An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/hsyntes/authentication-authorization-security

Authentication, Authorization and Security Back-End System with Node.js & Express.js & mongoDB - mongoose. Registering users to the database, authorization and authentication users, sending emails to users' email address to reset or update their password and more.

authentication authorization expressjs mongodb mongoose nodejs security

Last synced: 24 Apr 2025

https://github.com/aurae-runtime/environment

Distributed Systems Runtime. Core workspace and top level environment.

containers distributed-systems kernel microvms mtls networking runtime rust security

Last synced: 17 Jul 2025

https://github.com/yottayoshida/llm-key-ring

Secure CLI for managing LLM API keys via macOS Keychain. No more plaintext .env files.

api-key cli keychain llm macos rust secret-management security

Last synced: 13 Mar 2026

https://github.com/mohamedch7/kubectl-guard

Accidentally modifying production instead of a local cluster? kubectl-guard helps prevent such critical mistakes.

kubernetes script security

Last synced: 13 May 2025

https://github.com/itinerisltd/trellis-cve-2018-6389

Mitigate CVE-2018-6389 WordPress load-scripts / load-styles attacks

ansible-galaxy cve-2018-6389 security trellis wordpress

Last synced: 25 Jun 2025

https://github.com/FIWARE-Ops/docs.academy

:mortar_board: Video tutorials, slide decks and other training materials for developers learning about the FIWARE ecosystem.

context-broker contextual-data data-publication fiware generic-enablers iot-agent monetization processing robotics security tutorial video-tutorial

Last synced: 30 Mar 2025

https://github.com/sap-samples/btp-user-management-microservice

Sample CAP microservice to manage business applications' users and their respective authorizations.

authentication authorization btp cloud-application-programming-model cloud-foundry security xsuaa

Last synced: 25 Sep 2025

https://github.com/cr0hn/nginx-wordpress-docker-sec

Anti-hacking tools deployment config of Nginx for Wordpress

hacking hardening nginx nmap plecost security wordpress wp-scan wp-scanner

Last synced: 25 Jun 2025

https://github.com/mauhpr/agentlint

Real-time guardrails for AI coding agents — code quality, security, and infrastructure safety. 57 rules across 8 packs for Claude Code.

ai-agents claude-code cli code-quality developer-tools guardrails hooks linting python security

Last synced: 10 May 2026

https://github.com/ilya-smut/blue-book

Blue Book is an application that generates multiple-choice preparation questions for IT certifications, e.g. CompTIA A+, Network+, and Security+.

ai certification comptia cybersecurity it mock-tests security

Last synced: 12 Feb 2026

https://github.com/tomwechsler/cyber_and_information_security_knowledge_base

A structured knowledge base of cybersecurity and information security standards, frameworks, best practices, and guidelines. Covers key resources such as NIST, ISO/IEC, OWASP, CIS, ISACA, and more — to support professionals, students, and organizations in building a solid foundation for secure systems, compliance, and risk management.

cybersecurity information-security knowledge-base security

Last synced: 13 Feb 2026

https://github.com/alexeev-prog/nadzoring

An open source tool for detecting website blocks, downdetecting, and network analysis

ai-friendly arp censorship cli dns network network-analysis network-monitoring python security security-tools utility

Last synced: 01 Apr 2026

https://github.com/weebdatahoarder/go-away

[Mirror] Self-hosted abuse detection and rule enforcement against low-effort mass AI scraping and bots.

ai-scraping http-proxy mirror security

Last synced: 16 May 2025

https://github.com/r-net-tools/net.security

Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

attck capec cpe cve cwe mitre nist oval r sard security

Last synced: 18 Feb 2026

https://github.com/modem-dev/drizzle-scoped-db

Scope-enforced DB queries for Drizzle ORM

db drizzle drizzle-orm security

Last synced: 04 Jul 2026

https://github.com/grapheneos-archive/nginx-rotate-session-ticket-keys

Session ticket key rotation scripting / systemd units for nginx to work around the lack of built-in support. This may eventually be extended to support syncing keys across a group of servers providing the same service.

nginx privacy security

Last synced: 09 May 2025

https://github.com/grapheneos-archive/device_google_coral

Pixel 4 and Pixel 4 XL device sources.

