An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/sozercan/guac-ai-mole

🥑 Inspect and understand an organization's software supply chain that enables stakeholders to make actionable decisions about software supply chain security

ai chatgpt gpt-4 guac openai sbom secure-supply-chain security security-tools streamlit supply-chain-security

Last synced: 28 Sep 2025

https://github.com/rasoolsomji/django-security

Django is great! Here are some ways to make it safer

audit csrf cybersecurity django nginx owasp pentest python security vulnerabilities xss

Last synced: 14 Mar 2025

https://github.com/sitebatch/waffle-go

Waffle is a library for integrating a Web Application Firewall (WAF) into Go applications.

golang security waf

Last synced: 12 Jan 2026

https://github.com/shellrow/nscan

Network scan tool for host and service discovery. Written in Rust.

cli-app cross-platform network rust scanner security

Last synced: 13 Apr 2025

https://github.com/ctxz/mkauthdocs

A tool made to implement simple authentication on top of mkdocs builds.

auth authentication credentials login mkdocs security

Last synced: 21 Mar 2025

https://github.com/tersesystems/ocaps

Object capability (ocap) tools and macros for Scala.

access capabilities capability ocap scala security

Last synced: 08 Mar 2026

https://github.com/melonattacker/threat-thinker

AI-powered threat modeling that turns architecture diagrams into actionable risks

architecture diagrams python risk-analytics security security-tools threat-analysis threat-modelling

Last synced: 02 Apr 2026

https://github.com/jpcertcc/toolanalysisresultsheet_jp

分析ツール結果シート

security

Last synced: 09 Apr 2025

https://github.com/veinar/envcloak

A secure and easy-to-use tool for managing sensitive data with built-in encryption, decryption, and key management. Protect your secrets during development, testing, and deployment with CLI command + Python library support.

cicd cicd-pipeline cli-tool decryption devops encryption encryption-decryption env environment-variables python-library secret-management secret-sharing secrets security sensitive-data-security tool tooling tools validation

Last synced: 11 Sep 2025

https://github.com/hackeralert/paircrypt

A simple tool to securely communicate with others.

encryption password privacy security security-tools tweetnacl-js x25519 xsalsa20poly1305

Last synced: 10 Apr 2025

https://github.com/airlock/microgateway

Artifacts for Airlock Microgateway, a Kubernetes native WAAP (Web Application and API Protection) solution to protect microservices.

airlock cilium ergon gateway-api istio k8s kubernetes kubernetes-operator microgateway openshift security waap waf web-application-security

Last synced: 13 May 2026

https://github.com/guiofsaints/backup-anything

Scripts to create a backup of anything.

backup bash bucket database mongodb mysql postgresql s3 script security tools

Last synced: 21 Nov 2025

https://github.com/cipherstash/encrypt-query-language

Index and search encrypted data in PostgreSQL with SQL

encryption encryption-in-use postgres postgresql security

Last synced: 09 Apr 2025

https://github.com/marcosimioni/omigood

OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research team, specifically CVE-2021-38647.

cve-2021-38647 omigod omigood security

Last synced: 12 May 2025

https://github.com/mikaelvesavuori/better-apis-workshop

Workshop and demo for improving API quality, stability, and observability.

apis aws demo learning observability quality security serverless stability workshop

Last synced: 21 Mar 2025

https://github.com/fphammerle/docker-onion-service

hidden tor .onion service 🐳

docker network onion-service podman security tor

Last synced: 04 May 2025

https://github.com/FrozenAssassine/EasePass

A powerful but simple, password manager that stores all your passwords locally and offline. Written in C# WinUI3

2fa-client 2factor app csharp password password-manager passwordmanager security totp windows winui3

Last synced: 31 Mar 2025

https://github.com/joshuaquek/quickencrypt

Easily generate RSA Public-Private Keypairs and use them for secure asymmetric one-way encryption and decryption! - npmjs.com/package/quick-encrypt

asymmetric-cryptography cryptography decrypt decryption encrypt encryption javascript nodejs npm-package rsa security

