An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/ozeranskii/image-vuln-scanner

A CLI tool for scanning Docker images for vulnerabilities using Trivy and Grype.

cli grype k8s security security-tools trivy vulnerability vulnerability-scanners

Last synced: 21 Feb 2026

https://github.com/abhinandan-khurana/gitstarrecall

GitStarRecall is a local-first AI enabled web app that turns your GitHub stars into a searchable memory system on your browser locally.

ai ai-search developer-tools github-stars llm local-first local-first-ai memory ollama privacy privacy-focused rag recall security semantic-search starred-repositories vector-search webgpu webllm

Last synced: 04 Mar 2026

https://github.com/bobberdolle1/maixcam-wildtrap

🎯 AI-Powered Camera Trap for MaixCAM | Hybrid Motion+YOLOv8 Detection | Telegram Notifications | Wildlife Monitoring & Security | 4 Detection Modes | Night Vision | Auto Storage Management | Production Ready

ai camera-trap computer-vision edge-ai embedded-systems iot maixcam maixpy motion-detection object-detection opencv python security telegram-bot wildlife yolov8

Last synced: 03 Jun 2026

https://github.com/mv-consulting/awscdk-rootmail

An opinionated way to secure your AWS root email boxes

aws cdk cdk-construct mail opinionated security

Last synced: 14 Mar 2026

https://github.com/zeidmakic/quorixjwt

A secure and scalable ASP.NET Core API with JWT authentication, OAuth integration, and role-based authorization. This project demonstrates user management, external login providers, and claims-based access control.

authentication authorization claims-based-authorization dotnet entity-framework-core oauth rest-api role-based-authorization security sql-server user-management

Last synced: 16 Apr 2026

https://github.com/ptondereau/ext-biscuit

WIP - a PHP extension for biscuit token implementation

biscuit extension php security

Last synced: 16 Apr 2026

https://github.com/gragero/freelance-site

Personal freelance portfolio — Flask, Python, Secure Backend. From nothing to all.

backend coding flask freelance freelancer high-performance low-level-programming programming python security website

Last synced: 19 Jun 2026

https://github.com/crane-valley/kylix

A post-quantum cryptography library implementing NIST FIPS standards in pure Rust.

cryptography dilithium fips-203 fips-204 fips-205 kyber lattice-cryptography ml-dsa ml-kem no-std post-quantum pqc rust security slh-dsa

Last synced: 28 Jan 2026

https://github.com/zezav-cz/NetworkClock

Server app for time shearing

csharp security time

Last synced: 15 Oct 2025

https://github.com/jackivanov/spiv

Set up SOCKS proxy in the cloud at the push of a button

security socks5 socks5-proxy socks5-server vpn

Last synced: 22 Jan 2026

https://github.com/wg-keeper/wg-keeper-node

Minimal WireGuard node with REST API for centralized peer management.

devops golang rest-api security vpn wireguard

Last synced: 13 Mar 2026

https://github.com/gazman-dev/sheriffclaw

A safe way to use AI that can do anything

ai ai-agents ai-tools security

Last synced: 07 Mar 2026

https://github.com/thanoskas/arrowhead_alarm

Home Assistant integration for Arrowhead alarm panels with advanced zone detection and multi-panel support

alarm alarm-panel arrowhead custom-integration eci esx hacs home-assistant home-automation security

Last synced: 16 Apr 2026

https://github.com/ojster/ojster

GitOps-safe one-way encrypted secrets, unsealed at container runtime as ephemeral env vars, for Docker Compose

compose container docker docker-compose dotenvx encrypt-decrypt encryption env environment-variables gitops go golang ojster sealed-secrets security self-hosted selfhosted vault zero-dependency zero-trust

Last synced: 23 Feb 2026

https://github.com/itallstartedwithaidea/last-mile

Last Mile 360 — The production-readiness platform for vibe-coded apps. Norton-grade trust. Cloudflare-native. Zero origin servers.

ai-agents cloudflare-workers code-quality devops devsecops production-readiness security semgrep typescript vibe-coding

Last synced: 17 Apr 2026

https://github.com/orislabsdev/gocore

Engineering-first HTTP backend library for Go focused on performance, security, and production-ready architecture.