android grapheneos security

Last synced: 13 Apr 2025

https://github.com/tankerhq/sdk-android

Tanker client-side encryption SDK for Android

android cryptography encryption end-to-end java kotlin privacy sdk security tanker

Last synced: 09 Apr 2025

https://github.com/brosck/farllen

「🚪」Port forwarding tool to gain access to internal devices

c forwarding hacking network pivot port security tool

Last synced: 06 May 2025

https://github.com/SocialGouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 02 Aug 2025

https://github.com/groupe-edf/watchdog

Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.

ci devops devsecops git gitea gitguardian gitlab go gogs golang secrets security

Last synced: 14 Jan 2026

https://github.com/teverett/fbsd-secured

Ansible playbook to harden FreeBSD installations

ansible freebsd security

Last synced: 22 Mar 2025

https://github.com/thotypous/operagbas

Alternative "security" module for Brazilian banks

banking-applications security

Last synced: 12 Oct 2025

https://github.com/netguru/mobile-security-review

Security review guidelines for mobile projects

android ios owasp security

Last synced: 11 Sep 2025

https://github.com/orsinium-labs/flake8-warnings

Python linter (flake8, pylint, CLI) that warns you about using deprecated modules, classes, and functions

clean-code code-quality flake8 flake8-extension flake8-extensions flake8-plugin flake8-plugins linter pylint python python3 qa security

Last synced: 15 Apr 2025

https://github.com/lukehinds/fastllm

FastLLM - Rust based LLM Inference API

inference llama llm mistral rust security speed

Last synced: 15 Apr 2025

https://github.com/shivammathur/php-src-backports

Security backports for EOL versions of PHP.

backports end-of-life php security

Last synced: 07 May 2025

https://github.com/sercanarga/ipmap

ipmap is an open source, cross-platform and powerful network analysis tool.

ipmap linux macos security windows

Last synced: 10 Mar 2026

https://github.com/leonjza/go-observe

🌌 Go-Observe: A command line Mozilla Observatory client written in Go

commandline go security web

Last synced: 05 Jul 2025

https://github.com/socialgouv/hasura-permissions-viewer

Generate human-friendly HTML table from hasura permissions list

hasura security

Last synced: 23 Feb 2026

https://github.com/wmeints/webauthn-sample

Sample demonstrating how to use FIDO2 keys with ASP.NET Core using WebAuthn

asp-net-core csharp dotnet fido2 npm nuget react security typescript webauthn

Last synced: 26 Jan 2026

https://github.com/mam-dev/security-constraints

Fetches security vulnerabilities and creates pip-constraints based on them.

dependencies pip python security supply-chain-security

Last synced: 01 Jul 2025

https://github.com/iamcryptoki/passcat

:key: Generate cryptographically secure, memorable passphrases.

memorable-passphrases passphrase password python security wordlist words

Last synced: 29 Apr 2025

https://github.com/mitocgroup/www

Mitoc Group is a technology company focusing on cloud adoption in private equity. Our track record includes helping private equity portfolio companies migrate to public clouds, as well as establish devops and dataops processes using cloud native services and industry best practices.

assurance development documents legal policy process quality security software

Last synced: 26 Jan 2026

https://github.com/nategraf/naumachia-challenges

Open-source challenges for Naumachia

ctf ctf-challenges docker docker-compose network security

Last synced: 24 Apr 2025

https://github.com/simeononsecurity/saps

A collection of scripts to assist System Adminsitrators

automation documentation mitigations powershell powershell-script security

Last synced: 23 Apr 2025

https://github.com/sap-samples/cloud-nodejs-oflm

This repository demonstrates how to implement security in a business scenario using the Node.js framework. The application is secured using the SAP BTP, Cloud Foundry environment Authorization and Trust Management Service.

cloud-foundry nestjs nodejs sample sample-code sap-btp-cloud-foundry sap-cloud-sdk security xsuaa

Last synced: 13 Apr 2025

https://github.com/lchsk/django-insecure

Example of an insecure Django application

django education security

Last synced: 25 Apr 2025

https://github.com/Supersonic/Wallbreak

Exploit app for CVE-2021-39670 and CVE-2021-39690, two permanent denial-of-service vulnerabilities in Android's wallpaper system

android cve exploit security vrp

Last synced: 10 Mar 2025

https://github.com/ffmancera/ping_of_death

Some scripts to do a ping of death attack.

