An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/jwilk/getenvy

LD_PRELOAD library to snoop on getenv() calls

security

Last synced: 12 Apr 2025

https://github.com/bocaletto-luca/super-info

Super Info is a comprehensive, text-based utility for system administrators on Ubuntu and other Debian-based distributions. It provides essential security, monitoring and system checks via a custom ASCII interface with colors (when supported). By Bocaletto Luca

bash cli debian linux security shell-script sysadmin system-info system-monitoring ubuntu

Last synced: 18 Jun 2025

https://github.com/Octogonapus/RegistryScanner

Scans Julia registries for possible malicious behavior and misconfigurations.

julia security

Last synced: 06 Apr 2026

https://github.com/demimarie/sliprock

A secure local interprocess communication library.

interprocess-communication secure-by-default security sockets unix windows

Last synced: 18 Jun 2025

https://github.com/sheepreaper/yk-csr-generator

YubiKey CSR Generator: A robust CLI tool that enables users to produce Certificate Signing Requests (CSRs) leveraging YubiKey devices. Comes with enhanced attributes configuration, broad hash algorithm support, and versatile output options. Aimed at providing a seamless, secure, and efficient experience for CSR creation.

authentication certificate cli-tool csharp csr digital-signature dotnet encryption hardware-token open-source piv pki security yubikey

Last synced: 20 Mar 2025

https://github.com/3ndg4me/gortscanner

Simple port scanner rewritten in go

golang hacking hacktoberfest portscanner security

Last synced: 16 Dec 2025

https://github.com/volkansah/modsecurity-rule-to-block-sql-injection-attacks-in-php

Example: ModSecurity rule to block SQL injection attacks in PHP

php security waf

Last synced: 11 Apr 2025

https://github.com/accuknox/secret-scan-action

AccuKnox Secret Scan GitHub Action

secret security sensitive-data

Last synced: 06 Mar 2026

https://github.com/benoitchantre/wp-composer-auto-updates

WordPress MU-Plugin to enable maintenance and security updates when the site uses version control and DISALLOW_FILE_MODS.

auto-update security wordpress wordpress-mu-plugin

Last synced: 30 Apr 2025

https://github.com/parazyd/git-restrict

Simple utility for git repository permission management

chroot git minimal permission-management security static

Last synced: 29 Oct 2025

https://github.com/dynonguyen/hospital-management-system

Safety and security of information systems project.

oracle reactjs security

Last synced: 12 Apr 2025

https://github.com/hayesall/maliciousportableexecutabledetection

Determining whether a portable executable file (.exe) is malicious or benign with comparative results for multiple ML algorithms: AdaBoost, DT, GNB, GradientBoosting, KNN, RF.

classification machine-learning security

Last synced: 28 Oct 2025

https://github.com/vv198x/go2ban

Protect your servers

firewall go golang open-source security

Last synced: 20 Jan 2026

https://github.com/chen-keinan/openshift-ordeal

Open Source runtime scanner for OpenShift cluster and perform security audit checks based on CIS RedHat OpenShift Benchmark specification

audit-checks cis-benchmark cis-security kube kubernetes linux openshift openshift-ordeal openshift-scrutiny redhat scan security

Last synced: 11 Apr 2025

https://github.com/anthonyharrison/sbom-manager

Manage collection of SBOMs (Software Bill of Materials)

cyclonedx devsecops sbom sbom-repository sbom-tool security spdx vulnerabilities

Last synced: 11 Apr 2025

https://github.com/umair9747/leakygpt

The one-stop DLP browser extension to stop users from sharing sensitive information with chatGPT.

ai artificial-intelligence chatgpt compliance cybersecurity data-leakage-prevention dlp gpt llm openai openai-chatgpt security security-compliance

Last synced: 03 May 2026

https://github.com/crytic/vscode-starknet-explorer

StarkNet support extension for VSCode. Visualize StarkNet contracts: view storage variables, external and view functions, and events.

