An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/felixfriedrich/dnsmonitor

Monitor domain names for DNS changes

dns golang security

Last synced: 14 Jan 2026

https://github.com/saptaks/saikoro

Diceware GUI: An easy way for non-tech people to get diceware passphrases

diceware gui-application passphrase security

Last synced: 24 Apr 2025

https://github.com/grapheneos/tls-pinning

Utilities for setting up TLS key pinning for Android app network security configuration. We pin the keys of trusted roots and backup keys in order to avoid needing to rotate the pinned keys. Backup keys are never intended to be used unless the roots stop being available and then only need to be used until the pins expire or get updated.

https privacy security tls

Last synced: 13 Apr 2025

https://github.com/simpleclub/firebase-rules-helper

A collection of packages aimed to make working with Firebase rules easier.

code-generation coverage coverage-report firebase firebase-firestore firebase-storage firestore security

Last synced: 22 Feb 2026

https://github.com/alessiodionisi/setup-age-action

This action sets up age and adds it to the PATH.

age github-actions security

Last synced: 11 Mar 2026

https://github.com/pelock/radio-code-calculator-php

Radio Code Calculator is an online service along with Web API & SDK for generating car radio unlock codes for popular vehicle brands.

anti-theft car car-hacking navigation php radio radio-code radio-codes security unlock vehicle

Last synced: 13 Jun 2025

https://github.com/robertdebock/ansible-role-auto_update

Install and configure automatic package updates on your system.

ansible autoupdate molecule playbook security system tox

Last synced: 24 Apr 2025

https://github.com/mprpic/cvelint

CLI tool to validate CVE v5 JSON records.

cve linter security

Last synced: 12 Apr 2025

https://github.com/itemic/rotacsufbo

did u know the name of the repo is obfuscator backwards?

android android-security javaparser mobile-security obfuscate obfuscation obufscator proguard security

Last synced: 26 Jun 2025

https://github.com/sondosaabed/sql-injection-attack-detection

Introduction to generative adversial network

ai conditional-gan security

Last synced: 09 Apr 2025

https://github.com/drizzlerisk/armyworm

Armyworm是一款用于研究和测试的Internet Explorer密码输入控件粘虫防护能力的测试程序

activex armyworm bank ocx pentest security trojan

Last synced: 16 May 2025

https://github.com/oops-org-php/mod_execdir

mod_execdir: jailed system function. Run only the shell command in the specified directory

jail php8 security shell-injection

Last synced: 26 Apr 2025

https://github.com/capnspacehook/basp

A better way to manage software restriction policies, on Windows XP through 10

c-plus-plus security whitelisting windows

Last synced: 12 May 2025

https://github.com/flashnuke/mod-rootkit

Kernel-space x86_64 Linux rootkit leveraging kprobes and ftrace for syscall hooking (hiding entries and reverse shell backdoor)

backdoor cybersecurity ethical-hacking hacking kernel kernel-rootkit linux linux-kernel linux-kernel-module linux-rootkit lkm lkm-root malware mod-rootkit pentest pentesting reverse-shell rootkit rootkits security

Last synced: 24 Jul 2025

https://github.com/hobbyquaker/check_nextcloud

Nagios/Icinga Nextcloud Security Check :cloud: :closed_lock_with_key: :ballot_box_with_check:

icinga monitoring nagios nextcloud security

Last synced: 12 Apr 2025

https://github.com/inexio/cve-alert-manager

Collect security alerts from different sources and provide a normalized API to query

cve golang security security-vulnerability

Last synced: 09 Mar 2026

https://github.com/tawfik-s/spring-security-tasks-solution

Master Spring Security by practice. spring security tasks and solutions. you can find tasks description at the README file. freely use, modify, and distribute the code.

bycrypt csrf github-oauth2 google-oauth2 java jwt jwt-authentication method-level-authorization method-level-security oauth oauth2 oauth2-client preauthorize security spring spring-boot spring-security spring-security-oauth2 tasks

Last synced: 30 Jun 2025

https://github.com/littlenewton/ucas_exploit_practice

中国科学院大学,《漏洞利用与攻防实践》,霍玮

security ucas

Last synced: 27 Jul 2025

https://github.com/rix4uni/techfinder

A high-performance technology detection tool built with Go, leveraging the projectdiscovery wappalyzergo library to identify web technologies and frameworks.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools technology threat-intelligence

Last synced: 19 Jun 2026

https://github.com/mkmik/getsum

Abuse the gosum database to store verifiable hashes about any binary file

go hack security transparency

Last synced: 17 Aug 2025

https://github.com/robertdebock/ansible-role-sysstat

Install, start and enable sysstat on your system.