ddos-attacks networking python3 scapy security

Last synced: 09 Oct 2025

https://github.com/paulveillard/cybersecurity-ctf

A collection of CTF frameworks, libraries, resources, softwares and tutorials, books, resources and cool stuff in Cybersecurity

ctf ctf-challenges ctf-platform ctf-solutions ctf-tools cybersecurity frameworks security security-tools

Last synced: 10 Apr 2025

https://github.com/leonklingele/securetemp

Secure temporary directories and files in Go (ram disk, tmpfs)

ramdisk security temporary-directories temporary-files tmpfile tmpfs

Last synced: 07 May 2025

https://github.com/utsanjan/ffssdp-mitm

The SSDP engine in Firefox for Android (68.11.0 and below) can be tricked into triggering Android intent URIs with zero user interaction.

android android-intent-uri ffssdp firefox firefox-application intent-triggering lan maninthemiddle maninthemiddleattack mitm mitm-attacks newest security ssdp-engine vulnerability wifi-network

Last synced: 02 Jul 2025

https://github.com/tot-ra/graphql-query-cost

Graphql query cost calculation

graphql security

Last synced: 10 Mar 2026

https://github.com/shaps80/abracadabra

A truly plug 'n' play solution for securing your code.

authentication code pin security touchid

Last synced: 11 Mar 2026

https://github.com/0x4f53/GetPerms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 11 Apr 2025

https://github.com/pahrohfit/sanic-beskar

Strong, Simple, and Precise, (and now async!) security for Sanic APIs

authentication authorization python python3 sanic security

Last synced: 05 May 2025

https://github.com/psecio/uri

A secure URI generation and validation library

security security-tools signature uri url

Last synced: 11 Apr 2025

https://github.com/dneustadt/dneustadtcsrfcookiebundle

Symfony bundle that provides Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications

ajax angular axios csrf react security vue xhr xsrf

Last synced: 03 Apr 2025

https://github.com/mubix/ctf

Capture The Flag Information

capture-the-flag ctf hacking learning security

Last synced: 11 Apr 2025

https://github.com/elsevierlabs-os/terraform-cloud-custodian-lambda

A collection of terraform modules that allow you to deploy and manage cloud-custodian lambda resources using native terraform as opposed to using the cloud-custodian CLI

aws aws-lambda c7n c7n-mailer cloud cloud-custodian compliance cost-optimization lambda rules-engine security serverless

Last synced: 06 Mar 2026

https://github.com/mika-f/plana

Plana is a powerful general purpose obfuscator for C#, but optimized for Unity and UdonSharp, containing a variety of features which provide protection for your source code from the hackers

csharp dotnet obfuscate obfuscation obfuscator protection security udonsharp unity vrchat

Last synced: 08 Jul 2025

https://github.com/yashvardhan-kukreja/kube-bench-exporter

:whale: :rocket: Helps you to export your kube-bench reports to multiple targets like Amazon S3 buckets with ease.

aquasec exporter kube-bench kubernetes security

Last synced: 11 Apr 2025

https://github.com/containerscrew/rootisnaked

Simple root privilege escalation detection using eBPF 🐝

cilium-ebpf ebpf ebpf-go go golang linux-kernel privilege-escalation security

Last synced: 12 Apr 2025

https://github.com/thalesgroup/security-risk-assessment-tool

The ISRA security-risk-assessment-tool project is an Electron based application used to do security risk assessments at a technical level

cvss cybersecurity engineering iso iso-27005 iso27005 risk-analysis risk-assessment security security-tools

Last synced: 17 Mar 2025

https://github.com/dkorunic/axfr2hosts

Fetches one or more DNS zones via AXFR and dumps in Unix hosts format for local use

bind bind9 bind9-dns dns dns-server domain linux networking security sre sysops unix zone

Last synced: 12 Apr 2025

https://github.com/azu/github-advisory-database-rss

GitHub Advisory Database RSS Feeds.

github rss security

Last synced: 15 Jan 2026

https://github.com/tintinweb/vscode-chonky

🍣 Chonky - A Superhuman LLM Auditing Agent for Solidity

agentic-ai security solidity vscode-extension

Last synced: 15 May 2026

https://github.com/swamithedev/password_strength

The Password Strength Checker project aims to help users assess the robustness of their passwords quickly and effectively.

