security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#911lgpl-3.0
5 months ago
analysisanalyzercode
osx-security-awesome
A collection of OSX and iOS security resources
705apache-2.0
4 months ago
awesomeawesome-listhacking-mac
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin765gpl-3.0
6 months ago
androidandroidanimationandroidviewmodel
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1323cc0-1.0
last month
awesomeawesome-listcourses
android-security-awesome
A collection of android security related resources
Shell7706apache-2.0
2 months ago
androidawesomeawesome-list
awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
387
4 months ago
awesomeawesome-listllm
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
4936
21 days ago
awesome-listbest-practicesblue-team
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
437
4 months ago
awesomeawesome-listble
awesome-embedded-and-iot-security
A curated list of awesome embedded and IoT security resources.
1555cc0-1.0
6 months ago
awesomeawesome-listembedded
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8055apache-2.0
2 months ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1495apache-2.0
6 months ago
awesomeawesome-listhacktoberfest
security-apis
A collective list of public APIs for use in security. Contributions welcome
838mit
10 months ago
awesome-listjsonjson-api
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
2825cc0-1.0
3 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#247mit
5 months ago
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript15680other
5 days ago
awesomeawesome-listcensorship
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
984mit
5 months ago
cryptosecuritysecurity-tools
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
11385mit
3 months ago
awesome-listsecurity
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
21736mit
4 months ago
apijwtoauth2
ada-security
Ada Security - OAuth 2.0 client and server framework to secure web applications
Ada20apache-2.0
7 months ago
adaauthenticationjwt
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
781gpl-2.0
2 months ago
cybersecuritynewsletter
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript74apache-2.0
9 months ago
carbon-design-systemibm-securityjavascript
rust-security-framework
Bindings to the macOS Security.framework
Rust210apache-2.0
4 months ago
keychainmacosrust
awesome-web-security
🐶 A curated list of Web Security materials and resources.
10715
2 months ago
awesomeawesome-listlist
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16288gpl-3.0
12 days ago
android-securityapi-testingapk
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11267cc-by-sa-4.0
4 days ago
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl37other
last month
sastsecuritystatic-analysis
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL543other
last month
awsaws-security-groupaws-vpc
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2472gpl-3.0
26 days ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python9547apache-2.0
8 hours ago
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
Python20877mit
24 days ago
appledisk-encryptiondnscrypt-proxy
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell8752apache-2.0
2 months ago
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1807apache-2.0
19 days ago
appseccicdctf
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript496apache-2.0
yesterday
actionsegress-filteringgithub-actions
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go1733other
4 days ago
appseccode-qualitycompliance
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP51177mit
4 months ago
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python124mit
9 months ago
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, co
Python3131mit
3 days ago
auditingsecurityssh
reg
Docker registry v2 command line client and repo listing generator with security
Go1624mit
7 months ago
clicontainersdocker
vast
Easy data pipelines for security teams.
C++500bsd-3-clause
10 months ago
actor-modelbitmap-indexdataops
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8234other
11 hours ago
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go13721mit
2 days ago
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python931agpl-3.0
8 days ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL6916mit
last month
codeqlgithub-advanced-securitygithub-security-lab
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#567mit
7 months ago
hacktoberfest
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript634mit
10 months ago
blueteamredteamsecret-management
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift142mit
11 months ago
brokenhandssecurityserver-side-swift
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1279other
25 days ago
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3683mit
last month
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
last month
ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargat
TypeScript4630apache-2.0
5 days ago
cloud-nativecloudsecuritycnapp
progpilot
A static analysis tool for security
PHP306mit
9 months ago
phpsecurity-toolsstatic-code-analysis
LogESP
Open Source SIEM (Security Information and Event Management system).
