Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-02 00:27:53 UTC
- JSON Representation
https://github.com/dimon222/py-gitsshgen
Automatic generation of SSH keys for VCS
automation git hacktoberfest python security ssh vcs
Last synced: 29 Oct 2025
https://github.com/spiral/security
[READ ONLY] RBAC security layer based on NIST definition, role/rule/permission associations, bulletproof. Subtree split of the Spiral Security component (see spiral/framework)
Last synced: 28 Oct 2025
https://github.com/ramitsurana/hashicorp-tools-setup
A Sample art of work on hashicorp tools
aws database hashicorp nomad security security-audit vault vault-ui
Last synced: 06 May 2025
https://github.com/googlechromelabs/web-identity-demos
Demos for identity on the web. Built by the Chrome Developer Relations team and friends.
authentication autofill demo passkeys security
Last synced: 09 Jul 2025
https://github.com/stackrox/jenkins-plugin
The StackRox Jenkins Plugin for image scanning and security
containers hacktoberfest jenkins k8s security stackrox
Last synced: 06 May 2025
https://github.com/fiware/tutorials.roles-permissions
:closed_book: FIWARE 402: IDM - Application Roles and Permissions
fiware fiware-keyrock identity-management security tutorial
Last synced: 30 Apr 2025
https://github.com/habilelabs/cvss-v3.1-react
React CVSS v3.1 Base Score Calculator
cvss cvssv3 reactjs security security-vulnerability
Last synced: 20 Jun 2025
https://github.com/globaleaks/globaleaks-eph-fs
An ephemeral ChaCha20-encrypted filesystem implementation using fusepy and cryptography suitable for privacy-sensitive applications, such as whistleblowing platforms.
chacha20 cryptography fuse-filesystem privacy security whistleblowing-software
Last synced: 14 Dec 2025
https://github.com/volkansah/tor-network-application-with-stem-and-scapy
This project demonstrates how to use the Stem library to interact with the Tor network and the Scapy library for network packet manipulation. The goal is to create an application that can leverage Tor for anonymized network analysis, including scanning both Onion and regular websites.
example-code examples hacking network nikto nmap python scapy security socat stem tor
Last synced: 12 Apr 2025
https://github.com/douglascamata/passman_cli
A CLI for Passman.
passman password python security
Last synced: 19 Mar 2025
https://github.com/didjacome/modules.azure
This repository aims to have modules and scripts created for Microsoft Azure administration
accounts assessment azure engineer management powershell rbac resources security snapshot
Last synced: 17 Jan 2026
https://github.com/jwhitt3r/SIEMEz
A open-source Django Security Incident and Event Management System
django incident-response python python3 security siem
Last synced: 12 Jul 2025
https://github.com/weixian-zhang/fuzzie
A VSCode GUI-based fuzzer for Rest API and GraphQL
fuzzing python3 rest-api security vscode-extension
Last synced: 30 Dec 2025
https://github.com/swedishmike/dmarcparser
A quick and dirty implementation to get DMARC reports into Splunk for further analysis
dmarc dmarc-reports email python security spam-prevention splunk splunk-sdk
Last synced: 08 May 2025
https://github.com/sigseg5/thgtoa-ru
[WIP] Russian version of The Hitchhiker’s Guide to Online Anonymity
activism anonymity anonymization anticensorship gpg privacy privacy-aware privacy-by-design privacy-enhancing-technologies privacy-online privacy-policy privacy-protection privacy-tools qubes-os security security-hardening tails veracrypt whonix
Last synced: 01 Feb 2026
https://github.com/tlindsay42/armorpowershell
Community PowerShell Module for Armor
anywhere appveyor armor automation cloud complete coveralls devops powershell powershell-core powershell-gallery sdk security travis-ci
Last synced: 29 Oct 2025
https://github.com/ebauman/simpleca
Simple PKI for developers.
certificates cli golang pki security tls
Last synced: 17 Jan 2026
https://github.com/geniuszly/cve-2022-44149
it is script designed to interact with a router by sending a payload to its system tools. The script retrieves the router's configuration from environment variables to ensure security. It includes functions for generating an authorization header, sending a payload, and logging the process.