frontendproject frontendprojects password password-checker password-generator password-strength password-strength-checker security swaminathanselvam swamithedev ui ui-components ui-design

Last synced: 19 Oct 2025

https://github.com/thalesgroup/gose

GOSE = JOSE and friends for the Go developer

golang jsonwebtoken security

Last synced: 03 Oct 2025

https://github.com/express-rate-limit/rate-limit-postgresql

A PostgreSQL store for express-rate-limit middleware

express-middleware nodejs postgresql rate-limiting security

Last synced: 30 Apr 2025

https://github.com/bbva/masquerade

High-performance, real-time, multi-location data obfuscation tool

encrypted-data masquerade security tokenizer

Last synced: 21 Jun 2025

https://github.com/benwestgate/bitcoin-core-on-tails

Deprecated Setup script for installing Bitcoin Core to Tails persistent storage. Full node, wallet, backup and clone for a friend functions

bash bash-script bitcoin bitcoin-core debian full-node linux operating-system privacy security shell tails

Last synced: 28 Oct 2025

https://github.com/0x4f53/getperms

An Android wrapper library to quickly get app permissions and other package data.

android android-library apk demo icon java jitpack library localdatetime open-source package-manager packages permissions permissions-android phone security siem signature

Last synced: 01 May 2025

https://github.com/zuazo/dradis-docker

A Docker image with Dradis: A collaboration and reporting platform for IT security experts.

devops docker dradis minimal repository security

Last synced: 13 Apr 2025

https://github.com/grapheneos/platform_external_pdfviewer

PdfViewer app prebuilt using the latest official release of the PdfViewer app.

android grapheneos pdf pdf-viewer security

Last synced: 13 Apr 2025

https://github.com/umair9747/staticot

A BASH script to automate simple tasks related to static malware analysis

cybersecurity malware malwareanalysis security static-malware-analysis staticanalysis threatintel threatintelligence

Last synced: 31 Jul 2025

https://github.com/aiven-open/pghostile

Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can be used to identify security issues in PostgreSQL extensions, to test system hardening and for security research in general.

exploitation postgresql security security-audit security-tools

Last synced: 29 Apr 2025

https://github.com/phosphore/cwmpwn

Leveraging CWMP (CPE WAN Management Protocol) to extract vendor specific secrets and configurations from CPEs

cpe cwmp security tr-069

Last synced: 29 Apr 2025

https://github.com/rezen/zap-tutorial

WIP - A tutorial for OWASP ZAP

security tutorial zap

Last synced: 30 Aug 2025

https://github.com/datalux/notification-sniffer

An Android Library that implements a Notification Sniffer

android android-library notifications security sniffing

Last synced: 23 Jul 2025

https://github.com/rexs-io/blocksec2go-ethereum

Wrapper for blocksec2go allowing easy hardware-based signing of Ethereum transactions

blockchain blocksec2go ethereum hardware-wallet security

Last synced: 02 Apr 2026

https://github.com/ramborogers/cyberchat

CyberChat - P2P Zero Config Chat and Files

chat golang mdns p2p security

Last synced: 25 Jun 2025

https://github.com/mishakorzik/detectvpn

Free vpn, tor, datacenter, threat detection on IP

detect detection information ip ipv4 ipv4-address ipv6 ipv6-address security tor vpn

Last synced: 02 Jan 2026

https://github.com/fi5t/nimbussrp-android

Classic NimbusSRP library is optimized for Android

android android-library nimbusds security srp-6a

Last synced: 09 May 2025

https://github.com/heartsucker/rust-csrf

Primitives for CSRF protection.

cryptography csrf csrf-protection http rust security

Last synced: 07 Aug 2025

https://github.com/imagemlt/easyknife

a simple app like CKnife

security

Last synced: 13 Apr 2025

https://github.com/chhayac/awesome-dga

Domain Generation Algorithms research papers, datasets and code

cybersecurity deeplearning dga dga-detection dgapapers domaingenerationalgorithms machinelearning security

Last synced: 02 Jan 2026

https://github.com/carekit-apple/ibm-hyperprotectsdk

The IBM Hyper Protect iOS SDK for CareKit is an addon for the CareKit framework that consumes IBM Hyper Protect Services for zero-trust persistent cloud storage and bi-directional synchronization across multiple devices with just 2 lines of code

ios-swift mbaas mongodb security typescript

Last synced: 12 May 2025