auditing cairo review security starknet

Last synced: 01 May 2025

https://github.com/globaltradingtechnologies/crypt-bundle

Provides symfony encryptor/decryptor services based on various cryptographic components

aes bundle decryptor encryption encryptor rsa security symfony-bundle

Last synced: 10 Apr 2025

https://github.com/elastic/dac-reference

DaC Repo to store the reference documentation and detection-rules management with Elastic rules.

automation dac elastic security

Last synced: 15 Jun 2025

https://github.com/shivamsaraswat/certify

Certify is a python tool designed to check the security of SSL/TLS certificates.

certificate-authority certify python security security-automation ssl-certificate tls tls-certificate

Last synced: 10 Apr 2025

https://github.com/passmarked/ssl

Rules that relate to checking the SSL configuration of each individual resolved server from the domain to ensure locked down config with the broadest compatibility

attack certificate chain cipher compatibility passmarked root-certificate security ssl ssl2 ssl3 standards tls tlsv1 vulnerability

Last synced: 09 Jul 2025

https://github.com/brittonhayes/citadel

A family of Security Operations micro services built with go-kit

golang microservice secops security

Last synced: 27 Mar 2025

https://github.com/solun-pm/solun

Solun is a service that allows you to share files, text and sending emails with end-to-end encryption, without having to worry about your privacy.

docker end-to-end-encryption mongodb nextjs privacy security

Last synced: 15 Jun 2025

https://github.com/tempehs/the_unsecure_pwa

An unsecure by-design PWA that students can analyse with a suite of tools and support to build their understanding of web-based secure software architecture.

2fa api content-security-policy csp csrf cybersecurity cybersecurity-education encryption form-validation learning-by-doing learning-cybersecurity learning-project penetration-testing race-conditions security session-management sql-injection sqlite3 testing-practices xss

Last synced: 13 Apr 2025

https://github.com/inverse/cert-host-scraper

Query the certificate transparency log

certificate scraper security

Last synced: 19 Jan 2026

https://github.com/getdatakick/blackholebots

Free module for prestashop and thirtybees platforms that will automagically ban bots that don't follow robots.txt instructions

blacklist module prestashop prestashop-free-module prestashop-module robot security thirtybees

Last synced: 18 Mar 2025

https://github.com/alexkander/loopback-socket

Loopback module for create Socket.io connections and allow call methods and make subscriptions

auth events express expressjs io loopback realtime security socket strongloop subscription websocket

Last synced: 14 Oct 2025

https://github.com/thedvlprguy/cyberorgs

A site for viewing and analyzing the info of the cybersecurity related organizations participating in Google Summer of Code.

archlinux blackarch-linux cybersecurity googlesu gsoc honeynet kali-linux linux linux-app linux-kernel owasp parrot-os parrotsec security

Last synced: 30 Apr 2025

https://github.com/padsalatushal/malicious-debian-package-maker

Inject your own bash script inside any Debian package.

debian linux package python security

Last synced: 18 Jul 2025

https://github.com/venkatas/vikramaditya

Autonomous VAPT platform. Give it a target (FQDN, IP, CIDR) — it hunts, it reports. Inspired by the Obsidian Order.

ai-security autonomous-agent bash bug-bounty penetration-testing python recon security vapt vulnerability-scanner

Last synced: 30 Apr 2026

https://github.com/ucsahinn/codex-chef

Codex Chef: Windows-first Codex setup kit with agents, skills, MCP connectors, safe installers, validation gates, and multilingual docs.

agent-skills ai-agents automation codex codex-chef codex-cli developer-tools mcp model-context-protocol openai powershell security setup starter-template windows

Last synced: 17 Jun 2026

https://github.com/piecioshka/is-responding

🛠 A tool to find active endpoint use an enumeration strategy

cli security

Last synced: 17 Jun 2026

https://github.com/tse-wei-chen/hs-sql-agent

A high-performance C# SQL Agent MCP that eliminates LLM hallucinations and security risks. Instead of letting the AI write raw SQL, it extracts parameters to generate deterministic, injection-free queries across 6 major databases—complete with a visual Admin UI and enterprise guardrails.