Python183mit
8 months ago
asset-managementforensicslog
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python2998mit
13 days ago
enumerationfuzzinghacking
fleet
Open-source platform for IT, security, and infrastructure teams. (Linux, macOS,
Go2021other
last month
device-managementemployee-experienceendpoint-ops
Astra
Automated Security Testing For REST API's
Python2425apache-2.0
23 days ago
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin382gpl-3.0
2 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python476mit
5 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
gatsby
The best React-based framework with performance, scalability and security built
JavaScript54851mit
5 months ago
blogcompilergatsby
secure_headers
Manages application of security headers with many safe defaults
Ruby3122mit
8 months ago
content-security-policycookiecsp
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go4912bsd-3-clause
2 months ago
gouuid
shield
Comprehensive security for Lucky framework
Crystal52mit
6 months ago
authenticationcrystallucky-framework
GraphCrawler
GraphQL automated security testing toolkit
Python284mit
2 months ago
apiapi-hackingautomated-testing
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1306mit
11 months ago
bugbountyenumerationpenetration-testing
qark
Tool to look for several security related Android application vulnerabilities
Python3134other
3 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#731other
2 months ago
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#717mit
3 months ago
sobelow
Security-focused static analysis for the Phoenix Framework
Elixir1478apache-2.0
11 months ago
elixirphoenix-frameworksecurity
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua5912gpl-3.0
15 hours ago
dockerebpfipfix
awesome-appsec
A curated list of resources for learning about application security
PHP6089mit
8 months ago
application-securitycuratedowasp
PatrowlManager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Plat
HTML590agpl-3.0
6 months ago
apiautomationincident-response
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP370bsd-3-clause
9 months ago
acldemophalcon
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6747other
7 months ago
brakemanrailsruby
SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list,
2632mit
last month
composerinfosecphp
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go3930other
10 hours ago
bigquerycustomer-datacustomer-data-lake
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python342gpl-2.0
22 days ago
magevulndb
List of Magento extensions with known security issues.
PHP192
3 months ago
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1453gpl-3.0
6 months ago
androidandroid-developmentfile-manager
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4507apache-2.0
11 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1307mit
6 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby723mit
5 months ago
codereviewcybersecurityhanami
solcurity
Opinionated security and code quality standard for Solidity smart contracts.
1931
10 months ago
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2198mit
4 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift225mit
4 months ago
aesaes-256aes-encryption
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript308mit
8 months ago
browser-extensionchrome-extensioncybersecurity
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go178apache-2.0
8 days ago
clictfdcybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3199apache-2.0
last month
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2716apache-2.0
2 months ago
chrootlinuxlinux-namespaces
caringcaribou
A friendly car security exploration tool for the CAN bus
Python670gpl-3.0
8 days ago
can-busecufuzzing
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript929apache-2.0
10 months ago
electronelectron-appnodejs
lockfile-lint
Lint an npm or yarn lockfile to analyze and detect security issues
JavaScript744apache-2.0
8 months ago
hacktoberfestlintlinter
diffy
:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit
Python636apache-2.0
3 months ago
dfirforensicssecurity
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java398apache-2.0
7 months ago
authenticationauthorizationcas
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java122apache-2.0
4 months ago
authenticationauthorizationcas
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript461mit
2 days ago
apolloapollo-servercybersecurity
tutanota
Description Tuta (formerly Tutanota), the fully secure encrypted email and ca
TypeScript5736gpl-3.0
12 hours ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP1596agpl-3.0
4 days ago
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1271apache-2.0
4 months ago
cryptocryptographydatabase-proxy
fwanalyzer
a tool to analyze filesystem images for security
Go481apache-2.0
7 months ago
androidembedded-linuxfilesystem
InviZible
Android application for online privacy and security
Java1269gpl-3.0
yesterday
advertisingandroidandroid-application
honggfuzz
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin
C2975apache-2.0
last month
cfuzzingsecurity
hblock
Improve your security and privacy by blocking ads, tracking and malware domains.
Shell1463mit
2 months ago
ad-blockeradblockadblocker
cyberowl
A daily updated summary of the most frequent types of security advisories curren
Python241mit
2 months ago
cisacvesecurity
safenotes
Safe Notes is a security project aimed at providing an encrypted, private note m
Dart206gpl-3.0
3 days ago
androidanonymitydart
matano
Open source security data lake for threat hunting, detection & response, and cyb
Rust1354apache-2.0
2 months ago
alertingapache-icebergaws
android-money-manager-ex
Manage your finances on-the-go, encrypted for security, sync via your own cloud
Java432gpl-3.0
3 days ago
androidcipherencryption
fibratus
A modern tool for Windows kernel exploration and tracing with a focus on securit
Go2072other
4 days ago
edrgolanginstrumentation
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CT
Python56794mit
13 hours ago
bountybugbountybypass
drozer
The Leading Security Assessment Framework for Android.
