An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/namuan/oauth2-proxy-httpbin

Secure applications using OAuth2 Proxy

docker docker-compose httpbin oauth2 security

Last synced: 19 Apr 2025

https://github.com/cityofnewyork/nyco-wp-boilerplate

Local development suite for creating and running instances of WordPress sites and managing them on WP Engine. Maintained by @NYCOpportunity

composer docker nyc-opportunity nycopportunity security wordpress wp-cli wp-engine wpengine

Last synced: 12 May 2025

https://github.com/eliranmaman/elro-security-project

ELRO-Security is an advance & free WAF (Web Application Firewall), It is using to defend servers and especially websites around the internet. It is very easy to install and allow websites owner to add their own website via a web application interface which makes it accessible for almost everyone regardless of the level of codding.

firewalls security waf web web-application-firewall web-application-security web-application-security-scanner web-secure web-security webapplication webapplicationhacking

Last synced: 26 Apr 2025

https://github.com/movewp3/microservice-security-autoconfiguration

A library to abstract away the details to enable a Spring-Boot-based microservice to support authentication (via OpenID Connect / OAuth2).

microservice security spring

Last synced: 14 Jan 2026

https://github.com/aiven-open/aiven-pg-security

Aiven PostgreSQL® add-on for adding some DBaaS security

add-on postgresql security security-tools

Last synced: 29 Apr 2025

https://github.com/kiliczsh/nosql-injection

The Power of Secure Coding Practices: Safeguarding MongoDB Against Exploitation

mongodb nosql-injection security

Last synced: 10 Apr 2025

https://github.com/cryxnet/cve-2022-42889-rce

Proof of Concept for CVE-2022-42889 (Text4Shell Vulnerability)

cve-2022-42889 exploit exploits poc security vulnerability

Last synced: 27 Dec 2025

https://github.com/belane/codeauditor

Take notes and categorize issues during a source code audit.

audit code-audit security vscode vscode-extension

Last synced: 12 May 2025

https://github.com/techjacker/diffence

Checks a git diff for offensive content

diff git-diff passwords secrets security

Last synced: 02 Sep 2025

https://github.com/augustd/owasp-java-fileio

Automatically exported from code.google.com/p/owasp-java-fileio

java java-fileio owasp security

Last synced: 14 Jan 2026

https://github.com/nsonaniya2010/sanfinder

It finds Subject Alternative Names for a given list of domains

bug-bounty bug-hunting bugbounty infosec madeinindia security security-tools

Last synced: 14 Apr 2025

https://github.com/ladjs/mongoose-common-plugin

Common plugin for Mongoose with standard schema fields and localization support

common created helper i10n i18n id locale locales localization localized locals mongoose plugin plugins security timestamp updated virtual virtuals

Last synced: 15 Apr 2025

https://github.com/theinfosecguy/razin

Static analysis scanner for SKILL.md LLM agent skills with deterministic security findings.

agentic-ai ai-agents cli cybersecurity llm markdown python security static-analysis yaml

Last synced: 11 Apr 2026

https://github.com/turbot/steampipe-mod-github-compliance

Run individual controls or full compliance benchmarks for across all of your GitHub resources using Powerpipe and Steampipe.

cis cis-benchmark compliance github hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod

Last synced: 22 Apr 2025

https://github.com/elastic/llm-detection-proxy

A proxy tool for detecting and logging LLM queries to Elasticsearch.

elastic enrichment flask kibana llm proxy security

Last synced: 13 Jul 2025

https://github.com/qbrusa/Windows-Security-Event-ID-Helper

This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).

audit eventid events logging security windows

Last synced: 08 May 2025

https://github.com/sub1to/ctninja

Compile-time string encryption and import obfuscation for Windows PE32(+) binaries

compile compile-time cplusplus encryption imports joaat joaat64 ninja obfuscation pe32 pe32plus peb peb-walking security stealth string time windows xorstr

Last synced: 19 Apr 2025

https://github.com/ma27/ma27apikeyauthenticationbundle

Symfony Bundle which provides an approach to authenticate users with API tokens.

doctrine security symfony symfony-bundle

Last synced: 12 Jun 2025

https://github.com/robertdebock/ansible-role-aide

Install and configure aide on your system.