accuracy admin-panel ai-safety ai-safety-design anti-hallucination firebird mcp mcp-server mcp-servers mysql nl2sql oracle postgres postgresql security sql-agent sql-server sqlite

Last synced: 30 May 2026

https://github.com/sowoi/check-nextcloud-security

Check the security level of your Nextcloud instance with the Nextcloud Security API

icinga icinga2 icinga2-plugin nagios-checks nagios-plugin nextcloud nextcloud-server python3 scan security

Last synced: 11 Jun 2026

https://github.com/jamiesonio/defectdojo-mcp

An experimental ModelContextProtocol server connecting LLMs to DefectDojo for AI-powered security workflows. Enables natural language interaction with vulnerability data, simplifies security analysis, and automates reporting through a lightweight middleware integration.

appsec defectdojo devsecops fastmcp mcp security security-automation

Last synced: 01 May 2026

https://github.com/aginies/virt-scenario

Prepare a Virtual Machine libvirt XML config and the host to match a specific scenario usage

alp confidential-computing host libvirt opensuse qemu scenarios secure-computation security sev sev-es suse virtual-machine virtualization xml xml-schema

Last synced: 09 Oct 2025

https://github.com/goblgobl/authen

Add 2FA to an existing authentication flow

authentication go microservice security self-hosted

Last synced: 16 Jan 2026

https://github.com/smoren/url-security-manager-php

Class for building, parsing, signing, signature checking, encrypting and decrypting URLs

encryption security url-builder url-parser

Last synced: 15 Apr 2025

https://github.com/skx/mod_blacklist

A simple Apache module to blacklist remote hosts.

apache2 blacklist c firewall security

Last synced: 16 Mar 2026

https://github.com/sadhasivamx/boar-hunting-yolov8

YoloV8-based boar detection system with Arduino-triggered buzzer for enhanced security.

arduino artificial-intelligence computer-vision custom machinelearning security yolov8

Last synced: 07 Oct 2025

https://github.com/ketsapiwiq/siem-infra

Vulnerability detection, OSquery, fully-fledged Wazuh ELK stack with Linux and Windows Wazuh + osquery enrollment via Ansible.

ansible elasticsearch kibana osquery security siem vulnerability-detection wazuh

Last synced: 23 Apr 2025

https://github.com/divd-nl/cna-bot

GitHub action to validate and submit CVE entries using cvelib, cvelint and cve service.

cve security

Last synced: 01 Mar 2026

https://github.com/codeconut-ltd/wordpress-plugin-default-config

WordPress plugin with some hardcoded, opinionated defaults for enhanced security and frontend performance. Reduced feature set that might not work with all plugins. Only use if you know what you need.

composer configuration configuration-management default-project opinionated-defaults ph7 php phpcs phpcs-wordpress plugin security security-hardening wordpress wordpress-development wordpress-plugin wordpress-security wordpress-settings

Last synced: 08 Oct 2025

https://github.com/lambda2/breezer

🔒 Lock your Gemfile dependencies to safe versions

ci gemfile ruby security

Last synced: 18 Jan 2026

https://github.com/youhaveme9/apkinfo

A python script to extract high level and critical informations from AndroidManifest.xml or apk

android decompiler reverse-engineering security

Last synced: 04 Sep 2025

https://github.com/marcominerva/dataprotectionsample

This example shows how to use the DataProtection APIs with ASP.NET Core

aspnetcore cryptography csharp data-protection dotnet minimal-api security

Last synced: 09 Apr 2025

https://github.com/happyhackingspace/privacy-policy-analyzer

A command-line tool that automatically fetches, analyzes, and scores website privacy policies using AI to highlight strengths, risks, and recommendations.