cve cve-2022-44149 cybersecurity ethical-hacking exploit exploit-development linux payload penetration-testing poc privilege-escalation security vulnerability vulnerability-research
Last synced: 11 Apr 2025
https://github.com/geniuszly/cve-2022-45701
it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.
arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research
Last synced: 11 Apr 2025
https://github.com/angelej/php-insider
A simple static application security testing (SAST) tool for locating dangerous sinks in php applications.
appsec php sast security static-code-analysis whitebox
Last synced: 06 Apr 2026
https://github.com/turbot/steampipe-mod-snowflake-compliance
Run individual controls or full compliance benchmarks across all of your Snowflake accounts using Powerpipe and Steampipe.
compliance hacktoberfest powerpipe powerpipe-mod security snowflake snowflakedb steampipe steampipe-mod
Last synced: 11 Jul 2025
https://github.com/notoriousrebel/social_media_shamer
Breaches happen all the time, it would be a shame if people used those credentials for their social media accounts.
Last synced: 11 Apr 2025
https://github.com/kyopark2014/aws-security-token-service
It shows how to generate and use temporary security credential using AWS STS.
aws aws-lambda aws-sdk lambda security temporary-credentials
Last synced: 12 Apr 2025
https://github.com/instaclustr/cassandra-kerberos
GSS-API authenticator plugin for Apache Cassandra
auth authentication cassandra cassandra-kerberos driver gssapi-authentication kerberos keytab netapp-public plugin principal security service
Last synced: 10 Apr 2025
https://github.com/dguo/digital-security-coach
:lock: Accessible crash course on digital security
cybersecurity guide haveibeenpwned security
Last synced: 17 Jun 2025
https://github.com/aran112000/nope-php
Nope! A lightweight tool for monitoring your log files and dynamically blocking nuisance or malicious IPs based on easy to define, dynamic rules which you control
anti-bot attack-prevention ban-hosts ban-management ips linux log-analyzer monitoring php php-cli rate-limiting security
Last synced: 22 Apr 2025
https://github.com/mtk911/mailinator-scraper
A powershell script to scrap mailinator without API for sensitive emails
mailinator powershell powershell-script scanner scraper security security-tools
Last synced: 03 Jul 2025
https://github.com/sindecker/pentest-playbook
The Penetration Testing Playbook — Beginner to Intermediate Field Guide. 359 pages, 731 code examples, 37+ compliance frameworks. Read free on GitHub.
active-directory beginner bug-bounty burp-suite ctf cybersecurity ethical-hacking hacking infosec oscp oscp-prep owasp penetration-testing pentest red-team security security-tools web-security
Last synced: 18 Apr 2026
https://github.com/maester365/maester-action
GitHub action for Maester
devops entra entra-id github-actions hacktoberfest maester microsoft-365 microsoft-graph security
Last synced: 18 Feb 2026
https://github.com/cyberark/escape-the-cloud
Web Application for CyberArk Cloud Escape Room CTF challenge
aws challenge cloud conjbot-skip conjbot-skip-vulnrreport ctf security
Last synced: 03 May 2025
https://github.com/astrid-project/astrid-framework
Main repository with all the components developed by the ASTRID consortium and the guideline to build the entire framework.
agent-based context-broker control-plane dashboard docker elasticsearch elk kafka kibana logstash security
Last synced: 06 Apr 2025
https://github.com/Nearata/flarum-ext-twofactor
A Flarum extension. Allow your users to enable two factor authentication.
flarum flarum-extension security two-factor
Last synced: 28 Mar 2025
https://github.com/vdlp/oc-csrf-plugin
Adds CSRF protection to October CMS frontend.
csrf october-cms october-plugin octobercms php security
Last synced: 12 Apr 2025
https://github.com/imagemlt/easyscanner
distributed cms fingerprint scanner using celery with redis
scanner security security-tools
Last synced: 13 Apr 2025
https://github.com/potatoqualitee/disarepotools
🦅 DISA Patch Repository Tools - List, download files and install files from DISA patch repositories using your smartcard
Last synced: 27 Oct 2025
https://github.com/rix4uni/paramfinder
Find input and textarea hidden parameters in html.