Last synced: 05 May 2025

https://github.com/yallxe/hogg

Common vulnerability scanning on steroids ☄️

dns exploit network proxy rust rust-lang scanner secrets security sniffer vulnerabilities webscanner

Last synced: 19 Jul 2025

https://github.com/vincd/savoir

Savoir is a tool to perform tasks during internal security assessment

kerberos pentesting security windows

Last synced: 20 Jan 2026

https://github.com/adrianlshaw/lightverifier

Simple and scalable Linux tools for verifying TPM-based remote attestations 🔬⚖️🔐⛓📏📜

attestation hacktoberfest ima security security-audit tcg tpm tpm-quote

Last synced: 01 Apr 2025

https://github.com/aydinnyunus/cve-2024-24576-exploit

CVE-2024-24576 Proof of Concept

1-day exploit rust security

Last synced: 29 Apr 2025

https://github.com/advanced-security/probot-security-alerts

Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts

ghas nodejs probot sample security security-alerts typescript

Last synced: 23 Oct 2025

https://github.com/checkmarx/ast-vscode-extension

The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

checkmarx checkmarx-ast security vscode-extension

Last synced: 02 Apr 2026

https://github.com/prontolabs/pronto-brakeman

Pronto runner for Brakeman, security vulnerability scanner for RoR

analyzer brakeman pronto pronto-runner ruby-on-rails security security-scanner

Last synced: 24 Oct 2025

https://github.com/postgrespro/libblobstamper

Framework for Structure Aware Fuzzing. Allows to build own stamps that would convert pulp-data that came from fuzzer to data with structure you need

fuzzing sdl security structure-aware-fuzzing

Last synced: 28 Feb 2026

https://github.com/syntatis/wp-feature-flipper

🚥 Disable Comments, Gutenberg, Emojis, and other features you don't need in WordPress®

comments emojis gutenberg media-library rss-feed security wordpress-plugin wp-admin xmlrpc

Last synced: 10 Oct 2025

https://github.com/celenityy/grapheneos-settings

My recommendations for the ultimate GrapheneOS Configuration :)

android anti-tracking grapheneos hardened hardening privacy privacy-protection security tracking

Last synced: 08 Jun 2026

https://github.com/mondoohq/samples

Security Scanning Samples with cnspec, cnquery, and Mondoo Platform

hacking protect samples security security-as-code

Last synced: 19 Mar 2026

https://github.com/jakub-przepiora/ps-scan-prestashop-scanner

This tool serves as an initial version scanner specifically designed for PrestaShop, a popular e-commerce platform. The primary purpose of the scanner is to analyze PrestaShop instances for various aspects, such as module information, version details, and potential security vulnerabilities.

cve prestashop security security-tools

Last synced: 24 Oct 2025

https://github.com/rennf93/two-fast-auth

FastAPI middleware that provides seamless two-factor authentication implementation. It integrates with FastAPI to offer robust 2FA protection for your application routes.

2fa fastapi middleware python security

Last synced: 14 Apr 2025

https://github.com/safedep/gryph

The AI coding agent audit trail tool

ai-agents ai-developer-tools claude-code gemini-cli security

Last synced: 24 Feb 2026

https://github.com/m3ssap0/spring-break_cve-2017-8046

This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).

cve-2017-8046 exploit security security-tools spring-break spring-data-rest vulnerability vulnerability-scanners

Last synced: 01 Mar 2026

https://github.com/vita-group/random-shuffling-backdoordetect

[NeurIPS 2022] "Randomized Channel Shuffling: Minimal-Overhead Backdoor Attack Detection without Clean Datasets" by Ruisi Cai*, Zhenyu Zhang*, Tianlong Chen, Xiaohan Chen, Zhangyang Wang

backdoor-attacks deep-learning python pytorch security trojan

Last synced: 19 Apr 2025

https://github.com/mindpatch/pmg

Extract parameters/paths from urls

bugbounty bugbounty-tool bughunting python regex security

Last synced: 12 Jul 2025

https://github.com/neuralegion/sectester-js-demo

This is a demo project for the SecTester JS SDK framework, with some installation and usage examples.