privacy security

Last synced: 13 Oct 2025

https://github.com/gowww/secure

🔑 Security utilities, CSP, HPKP, HSTS and other security wins

csp go golang good-practices hpkp hsts http https policy secure security ssl

Last synced: 01 Mar 2026

https://github.com/actalog/mongodump

🍃 GitHub Action for creating a binary export of a database's contents

actions backup database github-actions mongodb mongodump security

Last synced: 27 Feb 2026

https://github.com/darxisr/cryline-v3.0

Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes only. The author is't responsible for your actions.

aes-encryption assembly cplusplus dotnet encryption malware programming ransomware security source-code windows

Last synced: 16 Aug 2025

https://github.com/aw-junaid/fuzzing-for-security-testing

Learn fuzzing techniques for vulnerability discovery: AFL, libFuzzer, and custom fuzzers. Includes examples, tools, and tips for effective software testing.

fuzz-testing fuzzing security security-fuzzing

Last synced: 06 Jan 2026

https://github.com/rulilg/litic

JS library to perform technical SEO and best practices analysis to your projects.

accessibility best-practices security seo technical-seo web-development

Last synced: 13 Oct 2025

https://github.com/patrickfav/bkdf

BCrypt based key derivation function to improve BCrypt as a cryptographic primitive for password hashing and key derivation

bcrypt cryptography hkdf java kdf password security

Last synced: 09 Apr 2025

https://github.com/kumuluz/kumuluzee-security

KumuluzEE Security extension for easy integration with OAuth2/OpenID identity and access management providers.

cloud-native java javaee kumuluzee microservices oauth2 openid-connect security

Last synced: 17 Oct 2025

https://github.com/z3ntl3/ddos-denier

DDOS-Denier is a tool designed to evaluate incoming server attacks based on CPU load and automatically take countermeasures. Intended for Cloudflare websites.

api bot cloudflare ddos security

Last synced: 16 Aug 2025

https://github.com/patricktulskie/concuss

Throw a bunch of headers at a web app and see what sticks

malformed-headers pentest ruby security security-auto security-tools testing webapp-security

Last synced: 28 Apr 2025

https://github.com/mrcgrtz/create-security-txt

🔏 Create an RFC 9116 compliant security.txt file.

nodejs rfc-9116 security security-tools security-txt

Last synced: 25 Aug 2025

https://github.com/yijianguanzhu/icloud-simple-service

springcloud 示例项目 整合spring cloud gateway、jwt、spring reactive security、hystrix断路器、ribbon负载均衡、sentinel、spring cloud feign、nacos注册中心和配置中心、knife4j swagger、分布式链路追踪sleuth

feign gateway hystrix jwt knife4j nacos ribbon security sentinel sleuth springcloud swagger webflux-security

Last synced: 27 Apr 2025

https://github.com/kolteq/validating-admission-policies-pss

Kubernetes Pod Security Standards implemented using Kubernetes Validating Admission Policies. Support of Enforce Baseline and Restricted profiles natively with configurable policy exclusions.

compliance kubeapt kubernetes pod-security pod-security-admission security validating-admission-policy

Last synced: 04 Feb 2026

https://github.com/openwall/owl

Openwall GNU/*/Linux (Owl) is a small security-enhanced Linux distribution for servers. Owl has effectively reached its end-of-life, but its legacy lives on in a few other distributions (most notably, ALT Linux) and upstream projects. This is a tentative export of the Owl CVS repository into Git, which will possibly be redone later.

hardening linux security userland

Last synced: 09 Apr 2025

https://github.com/m-mizutani/aws-honeypot-templates

CloudFormation templates of low interaction honeypot on AWS

cloudformation honeypot security

Last synced: 27 Apr 2025

https://github.com/kaushikgopal/ff-container-traffic-control

Firefox addon (extension) that helps you define rules which will control which container a website opens in.

firefox firefox-addon firefox-extension privacy security

Last synced: 31 Jan 2026

https://github.com/ebrasha/abdal-security-headers

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp

Last synced: 26 Jan 2026

https://github.com/emilioforrer/go-stack

Production-ready Go scaffold template with clean architecture, lifecycle-managed dependency injection (samber/do), HTTP server (net/http + Huma/OpenAPI), CLI scaffolding, 45+ AI agent skills for Claude/Copilot/OpenCode, and built-in DevOps security tooling.