backend go golang http jwt middleware performance production-ready rate-limiting rest-api security tls web-framework web-server

Last synced: 13 Apr 2026

https://github.com/oktadev/okta-jpaseto-example

Example of how to use JPaseto

example java paseto security tokens

Last synced: 13 Oct 2025

https://github.com/nicolascbv/amitrackable

This is a silly website build so study some legacy features.

babel javascript privacy react react-class-components security tracking typescript webpack

Last synced: 09 Apr 2026

https://github.com/naufalafif/agent-guard

Native macOS menu bar app that scans MCP servers and AI agent skills for security threats

ai-agents cisco macos mcp menu-bar security swift

Last synced: 02 Apr 2026

https://github.com/lex-lopez/e-commerce-app

This is real world, production ready app for e-commerce built with Spring Boot 3 + Maven, that implements proper auth with JWT, communication based on RESTful APIs and Database versioning using Flyway

cicd flyway github-actions jwt-authentication refresh-token restful-api security spring-security sprint-boot

Last synced: 17 Apr 2026

https://github.com/kentico-ericd/xperience-community-database-anonymizer

Anonymizes sensitive data in Kentico 13 and Xperience by Kentico databases

kentico kentico-xperience security xperience-by-kentico

Last synced: 11 Oct 2025

https://github.com/lazauk/azuresphere-mt3620

Demo of secure "Voting Machine", powered by Azure Sphere..

iot security

Last synced: 10 Oct 2025

https://github.com/hashgraph-online/codex-plugin-scanner

Security and best-practices scanner for Codex CLI plugins. Scores plugins 0-100.

cli codex codex-plugins mcp plugin-scanner python scanner security

Last synced: 06 Apr 2026

https://github.com/matedev01/joel_atecc608a

USB OTP Security System: A project combining the ESP32-S3 microcontroller, ATECC608A CryptoAuthentication device, Windows driver, and LibUSB for secure communication, OTP generation, and time synchronization. 🚀

driver esp32 esp32s3 firmware flash-encrypt hmac libusb otp secure-boot security usb visualgdb

Last synced: 17 Apr 2026

https://github.com/samuel-lucas6/clipboardclear

Clear your clipboard with one click.

clipboard clipboard-clear clipboard-management security

Last synced: 09 Oct 2025

https://github.com/goklab/guardvibe

Security MCP for vibe coding. 429 rules, 36 tools, CLI + doctor. Host security, auth coverage mapping, LLM-powered deep scan (IDOR/business logic), taint analysis, and CVE/supply-chain IOC detection for Next.js, Supabase, Clerk, Stripe, Prisma, Drizzle, Hono, GraphQL, AI SDK, MCP, and the AI-native stack.

ai-security claude clerk cursor cve drizzle hono mcp mcp-server nextjs owasp prisma prompt-injection sast security stripe supabase typescript vercel vibe-coding

Last synced: 07 Jun 2026

https://github.com/rohansx/vibeguard

Security Property Graph (SPG) oracle for AI coding agents.

ai-agents claude-code cursor devsecops golang mcp security static-analysis taint-analysis

Last synced: 03 Apr 2026

https://github.com/manavarya09/guardrail

The safety layer for AI-generated code. Scan and fix security issues, performance problems, and AI-specific anti-patterns. 22 rules. AST auto-fix. Zero config.

ai ai-safety ast auto-fix chatgpt code-quality code-scanner copilot developer-tools eslint-alternative linter security static-analysis typescript

Last synced: 17 Apr 2026

https://github.com/antitree/bsidesroc2017ctf

Temporary repo for BSidesROC 2017 CTF challenges.

ctf security tor

Last synced: 18 Jan 2026

https://github.com/iljasl/dormant

Dormant is a go.mod dependencies activity analyzing tool for your go applications. Find out which of your used dependencies are active, inactive or sporadically maintained.

analyzer golang security security-tools

Last synced: 14 Jan 2026

https://github.com/opendefinition/tuoda

Generic log importer for Graph databases

blueteam graphing graphs logs security threathunting

Last synced: 14 Jan 2026

https://github.com/banhao/mdatp-iocs-delete

DEL-MDATP-IOC.ps1 is used to delete the IOCs on Microsoft Defender ATP.