aide ansible ids molecule monitoring playbook security system tox

Last synced: 24 Apr 2025

https://github.com/nicolast/landlock-hs

Haskell bindings for the Linux Landlock API

haskell haskell-library landlock linux sandbox sandboxing security

Last synced: 09 Apr 2025

https://github.com/IowaComputerGurus/DnnTelerikIdentifier

This is a utility module designed to look at all loaded assemblies and identify any that might have a dependency on Telerik. Designed to help individuals understand the risk of removing Telerik from DNN Platform

dnn dnncms dotnetnuke hacktoberfest security

Last synced: 12 May 2025

https://github.com/serversideup/ipaddress-fyi

Easily control access to the Internet’s most popular services

firewall-configuration laravel-application open-api open-data php-applications security

Last synced: 11 Apr 2025

https://github.com/jtyr/ansible-errata

Ansible role which helps to patch RedHat-based systems.

ansible security

Last synced: 08 May 2025

https://github.com/auth0-blog/vue-auth0-aside

Aside: Vue with Auth0 and an authenticated Node API.

api app aside auth auth0 authentication node security vue vue-auth

Last synced: 27 Jul 2025

https://github.com/bocaletto-luca/browser-temporary-files-delete

Browser Temporary Files Delete is a Python application that helps users remove temporary files from web browsers. It allows users to select the browsers to scan and clean up unnecessary temporary files. The software dynamically detects the cache paths of common web browsers, enabling users to perform cleanup operations with ease.

automation cache cleanup optimization privacy python security utility web-browser

Last synced: 18 Oct 2025

https://github.com/sondosaabed/intro-to-information-security

Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.

access-control buffer-overflow-attack course database-security firewalls information-security intrusion-detection-system malicious-software modern-malware os-security security udacity

Last synced: 20 Feb 2026

https://github.com/xinux-org/configs

⚙️ | Various developer & user linux configurations [maintainer=@orzklv]

community dotfiles env font linux neovim security shell sudo terminal theme uzinfocom zsh

Last synced: 22 Apr 2025

https://github.com/avantasia/inventedAttack

A POC attack combining IP SPoofing, SYN Flood and IP Fragmentation

poc security wip

Last synced: 13 Mar 2025

https://github.com/busyloop/suzuri

Authenticated and encrypted tokens

crypto crystal security

Last synced: 30 Oct 2025

https://github.com/rogelioolarte/multiple-auth-api

Spring Boot App that focuses on implementing multiple authentication methods using OAuhth2 and JWT.

jwt multiple-authentication oauth2 register-login security spring spring-boot

Last synced: 16 Aug 2025

https://github.com/jmhobbs/wordpress-scanner

CLI to scan plugin directories, and an HTTP server to scan zips from Wordpress.org

experimental security wordpress

Last synced: 14 Apr 2025

https://github.com/atulkamble/aviatrix

Aviatrix ACE (Aviatrix Certified Engineer) Multi-Cloud Networking Associate Exam Notes

atul-kamble atulkamble aviatrix aviatrix-ace aviatrix-certified-engineer aviatrixace multi-cloud-networking security

Last synced: 04 Mar 2025

https://github.com/snyk/rpm-parser

Produce a list of dependencies from an RPM database file

dependencies packages parser rpm security snyk

Last synced: 08 May 2025

https://github.com/vinyll/anonym.dev

Selection of services for a better web hygien

app decentralized dweb fediverse mastodon nextcloud pixelfed privacy security signal telegram

Last synced: 22 Aug 2025

https://github.com/miteshsharma/terraformwithvault

Using vault provider to fetch aws dynamic credentials

aws dynamiccredential security terraform vault

Last synced: 31 Jul 2025

https://github.com/itslab-kyushu/sss

A simple implementation of Shamir's Secret Sharing

go golang grpc secret-sharing security storage

Last synced: 12 Jan 2026

https://github.com/mk-fg/scapy-nflog-capture

Driver for scapy to allow capturing packets via Linux NFLOG interface

cffi linux module netfilter networking nflog python scapy security sniffer

Last synced: 11 May 2025

https://github.com/thewh1teagle/checksum

Github reusable action for create checksum.txt for release assets

actions github security workflow

Last synced: 10 Aug 2025

https://github.com/openbankproject/obp-hola

A Java / Springboot application to demonstrate and test open banking OAuth2, mTLS, JWS, consent creation and usage flows. Supports UK, Berlin Group and Open Bank Project consents.