bug-bounty bugbounty bugbountytips hacking hidden-parameters infosec osint osint-resources osint-tool parameters penetration-testing pentest-tool pentesting recon reconnaissance security security-tools threat-intelligence
Last synced: 20 Jan 2026
https://github.com/retirenet/packages
JSON files containing vulnerable packages
dotnet-core dotnetcore security
Last synced: 21 Sep 2025
https://github.com/dosaic/dosaic
A plugin-first dotnet framework for rapidly building anything hosted in the web.
auto-discovery csharp dependency-injection dotnet dotnet-core dotnet9 logging metrics microservices minimal-api modular observability performance plugin-framework plugin-system security source-generator tracting web-framework webhost
Last synced: 21 Apr 2026
https://github.com/YosaiProject/pyramid_yosai
Yosai integration with the Pyramid Web Framework
pyramid python security web-application yosai
Last synced: 13 May 2025
https://github.com/pmzi/gomrok
Security advisor for ready to serve files
security security-automation security-scanner security-scanners security-testing security-tools
Last synced: 10 Aug 2025
https://github.com/darwintantuco/eslint-plugin-require-form-method
Disallow form tags without explicit method attribute
eslint eslint-plugin eslintplugin security
Last synced: 24 Apr 2025
https://github.com/authzforce/fiware
FIWARE Generic Enabler for PDP/PAP support functions using an access control schema based on the XACML standard
authzforce fiware pdp security xacml
Last synced: 02 Jan 2026
https://github.com/bocaletto-luca/bug-github-farms-points
Auto Farms Points BUG in Github Author: Bocaletto Luca Hi there! I’m Luca (@bocaletto-luca), and I’ve put together this repo to demonstrate a surprising “feature” (or vulnerability?) in GitHub’s contribution model. With a single workflow file, you can automatically farm commits, issues, PRs, wiki edits, releases and comments every hour—artificially
bocaletto-luca bug farms github github-bug hack hacking points security yaml
Last synced: 27 Apr 2026
https://github.com/dimosr/monitorito
A browser extension for visualisation and monitoring of browser HTTP traffic
browser graph plugin security visualisation
Last synced: 21 Apr 2025
https://github.com/goblgobl/authen
Add 2FA to an existing authentication flow
authentication go microservice security self-hosted
Last synced: 16 Jan 2026
https://github.com/divineomega/laravel-password-security-audit
🔏 Artisan command to audit the security of your users' passwords
laravel laravel-package password php security security-audit users
Last synced: 24 Aug 2025
https://github.com/tlindsay42/ArmorPowerShell
Community PowerShell Module for Armor
anywhere appveyor armor automation cloud complete coveralls devops powershell powershell-core powershell-gallery sdk security travis-ci
Last synced: 29 Jul 2025
https://github.com/boxyhq/jackson-cerbos
This is an example application that demonstrates how to use Cerbos with SAML Jackson
access-control authorization cerbos policy saml-authentication security
Last synced: 01 Aug 2025
https://github.com/kumuluz/kumuluzee-jwt-auth
KumuluzEE JWT Authentication extension provides role based access control microservice endpoints using OpenID Connect and JSON Web Tokens.
authentication cloud-native java javaee jwt jwt-authentication jwt-token kumuluzee microservices openid-connect rbac rest security
Last synced: 06 Apr 2025
https://github.com/marcreichel/password-exposed-rule
Laravel Validation rule to check that a password hasn't been exposed
data-breach haveibeenpwned laravel laravel-framework laravel-package password security validation
Last synced: 13 Jan 2026
https://github.com/lytexdev/seal-pi
🦭 Seal-Pi: Security Camera 🦭
camera flask raspberry-pi seal-pi security
Last synced: 13 Apr 2025
https://github.com/t94j0/polymorphic_compression_malware
Warning, this is malware. Don't do something stupid with it
Last synced: 07 Mar 2026
https://github.com/petemcw/ansible-role-hardening
Ansible role for basic server hardening
Last synced: 14 Apr 2025
https://github.com/fivexl/terraform-aws-ssl-checker
Simple SSL check and expiring certificates reminder with additional DNS check and host availability check.
