An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/alex2276564/telegramnotifier

PrestaShop module that sends customizable Telegram notifications for new orders, admin logins, and new customer registrations. Supports multiple chat recipients, message templates, and automatic update checks.

api automation ecommerce module notifications php prestashop security telegram

Last synced: 14 Oct 2025

https://github.com/sjinks/setcap-static

A statically linked lightweight version of setcap(8) to use in `scratch` images

capabilities linux-capabilities scratch-image security security-tools setcap

Last synced: 10 Apr 2025

https://github.com/wp-cli/role-command

Adds, removes, lists, and resets roles and capabilities.

access cli hacktoberfest role security wordpress wp-cli wp-cli-package

Last synced: 12 Jun 2025

https://github.com/demon1a/bounties-uwu

Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne

bugbounty hackerone javascript security tools

Last synced: 14 Oct 2025

https://github.com/dlion/go-ofile

Use this tool to search for a specific file type in a given domain.

dork go golang security

Last synced: 03 Jul 2025

https://github.com/rezen/openvas-up

Levels up scripting OpenVAS

openvas python security vulnerability-scanners

Last synced: 10 Jun 2025

https://github.com/amadeusitgroup/starter-kit-for-internal-hacking-event

A kit to organize internal hacking events, improving product security and spreading security knowledge.

event fun security

Last synced: 13 Feb 2026

https://github.com/apache/santuario-cpp

Mirror of Apache Santuario C++

c java library santuario security xml

Last synced: 10 Jan 2026

https://github.com/leklund/bauditor

run bundler-audit on a multiple repositories at once

bundler-audit ruby rubygems security

Last synced: 07 Jul 2025

https://github.com/nwtgck/aes128gcm-stream-npm

🛡128-bit AES-GCM Encryption Stream for Web Browsers

aes-gcm browser encryption javascript security stream streams-api

Last synced: 01 Apr 2025

https://github.com/zekker6/devsandbox

Sandbox for running untrusted dev tools. Filesystem isolation via bubblewrap, optional MITM proxy for traffic inspection. Perfect for AI coding assistants.

ai-coding-assistant bubblewrap claude-code development-tools linux mitm namespaces proxy sandbox security

Last synced: 29 Apr 2026

https://github.com/mitre/apache-tomcat-8-cis-baseline

(WIP) (Alpha) InSpec profile for CIS Apache Tomcat v8 Benchmark

apache inspec inspec-profile mitre-corporation mitre-inspec mitre-saf security tomcat

Last synced: 21 Apr 2025

https://github.com/Armaan29-09-2005/AI-OSINT-Security-Analyzer

AI OSINT Security Analyzer is an intelligent platform that leverages AI to perform autonomous investigations across various intelligence sources. With features like multi-source integration and real-time threat intelligence, it ensures comprehensive security assessments. 🛡️🔍

ai ai-agent analysis cohere cve cve-analysis cybersecurity ip ip-address osint osint-tool osint-tools python security security-analysis shodan streamlit vulnerability-assessment

Last synced: 06 Oct 2025

https://github.com/dhanushnehru/pdf-xss-checker

pdf-xss-checker is a Node.js tool designed to scan PDF files for potential Cross-Site Scripting (XSS) vulnerabilities. It analyzes embedded scripts, forms and suspicious content to help identify security risks in PDFs before they're distributed or displayed in browsers.

pdf pdf-document scanner security security-audit securitytools vulnerability xss xss-attacks xss-detection xss-filter xss-scanner xss-vulnerability

Last synced: 19 Jun 2025

https://github.com/anchore/s3c-workshops

Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.

containers devsecops fedramp k8s sbom security supply-chain-security vulnerability-scanners

Last synced: 09 Oct 2025

https://github.com/carlocorradini/graphql-auth-directive

GraphQL @auth directive that protects resources from unauthenticated and unauthorized access

auth authentication authorization graphql nodejs security typescript

Last synced: 16 Feb 2026

https://github.com/rocklambros/any2md

Convert PDF, DOCX, HTML, and TXT files — or web pages by URL — to clean, LLM-optimized Markdown with YAML frontmatter.

cli converter docx html llm markdown pdf python security txt

Last synced: 26 Apr 2026

https://github.com/IBM/simrun

Attack Simulation Platform (ASP) for detection testing

attack-simulation cloud-security detection-engineering security security-automation threat-detection

Last synced: 26 Jun 2026

https://github.com/samouraiworld/sec-guidebook

The Ultimate Security Guide Book for new-cryptorich friends

exploits good-practices privacy protection security wallet

Last synced: 27 Jan 2026

https://github.com/alphasoc/graylog-alphasoc

A content pack to render AlphaSOC alerts within Graylog

graylog-content-pack intrusion-detection malware-analysis monitoring security

Last synced: 01 Mar 2026

https://github.com/dk26/strict-path-rs

Handle paths from external or unknown sources securely. Defends against 19+ real-world CVEs including symlinks, Windows 8.3 short names, and encoding tricks and exploits.