appsec brightsec demo e2e jest nestjs pentesting qa security test testing typescript

Last synced: 05 Apr 2025

https://github.com/rapidlua/sandals

A lightweight process isolation tool, requiring absolutely no privileges to run

cgroups-v2 chroot linux linux-namespaces process-isolation sandbox seccomp-bpf security

Last synced: 30 Mar 2025

https://github.com/inspexco/scstg

Smart Contract Security Testing Guide (SCSTG)

best-practices blockchain defi guide security smart-contracts solidity

Last synced: 14 Aug 2025

https://github.com/bbva/gitsec

gitsec: GIT Secret Discovery

dvcs secrets security

Last synced: 15 Aug 2025

https://github.com/ait-testbed/attackmate

AttackMate is an attack orchestration tool that executes full attack-chains based on playbooks.

api attack automation automation-framework cybersecurity exploit metasploit orchestration pentest python redteam rootkit security sliver testbed training

Last synced: 22 Apr 2025

https://github.com/3nock/ote-templates

Community curated list of templates for the OSINT template engine.

attack-surfaces bugbounty fingerprinting osint recon security templates

Last synced: 09 Feb 2026

https://github.com/owtf/http-request-translator

HTTP Request Translator (hrt) translates raw HTTP requests to different scripts (bash, python, etc.)

owasp owtf pentesting python security

Last synced: 17 Mar 2026

https://github.com/jenkinsci/authorize-project-plugin

Run a job with specified authorization

adopt-this-plugin jenkins-plugin security

Last synced: 11 May 2026

https://gitlab.com/i2pplus/I2P.Plus

I2P+ is a soft-fork of the Java I2P Anonymizing Network Layer. License: AGPL v.3 https://i2pplus.github.io/

anonymity privacy security

Last synced: 13 Jun 2025

https://github.com/nccgroup/yocto-whitepaper-examples

Example code included in the "Improving Your Embedded Linux Security Posture with Yocto" whitepaper

linux openembedded security yocto

Last synced: 26 Apr 2025

https://github.com/lahirulhr/nova-lock-screen

Simple lock screen feature to Laravel nova dashboard

laravel lock nova php security

Last synced: 11 Jun 2025

https://github.com/brunocampos01/encrypt-file

:lock: :page_with_curl: CLI to encrypt or decrypt files with only one command.

aes aes-encryption aes-gcm decrypt decryption encrypt encryption encryption-decryption pbkdf2 pip python security security-tools sha256

Last synced: 01 Sep 2025

https://github.com/tijme/binaries

A mirror of several precompiled standalone red-teaming tools.

binaries cyber hacking mirror precompiled redteam security standalone tools

Last synced: 25 Apr 2025

https://github.com/azureanimations/azureanimations.github.io

Azure Animations, where we make hard-to-understand Azure cloud concepts easier and more fun to learn!

ai azure copilot devops microsoft openai security

Last synced: 30 Jun 2025

https://github.com/avast/authenticode-parser

Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.

cryptography security

Last synced: 07 Apr 2025

https://github.com/zaproxy/action-af

A GitHub Action for running ZAP Automation Framework plans

actions dast devsecops github-actions security

Last synced: 30 Jun 2025

https://github.com/vatshayan/final-year-project-steganography

Steganography is the technique of hiding secret data within an ordinary, non-secret, file or message in order to avoid detection; the secret data is then extracted at its destination.

btech-project capstone-project cipher college-project cryptography cryptography-project final-project final-projects final-year-project finalyearproject mtech-project project project-report research-paper-project security semester-project steganography university-project university-projects

Last synced: 28 Oct 2025

https://github.com/dl-solarity/audits

Distributed Lab public Solidity audits

auditing security solarity solidity

Last synced: 31 Oct 2025

https://github.com/valpackett/pysectools

A small Python library that contains various security things

python security unix

Last synced: 22 Apr 2025

https://github.com/k--chow/solana-security

A compilation of solana security resources.