banking consents open security

Last synced: 13 Apr 2025

https://github.com/zupit/horusec-examples-vulnerabilities

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

analysis cd ci cli golang hacktoberfest java kotlin netcore python ruby sast sast-analysis scanner security security-development security-flaws static-analysis terraform vulnerabilities

Last synced: 17 Jun 2025

https://github.com/asos/snyker

An opinionated, heavy-handed wrapper around Snyk.

cli security snyk snyk-cli vulnerabilities vulnerable-paths

Last synced: 09 Mar 2026

https://github.com/kcdtv/wpscrack

wpscrack, the first wps brute force tool

crack linux linux-shell python security wifi wifi-hacking wifi-network wifi-security wps

Last synced: 13 May 2025

https://github.com/zeyad-azima/n0pspoof

A tool to bypass and evade Portspoof solution

bypass ids network nmap rustscan security

Last synced: 04 Apr 2025

https://github.com/withsecurelabs/shadowhammer

Tools related to 'shadowhammer' attack, https://securelist.com/operation-shadowhammer/89992

countercept malware security

Last synced: 25 Jun 2025

https://github.com/smeso/sara

S.A.R.A. development branch. Rebased often. Use at your own risk.

hardening kernel linux lsm sara security

Last synced: 14 Jun 2026

https://github.com/ericcornelissen/js-regex-security-scanner

A static analyzer to scan JavaScript code for problematic regular expressions.

javascript redos regex regular-expression sast scanner security static-analysis

Last synced: 25 Feb 2026

https://github.com/brainpolo/llmshield

Shields your confidential data in LLM prompts from third party AI providers, allowing you to send with confidence without compromising security and privacy.

ai llms privacy security

Last synced: 05 Mar 2026

https://github.com/tink-crypto/tink-go-awskms

Extension to Tink Go that provides AWS KMS integration

aws-kms crypto cryptography go golang golang-library security

Last synced: 27 Jan 2026

https://github.com/uppnrise/iron-veil

🛡️ High-performance Rust database proxy for real-time PII anonymization. Masks sensitive data (emails, SSN, credit cards) without application changes. PostgreSQL & MySQL support with TLS, Prometheus metrics, and live dashboard.

anonymization axum data-masking database-proxy gdpr mysql pii postgresql privacy rust security tokio

Last synced: 06 Feb 2026

https://github.com/rezmoss/awesome-security-pipeline

🔐 A curated list of open-source security tools organized by CI/CD pipeline stage. Covers secrets detection, SBOM, SAST, SCA, IaC security, container scanning, Kubernetes security & more. Actively maintained with weekly status updates

appsec awesome awesome-list checkov cicd container-security devops devsecops gitleaks kubernetes-security sast sbom security security-tools supply-chain-security trivy vulnerability-scanner

Last synced: 03 Apr 2026

https://github.com/aryaminus/controlkeel

Agent control plane for governed AI coding: validate changes, enforce policy gates, track findings, proofs, and evals based on your habits.

agents ai-agents ai-governance benchmark code-review compliance compliance-as-code devsecops elixir evals llm mcp model-context-protocol observability phoenix policy-as-code security skills tooling

Last synced: 13 Jun 2026

https://github.com/djx-y-z/openmls_dart

Wrapper for OpenMLS, implementing the Messaging Layer Security (MLS) protocol (RFC 9420) for scalable end-to-end encrypted group messaging. Features TreeKEM key agreement, encrypted storage (SQLCipher/IndexedDB), and Web Crypto support. Optimized for Flutter and cross-platform applications (Android, iOS, Linux, macOS, Windows, Web). MIT Licensed.

cross-platform cryptography dart encryption end-to-end-encryption flutter flutter-rust-bridge frb group-messaging messaging mls mls-protocol openmls privacy rfc9420 rust security

Last synced: 06 Jun 2026

https://github.com/virb3/winsock-dump-proxy

A proxy DLL for Windows to dump Windows Socket connections

dll dump proxy reverse-engineering security windows winsock

Last synced: 24 Jun 2026

https://github.com/saccofrancesco/lock

Secure local password manager with CustomTkinter UI and cross-platform support

cross-platform customtkinterr desktop-app encryption gui nord-theme open-source password-manger privacy python security tkinter