ansible molecule monitoring playbook security sysstat system tox

Last synced: 24 Apr 2025

https://github.com/pozil/apex-security-update-summer21

Helper script for Salesforce Summer '21 Apex security update

apex salesforce security summer21 update

Last synced: 14 May 2025

https://github.com/blessedrebus/riscv-rop-testbed

A testbed for RISCV vulnerable binaries that aims to produce meaningful fingerprints recognizable by a Control Flow integrity Machine Learning Algorithm.

buffer-overflow riscv rop security

Last synced: 24 Jul 2025

https://github.com/andreas-brunner/astro-mail-obfuscation

Protect email addresses, phone numbers and other sensitive data from bots scraping the source code of your Astro app.

astro astro-component astro-integration bot-protection email-obfuscation email-protection email-security encoding obfuscation security spam-protection utility utils withastro

Last synced: 14 Mar 2025

https://github.com/sircryptic/poc

Proof-of-Concept Exploits Based On Known CVE's

cve cybersecurity educational proof-of-concept security

Last synced: 14 Apr 2025

https://github.com/leopechnicki/im_robot

Reverse-CAPTCHA for AI agents — verify bots, not humans. Multi-framework (React, Vue, Svelte, Web Components). Zero dependencies. TypeScript.

ai-agent authentication bot-verification captcha react reverse-captcha security svelte typescript vue web-components zero-dependencies

Last synced: 22 May 2026

https://github.com/dsha256/token-go

JWT & PASETO Implementation of the Token Based Authentication

go golang jwt-tokens paseto-tokens security token-based-authentication

Last synced: 26 Jun 2025

https://github.com/rhelmke/cant

On-the-fly manipulation of CAN/ISOBUS frames, for science!

area can cant car controller cryptocan golang isobus mitm network osnabrueck privacy proxy sciency security server tractor university vehicle

Last synced: 22 Jul 2025

https://github.com/hivemq/hivemq-deny-wildcard-extension

HiveMQ extension for denying subscriptions to the root wildcard

extension hivemq hivemq-extension mqtt security subscription wildcard

Last synced: 08 Mar 2026

https://github.com/cdpxe/hardenedlinux

Scripts of the Hardened Linux (HL) distribution: hardening scripts (HLHS) and package system (cpfos)

harden hardened-linux-scripts hardening linux linux-distribution linux-shell package-manager package-managers packet-system port-management security slackware system

Last synced: 23 Mar 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/sebastienrousseau/password-generator-pro

A fast, simple and powerful open-source cross platform utility tool for generating strong, unique and random passwords 🦀

cross-platform cross-platform-app passphrase-generator password-generator password-generator-pro rust security tauri tauri-app

Last synced: 21 Aug 2025

https://github.com/zaryab2000/smart-contracts_audit_reports

A collection of my publicly available smart contract security audit reports and details about my audit procedures. 🔐

security security-audit smart-contracts solidity web3

Last synced: 30 Jul 2025

https://github.com/0x4d31/finch

Fingerprint‑aware TLS reverse proxy: allow, deny, route or deceive traffic via JA3, JA4 (+QUIC), JA4H, HTTP/2 fingerprints, and other request metadata.

deception fingerprint fingerprinting go honeypot ja3 ja4 reverse-proxy security security-tools

Last synced: 03 Aug 2025

https://github.com/maandree/correctpony

Passphrase generator based on http://xkcd.com/936/

correcthorsebatterystaple password-generator security

Last synced: 24 Feb 2025

https://github.com/pawamoy/django-cerberus-ac

Django Cerberus Access Control, extended permission system.

access control django ontology permissions role-based-access-control security

Last synced: 05 Jul 2025

https://github.com/henriquetourinho/brhttp

Um servidor estático em Go, superpoderoso. Oferece Live Reload, mas também automação de build com webhooks, proxy reverso e uma API de controle completa.

automation binario debian dev-server frontend go golang linux live-reload minimalist no-dependencies open-source performance reverse-proxy security spa static-server zero-config

Last synced: 04 May 2026

https://github.com/r3dhulk/bad-usb

bad usb also known as rubber ducky is a usb device to hack your target when you are in device's physical access

attack hacking security security-tools usb

Last synced: 13 Jun 2026

https://github.com/open-sspm/open-sspm

Open-SSPM is a small “who has access to what” service. It syncs identities from Okta (IdP) and permissions from connected apps (GitHub, Datadog, AWS Identity Center). Demo: admin@admin.com / admin

security sspm

Last synced: 18 Apr 2026

https://github.com/crodjer/biip

Strip out PII before Sending Data

cli pii privacy prompt-engineering prompt-toolkit rust security

Last synced: 25 Apr 2026

https://github.com/z-m-huang/vcp

Vibe Coding Protocal - Security-first protocol for AI-generated code, multiple standards with real-time enforcement and multi-AI pipeline orchestration

ai-coding claude-code claude-skills security security-audit vibe-coding

Last synced: 18 Apr 2026

https://github.com/djinn-soul/cytoscnpy

Fast Python static analysis powered by Rust. Detects dead code, security issues (including taint analysis), and code quality metrics like complexity, Halstead, maintainability, and nesting depth.

