An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/iowacomputergurus/dnntelerikidentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 19 Apr 2025

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT

chainstack chatgpt dlp security

Last synced: 13 Apr 2025

https://github.com/lorenzodifuccia/watchmyback

An easy-to-use defense tool against "Shoulder Surfing" attacks, which allows you to immediately lock the screen of your computer if someone is behind you or if you move away from the computer without locking it.

face-detection mediapipe security shoulder-surfing tobii-aware tobii-eye-tracker

Last synced: 04 Aug 2025

https://github.com/ekaone/javascript-awesome-packages

😎 πŸ“ƒ Javascript Awesome Packages List, start from 🚦 State Management, πŸ§ͺ Testing, πŸ›  Utilities, 🌈 Design System, πŸ“ˆ Chart, πŸ–₯ Server, πŸ” Security, πŸ—„ ORM and Query Builder

database orm security server state-management testing

Last synced: 04 Mar 2025

https://github.com/skx/remotehttp

Magic wrapper to deny HTTP-requests to to "local" resources.

go golang http library security transport utility wrapper

Last synced: 23 Apr 2025

https://github.com/putyourlightson/craft-snaptcha

Automatically validates forms and prevents spam bots for Craft CMS.

craft-plugin craftcms forms security spam-protection validation

Last synced: 31 Jul 2025

https://github.com/cityofnewyork/nyco-wp-boilerplate

Local development suite for creating and running instances of WordPress sites and managing them on WP Engine. Maintained by @NYCOpportunity

composer docker nyc-opportunity nycopportunity security wordpress wp-cli wp-engine wpengine

Last synced: 12 May 2025

https://github.com/sjinks/roundcube_recaptcha

Adds reCAPTCHA to the RoundCube login form

captcha login recaptcha roundcube-plugin security

Last synced: 07 Mar 2026

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/oslabs-beta/testsudo

A one-stop testing suite offering a range of frontend, backend, and security metrics for your projects.

backend bearer frontend lighthouse measured optimization performance-testing security testing-tools

Last synced: 30 Apr 2025

https://github.com/mini-ware/file-locker

Keep your files obfuscated by locking them with XOR encryption

cli encryption hacking linux password security shell xor

Last synced: 03 Oct 2025

https://github.com/rix4uni/unew

A tool combined of 2 commands features in 1 sort and tee for adding new lines to files, skipping duplicates

bug-bounty bugbounty bugbountytips duplicates hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 15 Apr 2025

https://github.com/latchset/tang-operator

An Openshift/K8S operator to manage NBDE Tang Servers

encryption-decryption kubernetes nbde network-disk openshift operator security tang

Last synced: 29 Jun 2025

https://github.com/brannondorsey/attacker-personas

πŸ΄β€β˜ οΈ Use attacker personas to improve your threat modeling and cybersecurity practices

advice cybersecurity infosec security threat-modeling

Last synced: 18 Feb 2026

https://github.com/ichhabrecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 09 Mar 2026

https://github.com/rooted-io/ctfs

Collection of CTF Labs 🏳️ 🏴

ctf ctf-challenges ctf-walkthroughs ctf-writeups kubernetes security

Last synced: 03 Oct 2025

https://github.com/brainpolo/llmshield

Shields your confidential data in LLM prompts from third party AI providers, allowing you to send with confidence without compromising security and privacy.

ai llms privacy security

Last synced: 05 Mar 2026

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/jeninsutradhar/kryptos

password manager built with Go and Fyne, designed to provide a secure and intuitive way to store and manage your passwords locally

aes-encryption fyne golang password-manager security

Last synced: 13 Oct 2025

https://github.com/virb3/winsock-dump-proxy

A proxy DLL for Windows to dump Windows Socket connections

dll dump proxy reverse-engineering security windows winsock

Last synced: 24 Jun 2026

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/sireto/offlinepass

Self Service Password Manager

password password-generator password-manager security

Last synced: 04 Apr 2026

https://github.com/txn2/txtoken

txToken creates an HS256 JWT token from JSON retrieved from a remote endpoint resulting from a proxied JSON request body.

authentication docker-image jwt jwt-server jwt-token kubernetes microservice security

Last synced: 04 Mar 2026

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/mawg0ud/cveforge

A tool to track & analyze Common Vulnerabilities and Exposures (CVEs).

automation cve cybersecurity detection exploit infosec malware pentesting python risk security vulnerability