Python3603other
6 days ago
androiddrozerjava
cherrybomb
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined use
Rust1018apache-2.0
3 months ago
apiapi-securitybest-practices
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
Go3956apache-2.0
2 months ago
openssf-scorecardscorecard
PortAuthority
A handy systems and security-focused tool, Port Authority is a very fast Android
Java331gpl-3.0
8 months ago
androiddns-lookupjava
rails-template
Application template for Rails 7 projects; preloaded with best practices for TDD
Ruby216other
2 months ago
ackamarailsrails-template
hubble
Hubble - Network, Service & Security Observability for Kubernetes using eBPF
Go3174apache-2.0
2 months ago
ciliumebpfkubernetes
Awesome-SOAR
A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome
727
last month
awesome-fuzzing
A curated list of awesome Fuzzing(or Fuzz Testing) for software security
766
5 months ago
awesomeawesome-listcpuu
graphql-cop
Security Auditor Utility for GraphQL APIs
Python268mit
7 months ago
auditingblue-teamgraphql
Flask-AppBuilder
Simple and rapid application development framework, built on top of Flask. inclu
Python4511bsd-3-clause
17 days ago
authenticationcrudflask
emba
EMBA - The firmware security analyzer
Shell2422gpl-3.0
16 hours ago
artificial-intelligencebinary-analysisembedded-linux
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android app
Java2203lgpl-3.0
2 months ago
bytecodecode-analysiscwe
OpenSK
OpenSK is an open-source implementation for security keys written in Rust that s
Rust2797apache-2.0
4 months ago
ctap2embeddedfido2
gotham
A flexible web framework that promotes stability, safety, security and speed.
Rust2216other
2 months ago
asyncgothamlearning-gotham
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security resea
76294cc0-1.0
2 months ago
androidawesomebug-bounty
awesome-canbus
:articulated_lorry: Awesome CAN bus tools, hardware and resources for Cyber Secu
1765cc0-1.0
2 months ago
automotiveautomotive-securityawesome
strong-node
:heavy_check_mark: More than 100 security checks for your Node.js API
JavaScript495
3 days ago
is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript
JavaScript1902apache-2.0
8 months ago
hacktoberfestlighthousenodejs
secrets.clj
A library designed to generate cryptographically strong random numbers suitable
Clojure87mit
8 months ago
authenticationchoicesclj
DevSkim
DevSkim is a set of IDE plugins, language analyzers, and rules that provide secu
C#883mit
29 days ago
lintersdlsecurity
zuul
Zuul is a gateway service that provides dynamic routing, monitoring, resiliency,
Java13037apache-2.0
4 months ago
NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 sec
HTML1826apache-2.0
2 months ago
dockerherokujavascript
pac4j
Security engine for Java (authentication, authorization, multi frameworks): OAut
Java2369apache-2.0
last month
authenticationauthorizationcas
pareto-mac
Automatically audit your Mac for basic security hygiene.
Swift302gpl-3.0
last month
endpoint-securitymacossecurity
panel
Pterodactyl® is a free, open-source game server management panel built with PHP,
PHP6014other
9 days ago
dockerfreegames
action-tfsec
Run tfsec with reviewdog on pull requests to enforce security best practices
Shell68mit
7 days ago
reviewdogterrafromtfsec
secure-electron-template
The best way to build Electron apps with security in mind.
JavaScript1581mit
5 months ago
boilerplateelectroni18next
cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Python2434bsd-3-clause
4 days ago
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/adm
CSS5356mit
6 days ago
blueteamforensicshacking
advisory-db
Security advisory database for Rust crates published through crates.io
815other
2 months ago
rustsecuritysecurity-advisories
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive s
PowerShell8328other
8 months ago
activedirectoryhackinginfosec
sast-scan
Scan is a free & Open Source DevSecOps tool for performing static analysis based
Python760apache-2.0
8 months ago
appsecdependency-scandevsecops
tenzir
Open source security data pipelines.
C++609bsd-3-clause
3 days ago
dataopsincident-responseinvestigation
VeraCrypt
Disk encryption with strong security based on TrueCrypt
C5854other
3 months ago
encryptionencryption-algorithmsencryption-decryption
awesome-privacy
Description Strongbox is an application for keeping all your passwords safely
Astro5950cc0-1.0
4 days ago
awesomeawesome-listhacktoberfest
building-secure-contracts
Guidelines and training material to write secure smart contracts
Solidity2075agpl-3.0
16 hours ago
cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml
Python5070apache-2.0
4 months ago
awsazurecloud
cloud-concierge
Codify resources outside of Terraform control, detect drift, estimate cloud cost
Go151apache-2.0
6 months ago
awsazurermcontainers
nix-bitcoin
A collection of Nix packages and NixOS modules for easily installing full-featur
Nix409mit
4 months ago
bitcoinbitcoindnix
Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collabo
Shell1259agpl-3.0
12 hours ago
agplv3automationcybersecurity
weggli
weggli is a fast and robust semantic search tool for C and C++ codebases. It is
Rust2237apache-2.0
3 months ago
KryptEY
Android keyboard for secure E2EE communication through the signal protocol in an
Java585gpl-3.0
4 days ago
androidandroid-keyboardchat-control
How-To-Secure-A-Linux-Server
An evolving how-to guide for securing a Linux server.