code-quality dead-code-detection python python-linter quality secret-detection security vscode-extension

Last synced: 18 Apr 2026

https://github.com/tecnickcom/rndpwd

Web Service Random Password Generator written in GO

go golang password-generator security webservice

Last synced: 04 Mar 2026

https://github.com/hartwork/mozilla-password-decrypt

:unlock: Decrypt passwords stored by Firefox, Thunderbird, Iceweasel, Icedove using libnss3.so

cli cli-app firefox icedove iceweasel mozilla mozilla-firefox mozilla-thunderbird password password-retrieval security thunderbird

Last synced: 03 Apr 2026

https://github.com/go-to-k/image-scanner-with-trivy

The AWS CDK Construct library to allow you to scan a container image during CDK deployment layer with Trivy.

aws aws-cdk aws-cdk-construct cdk container security trivy

Last synced: 27 Feb 2026

https://github.com/projectachilles/projectachilles

Continuous security testing and cyber-risk quantification for every organization

breach-a cyber-ri docker golang mitre purple-team security self-hosted typescript

Last synced: 03 Apr 2026

https://github.com/seznam/jailoc

🔒 Jail your AI agents — sandboxed Docker environments with network isolation for Opencode agents

ai-agents cli devtools docker docker-compose golang network-isolation opencode sandbox security

Last synced: 04 Apr 2026

https://github.com/always-further/runseal

Sealed execution environment for GitHub Actions.

actions isolation sandbox security supply-chain-security

Last synced: 05 Jun 2026

https://github.com/radoslaw-sz/guardio

The most flexible control plane for AI Agent systems

ai ai-agent ai-agents control-plane framework guard mcp security

Last synced: 01 Apr 2026

https://github.com/enquo/cretrit

Comparison-Revealing Encryption primitives

cryptography encryption enquo hacktoberfest order-revealing-encryption ore rust security

Last synced: 05 Apr 2026

https://github.com/epappas/llmtrace

Zero-code LLM security & observability proxy. Real-time prompt injection detection, PII scanning, and cost control for OpenAI-compatible APIs. Built in Rust.

agentic ai-agents ai-infrastructure ai-security aiops chatgpt llm-inference llm-monitoring llm-security llm-security-compliance-prompt-injection llmops mlops observability openai pii-detection prompt-injection proxy rust security

Last synced: 19 Feb 2026

https://github.com/ucsahinn/codex-chef

Codex Chef: Windows-first Codex setup kit with agents, skills, MCP connectors, safe installers, validation gates, and multilingual docs.

agent-skills ai-agents automation codex codex-chef codex-cli developer-tools mcp model-context-protocol openai powershell security setup starter-template windows

Last synced: 17 Jun 2026

https://github.com/IBM/simrun

Attack Simulation Platform (ASP) for detection testing

attack-simulation cloud-security detection-engineering security security-automation threat-detection

Last synced: 26 Jun 2026

https://github.com/prompt-armor/prompt-armor

Open-source prompt injection detector — 5 layers, 91.7% F1, ~27ms, offline, Apache 2.0

ai-safety anomaly-detection cli faiss jailbreak llm llm-security mcp nlp offline onnx prompt-injection prompt-security python security

Last synced: 03 Jun 2026

https://github.com/catalyst/patch-friend

Which of my hosts are affected by a security advisory?

debian python security security-advisories ubuntu

Last synced: 27 Apr 2025

https://github.com/zopefoundation/zope.security

Zope Security Framework

maintained proxy python security zope

Last synced: 10 Oct 2025

https://github.com/donedeal0/deepvault

DeepVault allows you to store data in the browser with AES encryption.

aes aes-256 aes-gcm cryptography encryption encryption-decryption gcm local-storage localstorage security

Last synced: 07 Oct 2025

https://github.com/anthonyharrison/csaf

CSAF generator and validator

csaf devsecops sbom security vex vulnerabilities

Last synced: 12 Jun 2025

https://github.com/arturmiller/adversarial_ml_ctf

This repository is a CTF challenge, showing a security flaw in most (all?) common artificial neural networks. They are vulnerable for adversarial images.

adversarial challenge ctf docker flask machine-learning optimization python security website

Last synced: 18 Apr 2025

https://github.com/dlion/go-ofile

Use this tool to search for a specific file type in a given domain.

