An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/everdrone/genpasswd2

iOS Style Strong Password Generator

cli cli-app ios password password-generator python3 safari secure security

Last synced: 14 Jan 2026

https://github.com/jon-becker/research

This repository contains research papers & studies that I have worked on or am currently working on.

blockchain erc ethereum nft research security security-audit solidity

Last synced: 25 Mar 2025

https://github.com/ozbillwang/keycloak-compose

Run keycloak and keycloak cluster with docker compose - Up and Running in Seconds

authentication devops docker docker-compose keycloak keycloak-cluster security

Last synced: 25 Apr 2025

https://github.com/rodnt/portswiggerlabs

Solutions from @PortSwigger labs

infosec portswigger portswigger-labs security websecurity

Last synced: 25 Jul 2025

https://github.com/nowsecure/nowsecure-sbom-action

Generate a Mobile SBOM for an application and submit to the Dependency submission API

action analysis dependabot frida nowsecure security security-tools

Last synced: 09 Apr 2025

https://github.com/tikajhq/passwrd.in

A secure & simple password generator, that makes life easy.

encryption hash password password-generator passwrd security security-tools sys-admin

Last synced: 27 Feb 2025

https://github.com/Archetypum/theSuffocater

theSuffocater is an extensible module manager/collection on UNIX admin scripts that allows you to quickly harden your server and deploy services in few clicks.

bash bsd cybersecurity cybersecurity-tools foss gnu gnu-linux linux python python3 security security-automation security-tools server server-side shell unix

Last synced: 24 Mar 2025

https://github.com/unlock-security/wshell

A handy interactive shell through {code,command,template} injection

ctf-tools penetration-testing penetration-testing-tools rce security security-tools shell webshell

Last synced: 18 Jan 2026

https://github.com/andrew-tsegaye/password_generator

A simple password generator app is a helpful tool for anyone who wants to improve the security of their online accounts and protect their sensitive information from potential breaches.

css3 html5 javascript password-generator security

Last synced: 28 Jul 2025

https://github.com/clj-holmes/clj-holmes-rules

Open source rules used by clj-holmes.

clojure security yaml

Last synced: 03 Jul 2026

https://github.com/existenznl/permcheck

PermCheck is a little tool that checks if the files in a PHP project have the executable bit set properly.

executable executable-file php security security-tools security-vulnerability

Last synced: 14 Apr 2025

https://github.com/krishpranav/sshpot

A simple ssh honey pot, fake ssh server that lets anyone to connect and monitor their activty

go golang honeypot security security-tools ssh

Last synced: 14 Apr 2025

https://github.com/madmegsox1/python-bot-net-script

This is educational purposes ONLY

attack botnet ddos ddos-attacks ping python security

Last synced: 07 Apr 2025

https://github.com/fusion/crystalvault

A zero-knowledge server to store and share secrets: credentials, keys, etc.

browser crystal javascript pgp secret-management secrets security vault zero-knowledge

Last synced: 14 Apr 2025

https://github.com/ryru/hackingexposed

Kurs Hacking Exposed an Juventus Technikerschule HF

education hacking security websecurity

Last synced: 28 Apr 2025

https://github.com/VolkanSah/Implementing-AI-Systems-Whitepaper

This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.

ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers

Last synced: 12 May 2025

https://github.com/thecalcaholic/bash-utils

Various shell script utilities I've come to write over the years to make life easier

bash csv dyndns gcp gsutil inotify iperf3 keepass-mounter nautilus networking pulseaudio security utility

Last synced: 15 May 2025

https://github.com/webinarium/symfony-lazysec

Symfony library with a bunch of security related features.

php security symfony

Last synced: 11 Jun 2025

https://github.com/controlplaneio/sandbox-probe

Agentic sandbox enumeration: find security issues, and seed escape automation.