azure mdatp microsoft powershell powershell-script security

Last synced: 17 Apr 2026

https://github.com/thomas-vilte/mls-go

MLS Protocol (RFC 9420) implementation in Go. Secure group key exchange with forward secrecy and post-compromise security for E2EE messaging.

cryptography encryption end-to-end-encryption go golang messaging-layer-security mls rfc-9420 security

Last synced: 04 Apr 2026

https://github.com/withfabian/webtools

Web Tools, Information Gathering, CMS Detection

domain gatering hack hacking information security security-tools tools web website webtools

Last synced: 01 Mar 2025

https://github.com/sixarm/sixarm_ruby_secure_token

SixArm.com » Ruby » SecureToken class to generate a strong text string

gem ruby secure security token

Last synced: 23 Feb 2026

https://github.com/homeofe/supply-chain-guard

Open-source supply-chain security scanner for npm, PyPI, and VS Code extensions. Detects GlassWorm and similar malware campaigns.

cli elvatis github-action glassworm malware-detection npm scanner security supply-chain

Last synced: 08 May 2026

https://github.com/cdot65/device-certificate-report

A Python-based CLI tool to generate device certificate reports from PAN-OS devices.

certificates network paloaltonetworks panos reporting security

Last synced: 14 Jan 2026

https://github.com/dxrk777/dxrk-ai

🧠 Dxrk AI v1.0 — Ultra-Advanced AI Ecosystem. Self-healing, tamper-proof, universal AI connectivity. 27+ providers, AES-256 encryption, cloud brain, auto-update.

ai artificial-intelligence cloud-brain encryption golang llm multi-model ollama openai pentesting security self-healing

Last synced: 04 Apr 2026

https://github.com/ruedigervoigt/bote

A Python library to send email. Enforces encryption if not sending via localhost.

email email-sender python-email python-library security smtp ssl tls

Last synced: 14 Jan 2026

https://github.com/owlsome-official/cipherpayload

CipherPayload middleware for Fiber that use AES Algorithm for encrypt and decrypt payload in request and response body.

cipher encryption gofiber golang golang-library middleware payload-encryption security

Last synced: 23 Feb 2026

https://github.com/vineethkrishnan/vaultctl

Zero-knowledge password vault. Self-hosted, end-to-end encrypted, open source.

docker e2e-encryption golang open-source password-manager password-vault security self-hosted vault zero-knowledge

Last synced: 04 Jun 2026

https://github.com/shadowblack77/nestjs-auth-project

Repository with full auth project for base to build projects with authorization & authentcation

authentication authorization hbs mailer nestjs nodejs oatuh2 passportjs security typeorm typescript

Last synced: 18 Apr 2026

https://github.com/SEUNAKINTOLA/Whistle-Blower

This platform is dedicated to reporting unethical practices daily in organization either in government sectors or private Parastatals at no cost.

anonymity api human-rights json php security transparency whistle whistleblowing

Last synced: 11 Mar 2025

https://github.com/koeonyack/des

🔑Implement DES using C language.

c des security

Last synced: 22 Jun 2026

https://github.com/sjinks/roundcube_log_failed_logins

Logs failed login attempts to syslog in the format suitable for blocklist.de

brute-force bruteforce login security

Last synced: 18 Apr 2026

https://github.com/doctena-org/octorules-cloudflare

Cloudflare provider for octorules

cloudflare firewall iac octorules security waf yaml

Last synced: 18 Apr 2026

https://github.com/sjimenez44/azureroleassignmentauditor

Visualizes role assignments in an interactive network graph, helping security teams analyze access control structures.

azure dockerfile entraid security

Last synced: 18 Apr 2026

https://github.com/smaranjitghose/sightguardai

Capitalizing moondream's capabilities to build a CCTV frame-on-framer analyzer

computer-vision llm localllm moondream python security streamlit vlm

Last synced: 10 May 2026

https://github.com/pkparthk/secure-cloud

A secure cloud access backend system built with Python, featuring JWT authentication, MongoDB integration, AWS IAM role management, SSH gateway configuration, and multi-factor authentication (MFA) support.