directory-traversal file-security filesystem-security path-traversal-prevention path-validation rust rust-crate security type-safety web-security

Last synced: 22 Apr 2026

https://github.com/dukebarman/android-bulletins-harvester

a simple utility for parsing Android security bulletins

android go security security-tools

Last synced: 14 Jan 2026

https://github.com/always-further/runseal

Sealed execution environment for GitHub Actions.

actions isolation sandbox security supply-chain-security

Last synced: 05 Jun 2026

https://github.com/visualbean/hibp.net

A simple .NET wrapper for the HIBP (Have I been pwned?) Api

csharp haveibeenpwned hibp netcore nuget security

Last synced: 10 Oct 2025

https://github.com/enquo/cretrit

Comparison-Revealing Encryption primitives

cryptography encryption enquo hacktoberfest order-revealing-encryption ore rust security

Last synced: 05 Apr 2026

https://github.com/jaybrown/application-launch-monitor-alm-

Extend macOS Gatekeeper functionality by verifying applications at every launch

anti-malware anti-virus antimalware antivirus codesign gatekeeper macos malware privacy security

Last synced: 03 Mar 2026

https://github.com/donedeal0/deepvault

DeepVault allows you to store data in the browser with AES encryption.

aes aes-256 aes-gcm cryptography encryption encryption-decryption gcm local-storage localstorage security

Last synced: 07 Oct 2025

https://github.com/restorm-labs/nuxt-restream

Restream is a module that allows you to create a stream of an audio/video file from the Firebase storage, protected from direct download through the client-side.

firebase firebase-storage nuxt nuxt-module nuxt3 security vue3

Last synced: 09 Oct 2025

https://github.com/venkatas/vikramaditya

Autonomous VAPT platform. Give it a target (FQDN, IP, CIDR) — it hunts, it reports. Inspired by the Obsidian Order.

ai-security autonomous-agent bash bug-bounty penetration-testing python recon security vapt vulnerability-scanner

Last synced: 30 Apr 2026

https://github.com/jessechale/halehound-cyd

ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit

bluetooth cc1101 cheap-yellow-display cyd esp32 esp32-diy hacking nrf24l01 offensive-security pentest security security-tools subghz wifi

Last synced: 12 Mar 2026

https://github.com/prompt-armor/prompt-armor

Open-source prompt injection detector — 5 layers, 91.7% F1, ~27ms, offline, Apache 2.0

ai-safety anomaly-detection cli faiss jailbreak llm llm-security mcp nlp offline onnx prompt-injection prompt-security python security

Last synced: 03 Jun 2026

https://github.com/padsalatushal/malicious-debian-package-maker

Inject your own bash script inside any Debian package.

debian linux package python security

Last synced: 18 Jul 2025

https://github.com/melroyb/psbettercap

Control multiple Bettercap nodes through REST API

bettercap cluster hack linux powershell powershell-script security security-audit wifi windows

Last synced: 18 Apr 2026

https://github.com/extwiii/cybersecurity-university.of.maryland

Cybersecurity Specialization - Cybersecurity Fundamentals. Construction of Secure Systems - Coursera

cyber-security cybersecurity maryland security

Last synced: 03 Feb 2026

https://github.com/csm-actions/approve-pr-action

GitHub Action to approve pull requests securely

github-actions oss security

Last synced: 13 May 2025

https://github.com/bitsofinfo/vault-token-issuer

Simple REST API proxy and SPA for Hashicorp's Vault token auth method API(s), specifically create-orphan

ci-cd hashicorp-vault proxy security token-based-authentication vault

Last synced: 01 Nov 2025

https://github.com/bytehide/cli

Dotnetsafer CLI is a console tool that allows you to protect your .NET developments, integrates different products and services to keep your code safe.

analyzer dotnet netcore obfuscation owasp protection security security-tools vulnerability

Last synced: 27 Jun 2025

https://github.com/badr-1/steganography-cryptography

Console App That Uses Cryptography And Steganography To Embed/Extract Secret Message In/From an Image

encryption kotlin lsb-steganography security xor-encryption

Last synced: 13 Apr 2025

https://github.com/xtonousou/cis-bench-centos8

CIS Benchmark v1.0.0 - Level 1 Server - CentOS 8 automation

assessment bash benchmark centos centos8 cis cis-benchmark hardening linux security