agentic-ai penetration-testing security

Last synced: 27 May 2026

https://github.com/k4yt3x/ssh_config

K4YT3X's Hardened OpenSSH Client Configuration

hardening linux openssh security ssh

Last synced: 29 Oct 2025

https://github.com/alphaville/safemsg

SafeMessage - Secure web-based message exchange system

encryption javascript message-exchange secure-by-default security

Last synced: 10 Apr 2025

https://github.com/kuntoaji/enkrip

encrypt & decrypt Active Record attributes with Message Encryptor

activemodel activerecord activesupport decryption encryption gem message-encryptor ruby ruby-gem ruby-on-rails security

Last synced: 21 Jun 2025

https://github.com/theAkito/userdef

A more advanced adduser for your Alpine based Docker images.

alpine docker linux musl permissions security

Last synced: 21 Mar 2025

https://github.com/zeyu-li/tryhackme

Hacker Man 👨‍💻

hacking security tryhackme vulnversity writeups

Last synced: 19 Mar 2026

https://github.com/ventz/docker-dns-over-https

Docker Hub ventz/dns-over-https - DNS (tcp+udp 53) to CloudFlare and Google's HTTPS APIs

api dns dns-over-https https proxy security

Last synced: 16 Sep 2025

https://github.com/issif/falco-rules-explorer

A dashboard to explore Falco Rules

falco security

Last synced: 07 Mar 2026

https://github.com/denis-g/firefox-user.js

🦊 Firefox user.js – based on arkenfox/user.js with additional UI fixes.

firefox firefox-css firefoxcss ghacks mozilla mozilla-firefox privacy security settings userchrome userchromecss userjs

Last synced: 12 Apr 2025

https://github.com/tomiok/vaultik

Vaultik is a cloud agnostic secret manager that helps developers to create, read, update and delete variables and easily export to a remote location or any cloud. Avoid using environment variables and these are fully encrypted.

cloud cloud-computing cobra encryption environment-variables go golang secret secret-management secrets secrets-management secure secure-storage security security-tools

Last synced: 28 Oct 2025

https://github.com/psecio/rift

A vulnerable application for teaching the basics of web application security

application security teaching vulnerability

Last synced: 11 Apr 2025

https://github.com/connorjburton/senvf

A secure & sensible replacement for process.env

javascript nodejs process-env security supply-chain

Last synced: 10 Jul 2025

https://github.com/echo-devim/pyjacktrick

Python module hijacking POC

code-execution hijacking python security

Last synced: 27 Mar 2025

https://github.com/pforret/bumpkeys

Upgrade your SSH keys for better security

bash bashew crypto ecdsa ed25519 rsa security security-audit ssh ssh-key

Last synced: 10 Apr 2025

https://github.com/apetenchea/earl

Evaluate Application Risk Level

android malware-detection security tensorflow

Last synced: 14 May 2025

https://github.com/dominicbreuker/goncat

netcat-like CLI tool with advanced features for bind/reverse shells

bind-shell golang offsensive-security pentesting port-forwarding pty reverse-shell security tunneling

Last synced: 11 Apr 2025

https://github.com/tspascoal/dependabot-alerts-helper

A set of (simple) scripts to help manage dependabot alerts

dependabot scripts-collection security

Last synced: 07 May 2025

https://github.com/actions-rust-lang/audit

Audit Rust Dependencies using the RustSec Advisory DB

cargo-audit ci github-actions hacktoberfest rust rust-lang rustsec security

Last synced: 10 Apr 2025

https://github.com/badisi/auth-js

🛡️ Authentication and authorization support for web based desktop and mobile applications

angular auth authentication authn authorization capacitor cordova hybrid identity ionic mobile oauth oauth2 oidc openid openidconnect security web

Last synced: 12 Apr 2025

https://github.com/advanced-security/demo-java

GitHub Advanced Security scanning tutorial repository for Java

advanced-security demo devsecops example security static-analysis

Last synced: 12 Apr 2025

https://github.com/josehelps/blackcert

Blackcert monitors Certificate Transparency Logs for a keyword. Blackcert collects any certificate changes for this keyword and also checks if any domain changes with that keyword look like a phishing domain.

certificate monitoring security

Last synced: 14 Apr 2025

https://github.com/mh37/Argos

A passive WiFi tracking and profiling based on probe request frames.