heartbleed lambda security ssl terraform terraform-module tls tls-certificate-checker tls-scan tls13
Last synced: 09 Apr 2025
https://github.com/ammarfaizi2/icecrypt
IceCrypt PHP Encryption
cryptography encryption encryption-algorithms key php security
Last synced: 03 Jul 2025
https://github.com/gentoo/gentoo-apparmor-profiles
[ORIGIN] AppArmor profiles just for Gentoo
apparmor hacktoberfest security
Last synced: 01 Feb 2026
https://github.com/umuttopalak/pass-cli
A secure command-line password manager with AES-256 encryption and sudo authentication
aes-256 cli command-line-tool cryptography keyring password-generator password-manager password-security python security
Last synced: 28 Jul 2025
https://github.com/teh9/laravel-tg-2fa
A simple implementation of a two-factor authentication via Telegram for Laravel
2fa auth authentication laravel login php security telegram two-factor
Last synced: 22 Aug 2025
https://github.com/fodinabor/esposecsignauth
Module for EspoCRM that uses SecSign for Two-Factor Authentication.
Last synced: 01 Aug 2025
https://github.com/windblaze/aegis
MITM protection for MacOS
arp-poisoning arp-spoofing guard macos man-in-the-middle mitm protection security
Last synced: 09 Jul 2025
https://github.com/chriszarate/know-your-deps
Picks a random dependency from your project and splains it to you.
Last synced: 20 Aug 2025
https://github.com/its-ashu-otf/better-win-11
Its all about securing and making Windows 11 Better.
better betterwin11 betterwindows11 debloat debloat-script debloater debloatwindows oem oem-customization oeminfoeditor privacy securewindows security win11 windows windows-10 windows11 winutil winutils
Last synced: 27 Oct 2025
https://github.com/aegisjsproject/core
A fast, secure, modern, light-weight, and simple JS library for creating web components and more!
aegis component-library constructable-stylesheets css custom-elements dom html html-templates sanitizer-api security web-components
Last synced: 16 Jan 2026
https://github.com/akshatvg/secure-hashed-authentication
blake2b & md5 based registration and login in PHP to show a secure hashed password.
algorithm authentication blake2b blake2b-hash-algorithm cyber-security hashing login md5 networks nis php project register security
Last synced: 31 Jul 2025
https://github.com/vaibhavpandeyvpz/phuck
Single-file shell to f__k vulnerable PHP servers, solely for educational and research purposes. Powered by Bootstrap and React.js, features a file browser and browser based, SSH like terminal.
administraction file-manager hacking security shell ssh sysadmin terminal
Last synced: 24 Apr 2025
https://github.com/TheAmazingPT/passman
A dmenu frontend for password-store (Pass: The Standard Unix Password Manager)
bash dmenu linux manager pass password password-store security unix
Last synced: 22 Apr 2025
https://github.com/authress/authress-local
Local running version of an Authorization API in a container
api authentication authorization authress container offline sdk security
Last synced: 13 May 2025
https://github.com/fabian-hk/secure-two-party-computation
Python implementation of the TPC protocol from the paper "Authenticated Garbling and Efficient Maliciously Secure Two-Party Computation"
google-protocol-buffers multi-party-computation network-communication python3 secure-computation security tpc two-party-computation
Last synced: 14 Apr 2025
https://github.com/cwshugg/gurthang
[Masters Thesis] A connection-multiplexing web server fuzzing harness for AFL++.
afl aflplusplus fuzzing networking security systems-programming
Last synced: 19 Apr 2025
https://github.com/adrianmoisey/sitescanners
A few services that scan websites and return useful information.
hacktoberfest http2 ipv6 readme security ssl webdev
Last synced: 16 Jan 2026
https://github.com/mjorgegulab/nestjs-cryptography
Secure NestJS cryptography module 🔐
cryptography javascript nest nestjs node security typescript
Last synced: 27 Jul 2025
https://github.com/codeintelligencetesting/gofuzz
Bug detectors for Golang
bug-detection fuzzing golang security
Last synced: 11 Apr 2025
https://github.com/wtanaka/ansible-role-certbot
Ansible role to install certbot
ansible ansible-galaxy ansible-role ansible-roles certbot galaxy https letsencrypt letsencrypt-utils security
Last synced: 01 Aug 2025
https://github.com/mufeedvh/okjson
A fast, simple, and pythonic JSON Schema Validator.
json jsonschema jsonschema-python-library jsonschema-validator schema security validation validation-library
Last synced: 01 Apr 2025
https://github.com/picobaz/nexusbrute
NexusBrute: A modular Node.js brute-force login tester for ethical security audits. Simulate password attacks with smart patterns, auto-CSRF handling, and CSV logging. Harden your systems—use with permission only!