Last synced: 30 Oct 2025

https://github.com/elementsinteractive/sheriff

Sheriff is a tool to scan repositories and generate security reports.

dependency-scanning security security-audit security-tools vulnerability-scanner

Last synced: 12 Jan 2026

https://github.com/offsh/offsh

Xonsh-powered pentesting framework.

pentesting security wazuh xonsh xxh

Last synced: 12 Mar 2025

https://github.com/wode490390/sanctioner

Sanctioner plugin for Nukkit

ban crash minecraft nukkit plugin sanction security

Last synced: 14 Apr 2025

https://github.com/jonlabelle/antildapinjection

A .NET library that provides protections against LDAP Injection.

active-directory csharp dotnet ldap ldap-encoder ldap-filter ldap-injection nuget-package sanitizer security

Last synced: 12 Jul 2025

https://github.com/lanshuns/wintorproxy

A batch script that enabling Tor and Privoxy as a SOCKS5 proxy, providing enhanced privacy and anonymity for internet traffic.

batch privacy proxy security socks tor

Last synced: 25 Feb 2026

https://github.com/andreacioni/keelink

Keepass2Android QR Plug-In Utility

android encryption keepass keepass2android-qr-plug plugin security

Last synced: 21 Mar 2025

https://github.com/sia-digital/pibox

PiBox is a service hosting framework that allows .net devs to decorate their services with behaviours or functionality (think of plugins) while only using minimal configuration.

api aspnetcore dotnet dotnet-core dotnet-standard dotnet8 framework lib library logging metrics microservice net80 performance pibox plugins security tests tracing web

Last synced: 09 May 2025

https://github.com/mwolff44/pi-secured-setup

Secure setup and permission hardening extension for the Pi coding agent.

coding-agent hardening permissions pi pi-extension policy security skill-verification

Last synced: 06 Jul 2026

https://github.com/octogonapus/registryscanner

Scans Julia registries for possible malicious behavior and misconfigurations.

julia security

Last synced: 28 Jun 2025

https://github.com/upgundecha/applied-security

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Cybersecurity

appsec cloudsecurity cybersecurity devsecops infosec security security-tools

Last synced: 14 Apr 2025

https://github.com/bonedaddy/web3-super-user

deployment, and configuration guidelines for self-hosting web3 services in a secure manner.

ethereum-staking security self-hosting web3

Last synced: 08 May 2025

https://github.com/trstringer/kubernetes-aad-msi

Authenticate Kubernetes applications to cloud resources with Azure Active Directory

azure azure-active-directory kubernetes security

Last synced: 08 May 2025

https://github.com/safinsingh/midnight

🔧 An extensible Linux security auditing tool

cybersecurity docker go golang linux security

Last synced: 09 Mar 2026

https://github.com/oliverbebber/comptia-sy0-601-study-notes

CompTIA SY0-601 Study Notes

comptia-security security

Last synced: 09 Mar 2026

https://github.com/hcl-tech-software/appscan-sast-action

Integrate static security testing with HCL AppScan on Cloud using GitHub Actions

action appscan github github-actions sast scanning security security-automation security-scanner security-testing security-tools

Last synced: 31 Aug 2025

https://github.com/krishealty/worm

Worm is an Android post exploitation Framework to gain remote access of any Android device by exploiting Android Debug Bridge.

cybersecurity hacking hacking-tools information-gathering kali-linux osint-framework osint-tool penetration-testing pentesting python python3 security vulnerability vulnerability-scanners

Last synced: 14 Apr 2025

https://github.com/ryoppippi/bun-socket-scanner

A Bun security scanner that integrates with Socket.dev for package vulnerability detection

bun security socket

Last synced: 11 Sep 2025

https://github.com/solun-pm/solun

Solun is a service that allows you to share files, text and sending emails with end-to-end encryption, without having to worry about your privacy.

docker end-to-end-encryption mongodb nextjs privacy security

Last synced: 15 Jun 2025

https://github.com/melardev/xeytanboost-rat

WORK IN PROGRESS. RAT written in C++ using Boost Libraries

asio backdoor boost cpp desktop malware networking rat remote-administration-tool security sockets trojan

Last synced: 13 Apr 2025

https://github.com/eftec/securityonemysql

It is a library

mysql php php7 security

Last synced: 07 Mar 2026

https://github.com/mrheinen/lophiid

A distributed honeypot for monitoring large scale web attacks

grpc-go honeypot intrusion-detection security threat-detection threat-hunting threat-intelligence

Last synced: 23 Jun 2025

https://github.com/contributte/event-dispatcher-extra

:recycle: Nette-based Symfony events for application, presenter, form, latte, templates, security and many others.

application contributte event-dispatcher event-emitter events mvc nette nette-framework security