linux pentesting probe-requests python reconnaissance security sniffing tracking wifi wireless

Last synced: 23 Jul 2025

https://github.com/cedricbonhomme/ip-link

Visualizing the relationships between different IP from network traffic capture.

circos network-traffic-capture pcap python security visual-analysis visualisation

Last synced: 14 Apr 2025

https://github.com/brndnmtthws/protect-yourself

A guide on how to protect your digital assets

digital-assets encryption phone privacy security yubikey

Last synced: 08 Mar 2026

https://github.com/firesphere/silverstripe-haveibeenpwnd

Check user passwords and emails against the HaveIBeenPwnd database

hacktoberfest haveibeenpwned password security silverstripe silverstripe-4 silverstripe-module

Last synced: 07 Oct 2025

https://github.com/JannisHoch/copro

(ML) model for computing conflict risk from climate, environmental, and societal drivers.

climate conflict environment projection risk security

Last synced: 20 Jul 2025

https://github.com/turbot/steampipe-mod-terraform-azure-compliance

Run compliance and security controls to detect Terraform Azure resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

azure compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 22 Apr 2025

https://github.com/geritol/write-guard

Github Action to enforce file level write access for monorepos

access-control github-actions monorepos security

Last synced: 14 Jan 2026

https://github.com/agrim123/gatekeeper

Authentication and authorization oriented tool allowing users to ssh to a machine without giving them access to private keys.

bastion devops golang security ssh ssh-server

Last synced: 12 Mar 2026

https://github.com/listendev/lstn

A CLI tool to analyze the behavior of your dependencies using listen.dev

behavioral-analysis dependencies npm o11y security software-supply-chain-security

Last synced: 05 Sep 2025

https://github.com/qiwi/masker

Composite data masking utility

security

Last synced: 27 Apr 2025

https://github.com/cx330blake/zype

ZYPE: Your Payload Encryptor. MSFvenom shellcode got detected? ZYPE encrypt and obfuscate the shellcode for you!

cybersecurity encryption hacking hacking-tools malware malware-analysis malware-research obfuscation red-team security shellcode zig

Last synced: 14 May 2026

https://github.com/dbus2/zbus_polkit

PolicyKit zbus proxy

policykit security unix zbus

Last synced: 07 Oct 2025

https://github.com/pm6422/luix-passport

This project provides you a standard auth2 server and client configuration powered by Spring Boot 3 with the ability to authenticate login and using PostgreSQL DB as datastore.

java oauth2 security spring spring-boot

Last synced: 17 Jan 2026

https://github.com/mikkoparkkola/nowifi

No WiFi? Now WiFi. One command. 27 techniques. Bypass any captive portal.

bypass captive-portal cli go golang hacking linux macos network-security penetration-testing security wifi wifi-hacking

Last synced: 31 May 2026

https://github.com/lockerpm/maily

A privacy-first email solution that provides an email alias @maily.org to hide the original email address when using the internet

aliases email-alias email-privacy email-protection email-security end-to-end-encryption locker password-manager private-relay security

Last synced: 06 Oct 2025

https://github.com/plume-org/rocket_csrf

Rocket fairing for automatic csrf protection

csrf fairing rocket rust security web

Last synced: 13 May 2025

https://github.com/maulingmonkey/firehazard

Unopinionated low level API bindings focused on soundness, safety, and stronger types over raw FFI.

rust sandbox sandboxing security win32 windows

Last synced: 30 Aug 2025

https://github.com/arcxteam/na0ris-node

Naoris Protocol is the world's first Decentralized Security Layer designed for system and data reliability across Web2 & Web3 architecture

ai cyber-security depin naoris naoris-network post-quantum security web3

Last synced: 15 Apr 2025

https://github.com/dye-tech/gatekey

GateKey is a zero-trust VPN solution that wraps OpenVPN. Users authenticate via their company's identity provider (Okta, Azure AD, etc.) and get short-lived VPN credentials automatically. No passwords to remember, no certificates to manage.

helm identity-management kubernetes oidc openvpn security self-hosted sso vpn wireguard zero-trust