Last synced: 04 Apr 2026

https://github.com/blackiq/secure-telegrambot

This is a bot from Mehran Alam. I didn't create this. TNX Mehran.

api bot security telegram

Last synced: 28 Oct 2025

https://github.com/guillaumefalourd/formulas-insights

Ritchie CLI formulas to get insights from various tools such as Github, GoogleDocs, LinkedIn or other social networks 🕵️‍♂️

github hacktoberfest insights linkedin ritchie-cli security useful useful-scripts webscraping

Last synced: 27 Oct 2025

https://github.com/ehsanshahbazii/coursera-javascript-security-refreshers

This course is a Secure Javascript Programming Overview. It gives the student an introduction to JavaScript security and covers important topics like authentication best practices and refreshers on JavaScript, Web browsers and Node.js.

coursera coursera-course es6 javascript js nodejs security

Last synced: 27 Oct 2025

https://github.com/jonzeolla/lab-automotivesecurity

An introductory lab to automotive security.

automotive-security information-security infosec lab security

Last synced: 26 Feb 2026

https://github.com/ave-sergeev/omoikane

Blazing fast explicit proxy written in Rust for network accessibility research under DPI (Rust) (Q2:2026)

cli dns-over-https dns-over-tls dpi dpi-bypass dpi-evasion linux macos network-tools networking packet-manipulation proxy proxy-server rust security security-research tcp tls-handshake windows

Last synced: 19 Apr 2026

https://github.com/aminesayagh/zec-data-parsing

Data Parsing and schema declaration Library

dataparsing dataschema php php-library php8 security

Last synced: 25 Oct 2025

https://github.com/codica2/production-server-security-notes

:unlock: 7 tips to protect your production server

production security server-security

Last synced: 12 Feb 2026

https://github.com/sayanee/iot-security-lecture

IoT Security lecture slides

iot security

Last synced: 17 Oct 2025

https://github.com/canva-public/endpoint-vulnerability-management-samples

A companion repository to the Canva engineering blog post on how to do endpoint vulnerability management.

endpoint security sql vulnerability

Last synced: 31 Jan 2026

https://github.com/adrien2p/accumulator

:rocket: Send a load of requests with nodejs using cluster and with/without Tor for anonymisation :see_no_evil:

ddos ddos-attacks ddos-tool load-testing nodejs onion security tor

Last synced: 08 May 2025

https://github.com/aenondynamics/x509-tool

:wrench: Single-File-Utility to create X509 Certificates/PKI Structure for your OpenVPN Server or any TLS based communication.

authentication certificate cli communication openssl openvpn pki-structure security ssl-certificates tls verify-certificates webserver x509

Last synced: 19 Jun 2025

https://github.com/cloudposse/terraform-aws-global-accelerator

Terraform module to configure AWS Global Accelerator

compliance security terraform

Last synced: 29 Apr 2025

https://github.com/dotanuki-labs/android-oss-cves-research

An analysis on open-source Android apps intended to learn if they are harmed by vulnerable dependencies 🔒

cli gradle python security supply-chain-analytics

Last synced: 12 Apr 2025

https://github.com/techtoboggan/claude-desktop-hardened-linux

Security-focused Linux packaging of Claude Desktop with bubblewrap sandboxing, Wayland support, and Cowork (Local Agent Mode)

bubblewrap claude claude-desktop electron linux sandbox security wayland

Last synced: 11 Jun 2026

https://github.com/dhhruv/fleck-pro

Prototype of Data Hiding Software for your personal files in your Laptop/PC. (Windows OS)

batch batch-script batchfile cli data data-hiding fleck-pro framework hacktoberfest hacktoberfest2021 security shell software terminal windows

Last synced: 03 May 2025

https://github.com/graniet/gofuzz

A Request fuzzer written in Go

api fuzzer fuzzing hacking rest security

Last synced: 11 Apr 2025

https://github.com/dnszlsk/muad-dib

Real-time npm/PyPI supply-chain threat detection. Production sensor with gVisor sandbox, behavioral analysis, and 200+ heuristic rules.

ast dependency-scanner malware mitre-attack npm pypi python sarif scanner security shai-hulud shai-hulud2 supply-chain supply-chain-security typosquatting

Last synced: 25 May 2026

https://github.com/ralish/keepass

Source code mirror of KeePass v2.x releases

keepass mirror password-manager security

Last synced: 10 Jun 2025