agentic-coding ai-agent ai-skills claude clean-architecture cli code-quality codex copilot dependency-injection go golang microservices openapi opencode production-ready security starter-kit template vertical-slice-architecture

Last synced: 30 May 2026

https://github.com/lambdapioneer/rollercoaster

MixNet Simulator with Rollercoaster Implementation 🎢

loopix mixnet security usenix-security-2021

Last synced: 11 Oct 2025

https://github.com/nimdy/selks-install-from-source

How to install SELKS in Azure and AWS cloud services and pretty much anywhere with a internet connection

aws azure elasticsearch how-to kibana logstash monitoring network nsm security suricata

Last synced: 11 Mar 2026

https://github.com/zufardhiyaulhaq/asdf-trivy

Trivy plugin for the asdf version manager

asdf asdf-plugin security security-tools trivy

Last synced: 12 Apr 2025

https://github.com/sr-lab/pin-bank

Numeric PINs counted and sorted by frequency as they occur in the RockYou dataset.

analysis frequency list password pin security

Last synced: 03 Mar 2026

https://github.com/fivexl/terraform-aws-ssl-checker

Simple SSL check and expiring certificates reminder with additional DNS check and host availability check.

heartbleed lambda security ssl terraform terraform-module tls tls-certificate-checker tls-scan tls13

Last synced: 09 Apr 2025

https://github.com/luisschwab/smaug

smaug 🐉 guards your coins and sends you an email if they move

bitcoin network security

Last synced: 24 Jan 2026

https://github.com/volkansah/minigrex

MiniGreX will be designed with security in mind, and the code will be written to minimize the risk of SQL injection attacks and other security vulnerabilities. To ensure maximum security, we recommend keeping the CMS up-to-date with the latest security patches and using strong passwords for all user accounts.

authentication cms cms-backend cms-framework codeigniter content-management content-management-system hacker mariadb mysql php pod posgresql prepared-statements security security-audit security-tools user-interface usermanagement xss-filter

Last synced: 12 Apr 2025

https://github.com/clouddrove/.github

Meta repository for all clouddrove repositories

azure clouddrove devops git github hacktoberfest security

Last synced: 22 Apr 2025

https://github.com/born05/craft-enforcepassword

Craft plugin for incrementally enforced new and secure passwords.

craftcms craftcms-plugin security

Last synced: 10 Apr 2025

https://github.com/hn275/file-encryptor

a small cli tool for file encryption, written in Rust.

aes-encryption commandline cryptography gcm key-derivation-function scrypt security

Last synced: 14 Oct 2025

https://github.com/blank-query/lazyVPN-for-Omarchy

LazyVPN is an Omarchy VPN manager for WireGuard connections. It replaces manual systemd-networkd configuration with a fast, keyboard-driven TUI featuring killswitch, auto-recovery, and Waybar integration.

linux mullvad-vpn omarchy omarchy-linux privacy protonvpn security tui vpn vpn-manager wireguard wireguard-ui wireguard-vpn

Last synced: 07 Feb 2026

https://github.com/elliotwutingfeng/passwordsim

passwordsim lets you search for passwords similar to your specified password in any passwords dataset. The similarity metric used is the Damerau-Levenshtein distance.

cybersecurity damerau-levenshtein data-breaches hacktoberfest haveibeenpwned osint password password-manager security

Last synced: 29 Apr 2025

https://github.com/picobaz/pybruteforge

PyBruteForge: A powerful Python brute-force login tester for ethical security audits. Forge attacks with smart password patterns and CSV logging via a modular API-driven design. Strengthen your defenses—test ethically!

bruteforce cybersecurity ethical-hacking login-tester password-audit penetration-testing python security web-security

Last synced: 23 Oct 2025