Last synced: 04 Apr 2026

https://github.com/deepunk42/seclaw

SecLaw is an OpenClaw plugin that provides real-time security auditing for AI Agent tool calls.

openclaw-plugin security

Last synced: 03 Apr 2026

https://github.com/bl4ckstack/hedra

Hedra β€” Command-line tool to analyze HTTP security headers and detect missing protections like CSP, HSTS, and X-Frame-Options.

cli cybersecurity hedra http-headers information-security pentesting ruby rubygems security vulnerability-assessment web-security

Last synced: 04 Apr 2026

https://github.com/capnspacehook/ansible-iptables

Ansible role that applies a strict and secure set of rules to iptables with many configurable options

ansible firewall hardening iptables linux security

Last synced: 23 Feb 2026

https://github.com/nexusone23/noid-privacy-linux

πŸ›‘οΈ Privacy & Security Audit for Linux Desktops β€” 300+ checks, 42 sections, zero dependencies, pure Bash. AI-powered fixes with --ai flag.

ai-tools audit bash cybersecurity debian desktop-security fedora hardening linux linux-desktop linux-security noid-privacy privacy privacy-audit privacy-tools security security-audit shell-script ubuntu zero-dependencies

Last synced: 31 May 2026

https://github.com/atropinetears/winternitz-ots

A Rust Library For The Post-Quantum Digital Signature Scheme Winternitz One-Time Signature using the hash function Blake2b.

blake2b crypto cryptography digital-signature hash hashing one-time-signatures ots post-quantum post-quantum-cryptography rust rust-crate rust-lang rust-library security signatures winternitz winternitz-ots wots

Last synced: 27 Mar 2026

https://github.com/pyperanger/gorootcheck

Standalone rootcheck by OSSEC wrtitten in Go ( rootkit detection )

cortex golang linux misp ossec rootkit security

Last synced: 20 Jan 2026

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/bes-js/dcsv-max-security

what a pity, I expected him to push harder Mehhh

dcsv max security zort

Last synced: 23 Mar 2025

https://github.com/avantasia/inventedAttack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 13 Mar 2025

https://github.com/superswan/Pirate-VPS

VNC scanner and screenshot tool using Censys API

scanner security vnc

Last synced: 10 May 2025

https://github.com/serversideup/ipaddress-fyi

Easily control access to the Internet’s most popular services

firewall-configuration laravel-application open-api open-data php-applications security

Last synced: 11 Apr 2025

https://github.com/komachi/apparmor-even-more-profiles

Collection of AppArmor profiles for hardering Debian Stable (currently buster).

apparmor apparmor-profiles linux sandboxing security

Last synced: 16 Apr 2025

https://github.com/tomwechsler/linux_administration_security

Linux security with three different distributions (Ubuntu, openSUSE and Red Hat)!

linux opensuse redhat security ubuntu

Last synced: 27 Jul 2025

https://github.com/erseco/ugr_tfg

Trabajo de Fin de Grado - AnΓ‘lisis de plataforma de recursos de apoyo a la docencia Prado2

accessibility availability hacktoberfest moodle prado2 security thesis ugr usability

Last synced: 26 Dec 2025

https://github.com/blueshoe/django-secure-passwords

Enterprise-grade django password management :key:

authentication django enterprise password python security

Last synced: 17 Jul 2025

https://github.com/thewh1teagle/checksum

Github reusable action for create checksum.txt for release assets

actions github security workflow

Last synced: 10 Aug 2025

https://github.com/zainabed/web-security-soteria

Single page application security (Typescript authorization library)

authorization security typescript

Last synced: 24 Jul 2025

https://github.com/cokebeer/go-sec-code

Go-sec-code is a project for learning Go vulnerability code.

cors go jsonp security sqli ssrf ssti xss xxe

Last synced: 26 Jul 2025

https://github.com/ariary/hack-weak-strcmp-code

A description of a basic hack over a C files using strcmp function

hack reverse-engineering security

Last synced: 02 Jul 2025

https://github.com/samdphillips/racket-keyring

Racket Keyring Library

password racket security

Last synced: 11 Apr 2025

https://github.com/nhahan/stateless-spring-security

stateless-spring-security

java jwt security spring

Last synced: 27 Aug 2025

https://github.com/auth0-blog/vue-auth0-aside

Aside: Vue with Auth0 and an authenticated Node API.