bruteforce cybersecurity ethical-hacking login-tester nodejs password-audit penetration-testing security web-security
Last synced: 06 Jan 2026
https://github.com/celenityy/macos-settings
My recommendations for the ultimate macOS Configuration :)
apple apple-silicon hardened hardening imac mac macbook macbook-configuration macbook-setup macbooks macos macos-setup macosx osx osx-setup privacy privacy-protection security security-hardening
Last synced: 10 Jun 2025
https://github.com/rabbit-company/passwordgenerator-js
Password generator implemented in JavaScript (ES6).
generator password security strength
Last synced: 13 Jul 2025
https://github.com/r3dhulk/sqli-detector-in-ruby
SQL Detector Tool In Ruby
blackhat ethical ethical-hacking ethical-hacking-tools ethicalhacking hacking hacking-tool penetration-testing pentesting ruby ruby-for-ethical-hacker ruby-for-ethical-hackers ruby-for-ethical-hacking ruby-on-rails security sql sqli-scanner sqli-vulnerability-scanner
Last synced: 09 Oct 2025
https://github.com/exxeta/flutter-security-toolkit
Mobile Security Toolkit for Flutter
flutter security security-tools
Last synced: 23 Oct 2025
https://github.com/dragonbe/poc-webapp-vault
A proof-of-concept to connect a PHP web application to a MySQL database using credentials provided by Hashicorp Vault
database mysql php proof-of-concept security vault webapp
Last synced: 16 Mar 2026
https://github.com/jamiesonio/defectdojo-mcp
An experimental ModelContextProtocol server connecting LLMs to DefectDojo for AI-powered security workflows. Enables natural language interaction with vulnerability data, simplifies security analysis, and automates reporting through a lightweight middleware integration.
appsec defectdojo devsecops fastmcp mcp security security-automation
Last synced: 01 May 2026
https://github.com/itcmsgr/nftban
NFTBan is an open-source Linux Intrusion Prevention System (IPS) and firewall manager built on nftables, designed to integrate cleanly with modern Linux security stacks.
ai-security almalinux centos debian fail2ban firewall firewall-management intrusion-prevention ips linux nftables red-hat rocky rocky-linux rockylinux security suricata ubuntu zabbix
Last synced: 04 Jul 2026
https://github.com/aginies/virt-scenario
Prepare a Virtual Machine libvirt XML config and the host to match a specific scenario usage
alp confidential-computing host libvirt opensuse qemu scenarios secure-computation security sev sev-es suse virtual-machine virtualization xml xml-schema
Last synced: 09 Oct 2025
https://github.com/mondoohq/terraform-provider-mondoo
Terraform Mondoo provider
Last synced: 02 Apr 2026
https://github.com/richonn/shieldci
GitHub Action that auto-generates hardened CI/CD DevSecOps pipelines — lint, tests, Trivy, Gitleaks, SAST and more — and opens a PR with the generated workflows.
automation ci-cd devops devsecops github-actions gitleaks golang pipeline sast security trivy
Last synced: 30 May 2026
https://github.com/0xjonaseb11/dn404_marketplace.3.0
A DN404 Marketplace built on ERC404 token standard inspired by Pandora coin
auditing dn404 erc404 ethereum marketplaces nfts security smartcontracts solidity tokens
Last synced: 21 Apr 2026
https://github.com/sap-samples/btp-sac-forecast
This scenario is primarily intended to empower data driven decisions through analytics forecast using SAP Analytics Cloud, BTP extension application and SAP Build Work Zone, standard edition.
cloud-foundry sample sample-code sap-analytics-cloud sap-btp sap-build-work-zone-standard-edition sap-cap sap-hana-cloud security story
Last synced: 06 Feb 2026
https://github.com/zabojeb/phpgp
phPGP - tool to store your PGP keys on the physical storage (USB, flash drive etc.)
cryptography cybersecurity encoding gnupg gpg pgp pypi python security usb
Last synced: 29 Jan 2026
https://github.com/stuvusit/openvpn
Ansible openvpn role
ansible ansible-role apt openvpn security ubuntu vpn
Last synced: 15 Oct 2025