16701cc-by-sa-4.0
14 days ago
cc-by-sahardeninghardening-steps
substation
Substation is a cloud-native, event-driven data pipeline toolkit built for secur
Go261mit
last month
awsdata-engineeringdata-processing
kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigur
Open Policy Agent1791apache-2.0
4 months ago
appseccloudnativedevsecops
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists
Shell12509gpl-3.0
16 days ago
auditingcompliancedevops
crowdsec
CrowdSec - the open-source and participative security solution offering crowdsou
Go7771mit
3 days ago
attacks-preventiondetectionlinux
regula
Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s m
Open Policy Agent909apache-2.0
4 months ago
OwaspHeaders.Core
A .NET Core middleware for injecting the Owasp recommended HTTP Headers for incr
C#255mit
5 months ago
aspnetcorehttp-headermiddleware
validiac
ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Co
TypeScript217other
4 months ago
ObjectivePGP
ObjectivePGP is an open-source library for iOS and macOS that provides developer
Objective-C654other
5 months ago
encryptionframeworkios
beep
BEEP Account Security Scanner - Detect if your credentials have been compromised
Objective-C155mit
10 months ago
ionicionic4vue
OpenAM
OpenAM is an open access management solution that includes Authentication, SSO,
Java668other
5 months ago
aaaaccessaccess-management
bandit
Bandit is a tool designed to find common security issues in Python code.
Python5991apache-2.0
3 days ago
banditlinterpython
cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations
JavaScript1840bsd-3-clause
4 months ago
awsaws-iamaws-security
sonar-java
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Java1050lgpl-3.0
5 months ago
analysisanalyzerjava
wemake-django-template
Bleeding edge django template focused on code quality and security.
Python1904mit
2 months ago
caddycookiecuttercookiecutter-template
kube-score
Kubernetes object analysis with recommendations for improved reliability and sec
Go2584mit
8 days ago
analysisautomationcharts
speed-camera
A Unix, Windows, Raspberry Pi Object Speed Camera using python, opencv, video st
Python898apache-2.0
2 months ago
matplotlib-pyplotmotion-trackingmoving
paseto-dotnet
🔑 Paseto.NET, a Paseto (Platform-Agnostic Security Tokens) implementation for .
C#81mit
9 months ago
dotnetdotnet-corenetstandard
Android-InsecureBankv2
Vulnerable Android application for developers and security enthusiasts to learn
Java1190mit
9 days ago
mutual-tls-ssl
🔐 Tutorial of setting up Security for your API with one way authentication with
Java540apache-2.0
last month
certificatecertificate-authoritycertificate-signing-request
Secur
A FOSS, cross-platform TOTP client written in Flutter with the aim of providing
Dart3mit
3 years ago
Free-Security-eBooks
Free Security and Hacking eBooks
4139
5 years ago
cloud-securitycyber-securityebooks
mana-security-app
macOS vulnerability management for individuals
JavaScript21mit
last year
cybersecurityelectronmacos
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python83
5 years ago
automotive-securitycar-hacking
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript35other
2 years ago
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python965mit
4 years ago
automationblue-teamblue-teams
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
4 years ago
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1263apache-2.0
5 years ago
aspnet-product
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1814mit
4 years ago
checklistrailsruby
awesome-evm-security
🕶 A high-level overview of the EVM security ecosystem
151cc0-1.0
2 years ago
awesomeawesome-listblockchain
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python28apache-2.0
8 years ago
awesome-websocket-security
Awesome information for WebSockets security research
237apache-2.0
2 years ago
securitysecurity-toolsweb-application-security
security-belt
🥋 Framework for continuously improving the IT-Security of your teams through ga
JavaScript73apache-2.0
2 years ago
gamificationjavascriptmaturity-model
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
6 years ago
code-analysisroslynroslyn-analyzer
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP701gpl-3.0
last year
phpphp-codesnifferphpcs
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3056
3 years ago
dfirhuntingids
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin248gpl-3.0
last year
activismadvicecrypto
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
5 years ago
assessmentcybersecurityframework
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python843other
last year
audit-siphacking-toolspassword-cracker
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2161gpl-2.0
3 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#561
4 years ago
aspnetcorekatanaoauth2
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript67bsd-3-clause
3 years ago
appseceducationtraining-materials
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
iOS-App-Security-Class
Simple class to check if app has been cracked, being debugged or enriched with c
Objective-C74mit
6 years ago
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#436mpl-2.0
last year
k-rail
Kubernetes security tool for policy enforcement
Go444apache-2.0
last year
k8skuberneteskubernetes-security
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2819mpl-2.0
2 years ago
stronghold
Easily configure macOS security settings from the terminal.