api app aside auth auth0 authentication node security vue vue-auth

Last synced: 27 Jul 2025

https://github.com/techjacker/diffence

Checks a git diff for offensive content

diff git-diff passwords secrets security

Last synced: 02 Sep 2025

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/zeyad-azima/n0pspoof

A tool to bypass and evade Portspoof solution

bypass ids network nmap rustscan security

Last synced: 04 Apr 2025

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/silur/zerotwo

State of the art authentication scheme with the strength of a Klaxxosaur

2fa authentication crendentials cryptography login security

Last synced: 16 Apr 2025

https://github.com/IchHabRecht/hosts_pattern

Set TYPO3_CONF_VARS['SYS']['trustedHostsPattern'] depending on available sys_domain records

hostnames security trustedhostspattern typo3 typo3-cms typo3-extension

Last synced: 31 Mar 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025

https://github.com/vapor-ware/sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

envelope kms sctl secrets security

Last synced: 14 Apr 2025

https://github.com/phpgt/csrf

Automatic protection from Cross-Site Request Forgery.

automatic-protection csrf csrf-protection csrf-protector csrf-tokens php-security phpgt security

Last synced: 04 Oct 2025

https://github.com/vm32/firewall-rule-management-script

Bash script aids in the effective management of firewall rules

blue-team cyber-security firewall firewall-rules security

Last synced: 20 Jul 2025

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/bocaletto-luca/ip-port-scanner

The IP Port Scanner software is a Python application based on Tkinter that allows users to scan IP addresses and ports within a local network. This application provides an intuitive user interface for performing IP scans and checking the status of open or closed ports on a specific host.

cybersecurity desktop-application gui ip-scanner ip-scanning network-scanning network-security open-source python security tkinter

Last synced: 05 Jan 2026

https://github.com/kiliczsh/nosql-injection

The Power of Secure Coding Practices: Safeguarding MongoDB Against Exploitation

mongodb nosql-injection security

Last synced: 10 Apr 2025

https://github.com/jfrog/jfrog-ide-webview

JFrog-IDE-Webview is a React-based HTML page designed to be seamlessly embedded within JFrog VS Code Extension and the JFrog IDEA Plugin.

jfrog jfrog-idea-plugin jfrog-vscode-extension jfrog-xray security

Last synced: 10 Oct 2025

https://github.com/rezmoss/awesome-security-pipeline

πŸ” A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/windwalker-io/srp

A modern PHP/JS package of SRP-6a (RFC5054). Contains server and client part to help developer use on any cases.

password passwordless rfc-5054 secure-remote-password security srp srp-6a

Last synced: 27 Oct 2025

https://github.com/robertdebock/ansible-role-aide

Install and configure aide on your system.

aide ansible ids molecule monitoring playbook security system tox

Last synced: 24 Apr 2025

https://github.com/zahash/royalguard

Secure Ergonomic Command Line Password Manager. Free Forever. Made with ❀️ using πŸ¦€

cli command-line-tool decrypt decryption encrypt encryption encryption-decryption password password-manager secure security

Last synced: 07 Oct 2025

https://github.com/kevcui/totp

:1234: Yet another minimal TOTP generator in 5 lines of Bash

2fa bash bash-script cryptography hotp security totp totp-generator

Last synced: 15 Oct 2025

https://github.com/yurukusa/cc-safe-setup

One command to make Claude Code safe for autonomous operation. 658 example hooks Β· 14,096 tests Β· 1,000+ installs/day

agent agentic-coding ai-safety anthropic automation autonomous bash claude claude-code cli coding-agent database-protection developer-tools hooks llm-tools owasp pretooluse safety security token-consumption

Last synced: 17 Apr 2026

https://github.com/bcrowe/cakephp-encrypted-type

:lock_with_ink_pen: CakePHP plugin that provides field-level (column) encryption within the application layer before data is stored or transmitted to the database, supporting regulatory compliance, zero-trust security, end-to-end encryption, and contextual awareness.

cakephp cakephp-plugin data-encryption data-security database encryption end-to-end-encryption field-level-encryption field-level-security gdpr hipaa pci pci-compliance pci-dss php regulatory-compliance security zero-trust zero-trust-security

Last synced: 08 Mar 2026

https://github.com/semgrep/skills

A collection of skills for AI coding agents from Semgrep

agents claude-code security skills

Last synced: 05 Mar 2026

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks πŸ•΅οΈβ€β™‚οΈ

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025