auditing ethereum security smart solana

Last synced: 11 Mar 2025

https://github.com/syss-research/icebreaker-glitcher

Simple voltage glitcher implementation for the iCEBreaker FPGA board

fpga glitching ice40 ice40up5k icebreaker it-security security security-tools security-vulnerability tool

Last synced: 04 Sep 2025

https://github.com/thomasmerz/pihole-wireguard-knowhow

My Setup for Pi-hole at home and in the cloud to be used with WireGuard for the whole family.

anti-ads anti-malware anti-spyware anti-surveillance anti-tracking dns privacy security vpn

Last synced: 01 Apr 2025

https://github.com/valtteril/go-implant

A flexible cross-platform post-exploitation agent written in Go with basic functionalities

backdoor payload pentest post-exploitation rat redteam remote-access remote-admin-tool reverse-shell security

Last synced: 14 Jan 2026

https://github.com/sighupio/trivy-offline

Trivy offline builder. Fits perfectly in your CI System

cicd drone hacktoberfest quay sdlc security trivy

Last synced: 11 Mar 2025

https://github.com/openagentidentityprotocol/agentidentityprotocol

Agent Identity Protocol - Zero-trust security layer for AI agents. Policy enforcement proxy for MCP with Human-in-the-Loop approval, DLP scanning, and audit logging.

agent-identity-protocol ai-agents ai-safety cursor-ide dlp golang human-in-the-loop llm mcp model-context-protocol policy-enforcement security zero-trust

Last synced: 29 May 2026

https://github.com/sassman/srp6-rs

A safe implementation of the secure remote password authentication and key-exchange protocol (SRP and SRP6a)

authentication cryptography pki protocol rust secure-remote-password security srp srp-6a

Last synced: 19 Apr 2026

https://github.com/vmagamedov/security-framework

Step-by-step personal cybersecurity guide

2fa fido2 security yubikey

Last synced: 18 Jan 2026

https://github.com/wookey-project/manifest

The WooKey project manifest repository, use repo init -u https://github.com/wookey-project/manifest.git

embedded iot security wookey

Last synced: 22 Feb 2026

https://github.com/miathedev/kubeauth

A kubernetes multi type authentication provider using webhook token auth

auth authentication authorization identity k8s kubernetes ldap security

Last synced: 09 Apr 2025

https://github.com/rmbolger/pwnedpasscheck

Check passwords and hashes against the haveibeenpwned.com Pwned Passwords API using PowerShell

haveibeenpwned hibp infosec powershell powershell-module security

Last synced: 04 Jul 2025

https://github.com/paulveillard/cybersecurity-ssrf

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

cybersecurity mitigation remediation security security-tools server-side server-side-request-forgery ssrf vulnerabilities vulnerability vulnerability-assessment vulnerability-detection vulnerability-management

Last synced: 08 Oct 2025

https://github.com/dev-sec/chef-jenkins-hardening

⛔ DEPRECATED: A secure jenkins installation

chef chef-cookbook devops hardening jenkins security

Last synced: 01 Apr 2025

https://github.com/offa/keygen

KeyGen is a generator for keys and passwords.

c c11 cmake key-generator openssl password-generator security

Last synced: 14 May 2025

https://github.com/anotherhadi/github-recon

Retrieves and aggregates public OSINT data about a GitHub user using Go and the GitHub API. Finds hidden emails in commit history, previous usernames, friends, other GitHub accounts, and more.

cybersecurity github osint recon security

Last synced: 30 Aug 2025

https://github.com/CharlesAverill/DEFFS

Distributed, Encrypted, Fractured File System - A custom distributed file system written in C with FUSE

filesystem fuse linux security

Last synced: 06 Mar 2025

https://github.com/ntkme/security-trust-settings-tools

:lock: OS X Keychain Trust Settings Tools.

certificate macos security

Last synced: 28 Jul 2025

https://github.com/rsc-dev/ishtar

.NET applications hacking toolset

c-sharp dll-injection hacking security

Last synced: 23 Jul 2025