aws cloud-access configuration fastapi iam jwt mfa mongodb python security ssh

Last synced: 18 Apr 2026

https://github.com/csaba79-coder/amigoscodejsonwebtokenjwt

JSON Web Token, Security, Authentication, Authorization

authentication authorization jsonwebtoken security

Last synced: 26 Mar 2025

https://github.com/john-breton/water

A security focused Internet measurement framework to map the threat landscape for users that require accessibility tools to access the Internet

internet-measurements madweb23 python research-paper security selenium-python wcag21 web-accessibility

Last synced: 19 Apr 2026

https://github.com/bklockly/shadowmeld

🕶️ 隐蔽Shellcode嵌入与反检测加载器生成框架 / Stealthy Payload Delivery Framework with Anti-EDR Capabilities

bypass-antivirus bypass-av cipher cryptography hacking hide-files image-steganography lsb-steganography security shellcode shellcode-loader

Last synced: 16 Mar 2025

https://github.com/zoracon/zoracon.github.io

My corner of the web. I also blog a bit.

security

Last synced: 10 Jan 2026

https://github.com/jawaracloud/bash-collections

This repository contains a collection of Bash scripts for various purposes. Feel free to explore and use these scripts as needed.

bash bash-script linux security shell terminal

Last synced: 20 Apr 2026

https://github.com/kurtpayne/skillscan-security

Security scanner for AI agent skills and MCP tool bundles — prompt injection, IOC matching, malware detection, ML classifier

ai-agent ai-security llm-security mcp prompt-injection security skill-scanner static-analysis

Last synced: 20 Apr 2026

https://github.com/nyxoraai/nyxora

A zero-trust, local-first AI execution framework for autonomous Web3 agents. Features OS-native keyring security, advanced DeFi automation, and Google Workspace integration.

ai-agent automation cryptocurrency defi docker local-first local-first-ai mcp nodejs nyxora openclaw react security web3 zero-trust

Last synced: 27 Jun 2026

https://github.com/nekrassov01/ignoresync

Your shadow repository for ignored files

aws cli git gitignore go security

Last synced: 20 Apr 2026

https://github.com/leeguooooo/swiftbar-warp-control

🚨 Fix Cloudflare WARP stuck on/force-enabled issue. Professional macOS menu bar tool for reliable WARP control when GUI fails. Password-free SwiftBar plugin.

automation cloudflare-vpn cloudflare-warp command-line force-disable macos macos-utility menu-bar plugin security swiftbar troubleshooting vpn warp-cli warp-control warp-stuck

Last synced: 20 Apr 2026

https://github.com/husinn-abd/vibeaudit

Local-first AI-aware repository security auditor for secrets, vulnerabilities, policy gates, and ISO evidence support.

devsecops iso27001 policy-as-code sbom secrets-scanning security vulnerability-scanner

Last synced: 05 Jun 2026

https://github.com/signaturebeef/leek

🥬 Leek is a CLI and .NET toolset for detecting breached or weak secrets such as passwords

api asp-net-core dotnet hash hibp seclists security security-audit security-tools

Last synced: 21 Apr 2026

https://github.com/hatmahat/go-rbac

Lightweight, framework-agnostic RBAC package for Go with context injection, in-memory caching, and GORM support.

authorization chi echo fiber gin golang middleware rbac security

Last synced: 21 Apr 2026

https://github.com/elastic/example-mcp-app-security

Reference MCP App for Elastic Security — interactive SOC dashboards inside Claude, Cursor, and other MCP hosts.

ai claude cursor elastic mcp model-context-protocol security soc

Last synced: 24 Apr 2026

https://github.com/colesmcintosh/vibe-security-ai

A professional command-line tool that leverages Claude 4 Sonnet to perform comprehensive security analysis on your code. Get detailed security reports with actionable recommendations to improve your code's security posture.

ai claude-4 security vibe-coding

Last synced: 12 Mar 2026

https://github.com/terraform-ibm-modules/terraform-ibm-monitoring-agent

Deploys an agent to monitor metrics and security data on an IBM Cloud Red Hat OpenShift Container Platform or Kubernetes cluster.