Last synced: 30 May 2026

https://github.com/spiderpig86/blog

:thought_balloon: Maybe some extraterrestrial will read this someday.

blog blog-theme frontend gatsby security software-engineering tech

Last synced: 30 Aug 2025

https://github.com/hexydec/torque

A Wordpress plugin to optimise the transport of your website to the client. Reduce the load on your server and make your Wordpress website fly!

minification optimization performance security wordpress

Last synced: 18 Nov 2025

https://github.com/brucewind/cryptoppinndk

A repo for hiding encrypt algorithm working with CryptoPP.

android crypto cryptopp jni jni-android ndk security

Last synced: 15 Apr 2025

https://github.com/ancat/equation

Equation exposes a minimal environment to allow safe execution of Ruby code represented via a custom expression language.

expression-language ruby security

Last synced: 05 Oct 2025

https://github.com/antoinerondelet/uxss-vulnerabilities-research

Some research on UXSS vulnerabilities in web browsers

browser security uxss-vulnerabilities web web-security

Last synced: 09 Jul 2025

https://github.com/mawg0ud/invismalware

A Malware Evasion Technique, shellcode generation, syntax modification, anti-dynamic analysis & PE header modification.

antivirus cybersecurity dynamic-analysis exploit infosec malware payload research security shellcode static-analysis threat

Last synced: 16 Oct 2025

https://github.com/anatol/tang.go

Pure Golang implementation of server-side ECMR exchange functionality (Tang server)

clevis security tang

Last synced: 06 Jul 2025

https://github.com/canack/bad-mcp

10 intentionally malicious MCP servers that exploit protocol features to attack AI clients. For security research and defense testing.

ai-security llm-security mcp mcp-server model-context-protocol red-team rug-pull security security-research tool-posioning

Last synced: 08 Jul 2026

https://github.com/cipherstash/protectjs

Encrypt and protect data using industry standard algorithms, field level encryption, a unique data key per record, bulk encryption operations, and decryption level identity verification. Powered by CipherStash Encryption.

data data-security encryption javascript postgres postgresql security typescript

Last synced: 29 Oct 2025

https://github.com/manavalan2517/login-and-register-system-in-python

This Python script is a comprehensive solution for managing user authentication, which includes both registration and login functionalities. It utilizes a local JSON file to store user credentials securely.

authentication interactive json py3 python realtime regex security terminal user-management

Last synced: 04 Jul 2025

https://github.com/olivierlacan/opsec

Operational Security for everyone

educational operational opsec security

Last synced: 12 Feb 2026

https://github.com/edvincodes/instagramunfollowers

Instagram Unfollowers 2026: Free Script to see who isn't following you back. Safe, Open Source & No Login required. Works on Mobile & Desktop.

automation instagram instagram-follower instagram-followers instagram-following instagram-tool instagram-unfollowers javascript open-source privacy script security unfollow unfollowers

Last synced: 02 Apr 2026

https://github.com/contextforge-org/cpex

A composable enforcement framework for AI agents and toolchains

a2a agents ai extensibility framework hooks library llm mcp plugins safety security tools

Last synced: 27 Jun 2026

https://github.com/simeononsecurity/apache-web-server-hardening

An collection of example configurations and scripts to aid administrators in configuring a hardened Apache Web Server

apache encryption hardening security ssl-certificates

Last synced: 01 Mar 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/grcengineering/daily-findings

Daily Findings is a desktop GRC learning app with guided sessions, quizzes, progress tracking, and curated GRC news.

compliance desktop-app governance grc nextjs risk-management security tauri training

Last synced: 06 Mar 2026

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/nexusone23/noid-privacy-linux

🛡️ Privacy & Security Audit for Linux Desktops — 300+ checks, 42 sections, zero dependencies, pure Bash. AI-powered fixes with --ai flag.

ai-tools audit bash cybersecurity debian desktop-security fedora hardening linux linux-desktop linux-security noid-privacy privacy privacy-audit privacy-tools security security-audit shell-script ubuntu zero-dependencies

Last synced: 31 May 2026

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026