dork go golang security

Last synced: 03 Jul 2025

https://github.com/stephenhaunts/text-shredder

A simple tool that applies very strong encryption over text for use with chat or email applications. Use this if you want to add another level of privacy and security that you can control.

cryptography encryption encyption-support privacy privacy-enhancing-technologies privacy-protection security security-tools

Last synced: 11 Apr 2025

https://github.com/stijncaerts/doss

Development of Secure Software: course summary

security

Last synced: 22 Feb 2026

https://github.com/vulnsphere/ai_infra_vuln_pocs

This is the PoC repository of LLM service. Updating...

exploit llm ml nuclei nuclei-templates poc security vulnerability

Last synced: 27 Jan 2026

https://github.com/ryanbalfanz/rtspios

A Raspberry Pi distribution that turns your Pi in to an RTSP server (e.g. security camera)

camera custompios cvlc raspberry-pi-camera raspberrypi raspicam raspivid rtsp rtsp-server security vlc

Last synced: 24 Apr 2025

https://github.com/saadbazaz/crackhead

A simple, smart & distributed password-cracking algorithm

algorithm password-cracker security

Last synced: 13 Jun 2025

https://github.com/mitre/apache-tomcat-8-cis-baseline

(WIP) (Alpha) InSpec profile for CIS Apache Tomcat v8 Benchmark

apache inspec inspec-profile mitre-corporation mitre-inspec mitre-saf security tomcat

Last synced: 21 Apr 2025

https://github.com/ghostofgoes/ui-prccdc

Scripts, Guides, Tools, and what-not for the University of Idaho PRCCDC team.

ccdc hardening prccdc python scripts security uidaho vyos

Last synced: 22 Apr 2025

https://github.com/dajiaji/flask-paseto-extended

PASETO (Platform-Agnostic Security Token) for Flask applications.

flask flask-extension jose jwt paseto past python security token

Last synced: 23 Apr 2025

https://github.com/heartsucker/rust-secure-session

Signed, encrypted session cookies for Iron

cryptography http iron rust security session

Last synced: 13 May 2025

https://github.com/crashdump/covert

Covert is a deniable encryption software.

cli deniable-encryption encryption sdk security

Last synced: 16 Feb 2026

https://github.com/restorm-labs/nuxt-restream

Restream is a module that allows you to create a stream of an audio/video file from the Firebase storage, protected from direct download through the client-side.

firebase firebase-storage nuxt nuxt-module nuxt3 security vue3

Last synced: 09 Oct 2025

https://github.com/tink-crypto/tink-cc-awskms

AWS-KMS extension for Tink C++

aws-kms cpp crypto cryptography security

Last synced: 27 Jan 2026

https://github.com/cristalhq/ipfilterware

Go HTTP middleware to filter clients by IP address

filtering firewall go golang http ip ipv4 ipv6 middleware security

Last synced: 08 Apr 2025

https://github.com/louib/challenge-response

Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust.

authentication challenge-response encryption hmac hmac-sha1 nitrokey onlykey otp security yubico yubikey

Last synced: 24 Mar 2025

https://github.com/anchore/s3c-workshops

Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.

containers devsecops fedramp k8s sbom security supply-chain-security vulnerability-scanners

Last synced: 09 Oct 2025

https://github.com/Armaan29-09-2005/AI-OSINT-Security-Analyzer

AI OSINT Security Analyzer is an intelligent platform that leverages AI to perform autonomous investigations across various intelligence sources. With features like multi-source integration and real-time threat intelligence, it ensures comprehensive security assessments. 🛡️🔍

ai ai-agent analysis cohere cve cve-analysis cybersecurity ip ip-address osint osint-tool osint-tools python security security-analysis shodan streamlit vulnerability-assessment

Last synced: 06 Oct 2025

https://github.com/bisonai/flutter-machine-learning-security

Protect your Machine Learning model in your Flutter application.

edge-machine-learning encoder-decoder mobile-ai security xor-cipher

Last synced: 18 Oct 2025

https://github.com/zekker6/devsandbox

Sandbox for running untrusted dev tools. Filesystem isolation via bubblewrap, optional MITM proxy for traffic inspection. Perfect for AI coding assistants.

ai-coding-assistant bubblewrap claude-code development-tools linux mitm namespaces proxy sandbox security

Last synced: 29 Apr 2026

https://github.com/burakozcn01/certstream-server-rust

High-performance Certificate Transparency (CT) monitoring tool written in Rust. Real-time stream of newly issued SSL/TLS certificates from CT logs. Rust implementation of certstream-server with improved performance and memory efficiency.

certificate-transparency certstream ct-logs rust security threat-intelligence websocket x509

Last synced: 22 Feb 2026