Python1046mit
5 years ago
command-linecommand-line-toolhardening
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1096gpl-3.0
5 years ago
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2274apache-2.0
2 years ago
aflafl-fuzzbug-hunting
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go918
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir50mit
last year
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell236mit
last year
firebasefirebase-firestorehaskell
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1834
last year
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript359other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go484mit
2 years ago
androidandroid-securitycli
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1326other
last year
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
8 years ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust920mit
2 years ago
actixhandlebarshttp
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4345apache-2.0
3 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
622
last year
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#87mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java905other
4 years ago
analysiscontrol-systemsics
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go789mit
last year
authauthenticationdecoder
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C638mit
3 years ago
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust25apache-2.0
last year
devopsdevops-toolsrust
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
last year
aws-cdkciscis-controls
black-mirror
Blacklists and whitelists that aim to promote security, safety, and sanity acros
Shell106agpl-3.0
last year
adblock-listblackhole-listsblacklist
metta
An information security preparedness tool to do adversarial simulation.
Python1075mit
5 years ago
adversarialceleryinfosec
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
9 years ago
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python255bsd-3-clause
last year
cifcif3ids
ShinobiCE
Shinobi Community Edition (CE) is a GPLv3+AGPLv3 release of Shinobi. The Free Op
JavaScript111other
3 years ago
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
3 years ago
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
736
2 years ago
k9-cdk
Provision strong AWS security policies easily using the AWS CDK, v1 or v2.
TypeScript8apache-2.0
last year
awscdkiam
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1710
4 years ago
hardeningsecuritywindows
HaboMalHunter
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.
Python722other
last year
dynamic-analysiselflinux
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java78other
last year
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java78other
last year
CANalyzat0r
Security analysis toolkit for proprietary car protocols
Python724gpl-3.0
2 years ago
automotive-securitycarhackingreverse-engineering
wagtailenforcer
The Wagtail arm of the law - enforce security protocols on your Wagtail site
Python44
2 years ago
axessecuritysecurity-protocol
pyramid_simpleauth
Session based authentication and role based security for a Pyramid web applicati
Python33unlicense
last year
wysihtml5
Open source rich text editor based on HTML5 and the progressive-enhancement appr
JavaScript6503mit
8 years ago
vsfire
Visual Studio Code extension for syntax highlighting, hover help and code comple
TypeScript75mit
4 years ago
firebasefirebase-storagevscode
mqtt-pwn
MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se
Python318gpl-3.0
last year
exploitationiotmqtt
RCTF
Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.
32gpl-3.0
4 years ago
ctf-challengesctf-platformcybersecurity
user.js
Firefox privacy, security and anti-tracking: a comprehensive user.js template fo
JavaScript6519mit
last year
anti-fingerprintinganti-trackingarkenfox
ssh-audit
SSH server auditing (banner, key exchange, encryption, mac, compression, compati
Python2922mit
3 years ago
mkit
MKIT is a Managed Kubernetes Inspection Tool that validates several common secur
Dockerfile400mit
3 years ago
aksawsazure
awesome-electronjs-hacking
A curated list of awesome resources about Electron.js (in)security
536
last year
awesome-rtc-hacking
a list of awesome resources related to security and hacking of VoIP, WebRTC and
356cc0-1.0
last year
awesomeawesome-listsbug-bounty
awesome-lockpicking
:unlock::sunglasses: A curated list of awesome guides, tools, and other resource
1307cc0-1.0
2 years ago
awesomeawesome-listkeypicking
weggli
weggli is a fast and robust semantic search tool for C and C++ codebases. It is
Rust1979apache-2.0
last year
Heimdall
Heimdall is a wrapper around the Security framework for simple encryption/decryp
Swift401mit
4 years ago
aesencrypted-messagesios
ironbee
Universal web application security sensor intended for real-time monitoring and
XSLT297apache-2.0
8 years ago
Vuldroid
Vuldroid is a Vulnerable Android Application made with security issues in order
Java55mit
3 years ago
android-applicationandroid-securityapplication-security
klaro
Klaro! A privacy and security tool for your website.
