 Apr 2025

https://github.com/jery0843/torforge

🧅 Experimental transparent Tor proxy with AI-powered circuit selection, post-quantum encryption, and leak protection. Route all system traffic through Tor with zero configuration.

ai anonymity censorship-circumvention encryption golang iptables kill-switch linux network-security post-quantum privacy proxy security tor transparent-proxy

Last synced: 21 Jan 2026

https://github.com/cerbos/cerbos-sdk-java

Java SDK for interacting with the Cerbos PDP.

access-control cerbos policy security

Last synced: 02 Sep 2025

https://github.com/ramborogers/cyberpamnow

CyberPAM Instant PAM Solution

pam security zerotrust

Last synced: 22 Mar 2025

https://github.com/spences10/nopeek

CLI for LLM agent secret safety — load env secrets without exposing values

agents cli coding-agents env llm redaction secrets security

Last synced: 04 Jul 2026

https://github.com/matricali/php-edge-auth

PHP Library that generates authorization token used by Akamai Auth Token 2.0.

akamai composer edge-auth php php-library security signature token

Last synced: 31 Aug 2025

https://github.com/cityssm/pdfflattener

PDF Flattener - Secure PDF documents by making floating redactions and form entries permanent.

flatten java pdf pdf-flattener pdf-forms pdfbox redaction security

Last synced: 26 Jun 2025

https://github.com/stateloom/stateloom

The control plane for AI agents. Track, secure, and optimize every agent run.

ai-agents anthropic cost-tracking developer-tools gateway gemini guardrails llm middleware observability openai pii-detection python security

Last synced: 12 Apr 2026

https://github.com/antgroup/yasa-engine

YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.

antgroup program-analysis security taint-analysis

Last synced: 14 Sep 2025

https://github.com/plazmaz/cvestack

Scan products in your stack for known vulnerabilities

cve cve-scanning infosec nvd python security security-tools vulnerability

Last synced: 23 Apr 2025

https://github.com/apertureless/wiviz

Wifi client probe analyzer & visualizer

security wifi

Last synced: 27 Oct 2025

https://github.com/altcha-org/altcha-wordpress-next

ALTCHA for WordPress v2 is the professional solution for keeping your website safe from spam, bots, and abuse.

altcha captcha security spam wordpress

Last synced: 03 May 2026

https://github.com/DenizParlak/heimdall

AWS Attack Path Scanner - Discover privilege escalation paths across 10+ AWS services

aws aws-security cloud security

Last synced: 31 Jan 2026

https://github.com/mark-adams/gcp-ip-list

A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Platform (GCP).

gcp gcp-security golang security security-tools

Last synced: 23 Jan 2026

https://github.com/robertdebock/ansible-role-openssh

Install and configure openssh on your system.

ansible molecule openssh playbook security system tox

Last synced: 13 Oct 2025

https://github.com/sysdiglabs/sysdig-operator

Sysdig agent Operator configure Sysdig platform in your Kubernetes cluster

kubernetes monitoring security sysdig

Last synced: 13 Jul 2025

https://github.com/f-froehlich/nmap-scan

Nmap wrapper for python with full Nmap DTD support, parallel scans and threaded callback methods support for faster analytics.

network-scanner nmap os-identifier portscan portscanner portscanning scanner scanning security security-tools serverstatus service-detection service-discovery

Last synced: 26 Dec 2025

https://github.com/abhisheknaiidu/arm

Management for users, to upload,download and manage important documents of a particular discipline. We'll be maintaining our Database on CRUD Functionalities.

bootstrap4 css3 dbms dbms-project documents hacktoberfest hacktoberfest2020 html5 js php security ui ux

Last synced: 02 Apr 2026

https://github.com/dwoz/salt-rekey

Re-key Salt masters and minions

minions privatekey publickey salt-master security

Last synced: 29 Apr 2025

https://github.com/gardener/diki

Diki is a compliance checker that aims to enhance the security posture of your Kubernetes clusters.

compliance compliance-checklist hardening kubernetes kubernetes-hardening reporting security stig stig-compliant

Last synced: 12 Apr 2025

https://github.com/cdimascio/express-openapi-validator-example

simple openapi validation examplewith express-openapi-validator

api express file-upload openapi request-validation response-validation security validation

Last synced: 28 Apr 2025

https://github.com/eustasy/authenticatron

PHP-LIB: HOTP / TOTP secrets with corresponding QR links and code verification from a simple PHP script.

2fa authentication composer-packages passwords php secret security totp two-factor-auth webauthn

Last synced: 31 Aug 2025

https://github.com/anvilsecure/hominoid

Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.

browser-extension perceptual-hashing phishing proof-of-concept security

Last synced: 07 Jan 2026

https://github.com/tarzan/leaked_passwords

Checking for leaked passwords through haveibeenpwned v2 API using the hash-range checker

elixir haveibeenpwned leaks password security

Last synced: 24 Jul 2025

https://github.com/brightdigit/stealthystash

A Swifty database interface into the Keychain Services.

keychain keychain-wrapper password security swift

Last synced: 21 Apr 2025

https://github.com/wp-cli/super-admin-command

Lists, adds, or removes super admin users on a multisite installation.

admin cli hacktoberfest security superadmin wordpress wp-cli wp-cli-package

Last synced: 12 Jun 2025

https://github.com/nitrokey/openpgp-card

Sample code of the OpenPGP Card

cryptography security smartcard

Last synced: 06 Jan 2026

https://github.com/federicoceratto/nim-seccomp

Seccomp (libseccomp2) adapter for the Nim language

nim nim-lang seccomp security

Last synced: 09 Apr 2025

https://github.com/morenes/AutoCC

Methodology that leverages FPV to automatically discover covert channels in hardware that is time-shared between processes. AutoCC operates at RTL to exhaustively examine any machine state left by a process after a context switch that creates an execution difference.

covert-channel formal-verification fpv hardware security

Last synced: 11 May 2025

https://github.com/gonative-cc/contributig

Guidelines and resources for Native org contributions

blockchain contributors security

Last synced: 01 Mar 2026

https://github.com/reconmap/documentation

Product documentation including admin, user and developer manuals

cybersecurity documentation hacktoberfest infosec manual pentesting saas security vulnerability

Last synced: 04 Mar 2026

https://github.com/05nelsonm/pin-authentication

An Android library that provides local PIN authentication for your application.

android android-library authentication security

Last synced: 16 Mar 2026

https://github.com/spacewander/lua-resty-mime-sniff

Sniff the real MIME type of given data in your OpenResty app

openresty security websecurity

Last synced: 28 Feb 2026