Last synced: 19 Jul 2025

https://github.com/ninoseki/simplewhatweb

Simplified ver. of WhatWeb

pentesting security

Last synced: 19 Jul 2025

https://github.com/gpestana/sectools

Security tools with emphasis in OSINT, recon and enumeration. Written in Golang

enumeration go golang osint security security-tools

Last synced: 23 Apr 2025

https://github.com/therootcompany/base62-token.js

Generate & Verify GitHub-style & npm-style Base62 Tokens

base62 base62-encoding github-tokens-generator npm-tokens-generator security

Last synced: 17 Jul 2025

https://github.com/rix4uni/linkinspector

linkinspector is a fast command-line tool for inspecting URLs and retrieving HTTP status codes, content lengths, and content types. It supports filtering and matching responses, and can process URLs from stdin or files.

bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence

Last synced: 17 Feb 2026

https://github.com/pelock/jobfuscator-python

JObfuscator is a source code obfuscator for the Java language. Protect Java source code & algorithms from hacking, cracking, reverse engineering, decompilation & technology theft.

decompiler decompiler-java java mangle mangler obfuscate obfuscate-code obfuscate-strings obfuscated obfuscated-code obfuscation obfuscator security source-code

Last synced: 13 Jul 2025

https://github.com/haccer/xmail

Go tool that detects which email addresses have domains which are able to be registered

account-takeover bug-bounty bugbounty cyber email go golang infosec osint pentesting redteam redteam-tools security

Last synced: 14 Mar 2026

https://github.com/flutterguard/flutterguard-cli

Know and see everything an attacker can extract and get from your published Flutter app

android apk cli dart exploit flutter opensource reverse-engineering security static-analysis

Last synced: 13 Jan 2026

https://github.com/cristalhq/ipfilterware

Go HTTP middleware to filter clients by IP address

filtering firewall go golang http ip ipv4 ipv6 middleware security

Last synced: 08 Apr 2025

https://github.com/louib/challenge-response

Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust.

authentication challenge-response encryption hmac hmac-sha1 nitrokey onlykey otp security yubico yubikey

Last synced: 24 Mar 2025

https://github.com/geniuszly/CVE-2022-46080

it is script that enables Telnet on routers by sending a specially crafted request. The script allows users to specify the router's URL, Telnet port, and password. It validates the inputs and logs the process, providing feedback on whether the exploit was successful.

buffer-overflow cve cve-2022-46080 cybersecurity ethical-hacking exploit exploit-development linux nexxt nexxt-router penetration-testing poc rce rce-exploit router security telnet vulnerability vulnerability-research

Last synced: 07 May 2025

https://github.com/kovart/forta-spam-detector

Advanced spam detector powered by Forta Network

blockchain detector erc1155 erc20 erc721 ethereum forta phishing scam security spam token

Last synced: 15 Apr 2025

https://github.com/line/webauthndemo-kotlin

WebAuthnDemo Kotlin is a sample application demonstrating the integration of the webauthn-kotlin SDK for secure, password-less authentication in Android apps. It showcases the use of biometric and device credential authenticators, along with examples for registering and authenticating credentials.

authenticator demo fido2 kotlin passwordless security webauthn

Last synced: 02 Sep 2025

https://github.com/gp187/ubuntu-privacy-fix

After a fresh install don't forget to remove telemetry and harden security

privacy security telemetry ubuntu

Last synced: 11 Apr 2025

https://github.com/mdeous/dnscheck

Subdomain takeover assessment tool.

dns security subdomain-takeover

Last synced: 11 Apr 2026

https://github.com/akmalovaa/crowdsec-blocklist

Crowdsec Blacklist mirror - allows you to create a local HTTP service with an up-to-date list of harmful IP addresses

blocklist crowdsec docker docker-compose firewall security

Last synced: 19 Apr 2025

https://github.com/murphysecurity/murphysec-jenkins-tools

将墨菲安全的代码检测能力集成到 Jenkins 中,提高线上代码安全质量

jenkinsfile scanner security

Last synced: 25 Apr 2025

https://github.com/rix4uni/portmap

portmap is a fast portscan tool, uses shodan public data for port scan used internetdb.shodan.io and api.shodan.io/shodan/host

bug-bounty bugbounty bugbountytips hacking infosec internetdb osint osint-resources penetration-testing pentest-tool pentesting port-enumeration portscanner recon reconnaissance scan-ports security security-tools shodan threat-intelligence

Last synced: 28 Aug 2025

https://github.com/casbin/mux-authz

gorilla/mux's RBAC & ABAC Authorization middleware based on Casbin

abac acl authz casbin gorilla-mux middleware mux plugin rbac security

Last synced: 22 Apr 2025