agent core-team ibm-cloud monitoring monitoring-agent observability scc security sysdig sysdig-agent terraform terraform-module workload-protection

Last synced: 23 Apr 2026

https://github.com/ernanej/natalmaissegura

como modo de solucionar e auxiliar a segurança natalense, o projeto Natal + Segura consiste em implementar duas plataformas, uma mais simples e voltada para dispositivos móveis e outra mais trabalhada, sendo um site responsivo.

natal-rn project security

Last synced: 08 Jan 2026

https://github.com/konstantinullrich/openvas2defectdojo

OpenVAS2DefectDojo exports all new OpenVAS Reports from one or multiple OpenVAS instances to the local system.

defect-dojo openvas-reports python3 security

Last synced: 06 Jun 2026

https://github.com/jeffmaley/awsssoreporting

Reports on Users/Group, Permission Sets, and Account Assignments

audit aws cloud-computing cloud-security cloud-security-audit iam secops security security-tools

Last synced: 14 Jan 2026

https://github.com/werdl/safile

A distributed server to access mission critical files. Cryptographically secure

encryption fileserver security server

Last synced: 24 Apr 2026

https://github.com/hugobatista/x86-asm-bmp-steganography

Sample x86-64 assembly program, demonstrating how to hide a message in a bitmap

assembly bitmap linux obfuscation security steganography

Last synced: 22 Jun 2026

https://github.com/0n1con3/the-antiipgrabber-blocklist

The AntiIP-Grabber Blocklist: A comprehensive and continually updated collection of IP addresses identified due to proven activities related to IP grabbing. This list assists in protecting your networks and systems from unwanted intrusions and potentially harmful activities by blocking access from these specific addresses.

adblocker adblocker-lists adguard cybersecurity docker firewall firewall-rules ip linux networking pihole safeguard security security-audit security-tools

Last synced: 05 Feb 2026

https://github.com/majikah/majik-key

Majik Key is a next-generation seed phrase account library for creating and managing mnemonic-based identities. It provides a post-quantum ready, high-security bridge between BIP39 mnemonics and the Majikah ecosystem.

bip39 crypto cryptography key keypairs majik-message mnemonic security seed-phrase

Last synced: 22 Jun 2026

https://github.com/Scetrov/void-eid

Void eID — EVE Frontier Tribe Management Portal based around open standards and technology, designed to unify products and services within the ecosystem.

access-management eve-frontier identity identity-management information-security joiner-mover-leaver security

Last synced: 30 May 2026

https://github.com/szgabsz91/oauth2-authorization-proxy-client

Client libraries for OAuth2 Authorization Proxy

angularjs facebook google oauth2 security vanillajs

Last synced: 27 May 2026

https://github.com/simplito/privmx-endpoint-kotlin

Kotlin wrappers for the native C++ library used by PrivMX to handle end-to-end (e2e) encryption.

communication encryption end-to-end-encryption kotlin kotlin-android kotlin-ios kotlin-jvm kotlin-multiplatform-library mobile privmx security

Last synced: 07 Jun 2026

https://github.com/goki602/clawguard

AI Agent Memory — Fewer prompts, smarter decisions. Remembers your trust decisions across Claude Code, Codex & MCP. Free & open source.

ai-agent ai-guardrails ai-memory ai-security claude-code codex confirmation-fatigue hooks mcp open-source pretooluse security typescript

Last synced: 25 May 2026

https://github.com/adegans/no-bot-registration

Prevent bots from creating accounts on your WordPress or ClassicPress website by blacklisting domains and usernames and present people with a human friendly security question.

account-management accounts classicpress classicpress-plugin login-security php security spam-prevention spam-protection wordpress wordpress-plugin wordpress-security

Last synced: 27 Apr 2026

https://github.com/0xtter/pentestingwebsiteauditchallenge

This project provides a comprehensive penetration testing audit, report, and fixed version of a website to improve site security. The report analyzes potential security risks and recommends actionable solutions. By identifying and addressing website vulnerabilities, this project helps ensure the safety and security of websites and their users.

audit pentesting security vulnerabilities

Last synced: 15 Jul 2026

https://github.com/robgrame/intune-device-actions

Serverless self-service Intune device action API (wipe, autopilot-register, bitlocker). Azure Functions (.NET 10, capability-plugin architecture) + Service Bus + mTLS client cert + Microsoft Graph. Includes Bicep IaC and PowerShell 5.1 client.

azure azure-functions bicep device-management dotnet dotnet10 entra-id infrastructure-as-code intune managed-identity mdm microsoft-graph microsoft-intune mtls powershell security serverless storage-queue

Last synced: 07 Jun 2026

https://github.com/wdrdres3qew5ts21/redhat-advance-cluster-security-guide

วิธีการใช้งาน Advance Cluster Security กับ Openshift และ Kubernetes และแนะนำ eBPF เบื้องต้น

kubernetes openshift security

Last synced: 24 Jun 2026

https://github.com/bylickilabs/hashchecker

HashChecker ist ein kompaktes, benutzerfreundliches Windows-Tool zur schnellen Integritätsprüfung von Dateien per Hashwert.

checksum csharp desktop-app dotnet file-integrity hash hash-checker integrity-checker md5 opensource security sha256 tools windows winforms

Last synced: 28 Apr 2026

https://github.com/mdsakibanwar/gosonar

Binary symbolic execution for detecting uncontrolled recursion in Go binaries. Published at IEEE S&P 2025.

angr go golang security security-tools symbolic-execution

Last synced: 29 Apr 2026

https://github.com/zd87pl/slm-vault

Privacy-first AI personal data manager. A local trusted agent that external AIs command via MCP — they never see your documents. Encrypted storage, local RAG, activity logging, and per-agent permissions.

agentic-ai ai apple-silicon encryption llm local-first mcp mlx model-context-protocol personal-data privacy python rag security

Last synced: 13 Apr 2026

https://github.com/djvirus9/awesome-devsecops-mastery-2026

🛡️ A curated, actionable checklist for securing CI/CD pipelines and Kubernetes clusters in 2026.

automation awesome checklist cybersecurity devsecops kubernetes security techniques

Last synced: 12 Mar 2026

https://github.com/sylphxai/typescript

Strict, AI-optimized TypeScript monorepo: ESLint Flat Configs, tsconfig, Prettier, and guidelines for modern TypeScript projects.

ai eslint eslint-config flat-config guidelines monorepo prettier react react-native security sonarjs strict styleguide sylph sylphlab tsconfig turborepo typescript unicorn vue

Last synced: 18 May 2026

https://github.com/shiroonigami23-ui/aegisos

AegisOS_security_first_lightweight_customizable_open_source_operating_system

customization kernel lightweight open-source operating-system osdev privacy security systems-programming

Last synced: 29 Apr 2026

https://github.com/gabrielluizbh/laps

Script de configuração do LAPS.

laps laps-password security seguranca windows windows-server

Last synced: 29 Apr 2026

https://github.com/infineon/mtb-example-psoc6-security

This is a minimal starter dual-CPU security application template for PSoC™ 62/63 MCU devices. This code example is meant to be a companion to the AN221111 – PSoC™ 6 MCU: Designing a secured system application note. It demonstrates the following features to create a secured system as explained in the application note.

cy8ckit-062-ble cy8ckit-062-wifi-bt cy8ckit-062s2-43012 cy8cproto-062-4343w cy8cproto-062s3-4343w cy8cproto-063-ble security

Last synced: 25 Jun 2025

https://github.com/frnn4268/k8s_cloud-native-pg_trivy-operator

This repository contains auxiliary tooling for managing PostgreSQL clusters on Kubernetes, including CloudNativePG, Trivy Operator, and Cert Manager. It simplifies deployment, operation, and security scanning of containerized applications, providing examples and automation through Taskfiles.

automation backup cert-manager cloudnative devops helm kubernetes postgresql security trivy

Last synced: 29 Apr 2026

https://github.com/Perufitlife/convex-security

Anonymously audit a Convex backend for public queries/mutations reachable without auth — proves each leak live via the public HTTP API. Zero-dep Node CLI, MIT.

access-control ai-agents auditor baas convex data-exposure devsecops security security-audit serverless

Last synced: 25 Jun 2026