JavaScript964other
2 years ago
ccpacmpconsent
bpflock
bpflock - eBPF driven security for locking and auditing Linux machines
C132apache-2.0
2 years ago
bpfcontainersebpf
Logibit.Hawk
A F# Hawk implementation with a strongly typed API that guides your usage and mi
F#36other
6 years ago
awesome-es
A collection of awesome resources for Splunk Enterprise Security
17cc0-1.0
4 years ago
awesomeawesome-listsplunk
corbfuzz
Code for ASE'21 Paper "CorbFuzz: Checking Browser Security Policies with Fuzzing
C3mit
3 years ago
browser-securityconcolic-executionfuzzing
raspberry-pi-kernel-hardened
Cross-compile the Linux kernel for Raspberry Pi with enhanced security in a sing
Shell19mit
2 years ago
linux-kernelraspberry-piraspberrypi-kernel
dlint-check
Github Action to run dlint security linter on your Python code
Dockerfile2mit
3 years ago
flake8github-actionslinter
drydock
drydock provides a flexible way of assessing the security of your Docker daemon
Python63gpl-2.0
8 years ago
auditdockersecurity
StaDynA
StaDynA: Addressing the Problem of Dynamic Code Updates in the Security Analysis
20
last year
androidandroid-securitydynamic-analysis
expliot
EXPLIoT - Internet of Things Security Testing and Exploitation framework
Python89agpl-3.0
2 years ago
ExploitatioInternet of Thingshacking
Universal Android Debloater
Bash script using ADB to debloat **rooted and non-rooted** android devices. Impr
Shell399gpl-3.0
3 years ago
androidbattery lifebloatware
Secure-Pref-Manager
Secure Preference Manager for android. It uses various Encryption to protect you
Java70apache-2.0
7 years ago
androidencryptionhide-preferences
force-dot-com-esapi
Enterprise Security API for the Apex language on the Force.com platform.
Apex124bsd-3-clause
3 years ago
goSecretBoxPassword
A probably paranoid Golang utility library for securely hashing and encrypting p
Go58mit
2 years ago
credentialsgolanggolang-library
ewok-kernel
A secure and high performances microkernel for building secure MCU-based IoTs
Ada72apache-2.0
3 years ago
adaarmarmv7m
stormpath-sdk-dotnet
The Official Stormpath SDK for C# and Visual Basic. Stormpath enables developer
C#53apache-2.0
7 years ago
secure-quick-reliable-login
This repository is an implementation for SQRL (Secure Quick Reliable Login) on A
Java114mit
2 years ago
secure-remote-password
Crystal implementation of the Secure Remote Password protocol (SRP-6a)
Crystal5mit
2 years ago
noble-ripemd160
Noble RIPEMD160. High-security, easily auditable, 0-dep, 1-file hash function
TypeScript16mit
3 years ago
cryptographyhashjavascript
Secure-File-Manager
Secure File Manager is open source file manager for keeping your files in safe.
Kotlin158gpl-3.0
2 years ago
androidencryptionfilemanager
roverz
Description Groups - 1:1 / Private / PublicSecurely connect with a team membe
JavaScript44apache-2.0
6 years ago
android-appchatcollaboration
android-vts
Android Vulnerability Test Suite - In the spirit of open data collection, and wi
Java1013other
5 years ago
interpol
The "interpol" security string interpolation library and the "police" command li
Go2gpl-2.0
2 years ago
golangsecurity-tools
Excision-Mail
Fullstack, security focused, personal mail server based on OpenSMTPD for OpenBSD
Jinja149isc
last year
ansibleansible-playbookclamav
vue-kindergarten
Modular security for Vue, Vuex, Vue-Router and Nuxt
JavaScript311mit
5 years ago
javascriptkindergartennuxt
MARA_Framework
MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a
Python611lgpl-3.0
5 years ago
arch-audit
A utility like pkg-audit for Arch Linux. Based on Arch Security Team data.
Rust30mit
3 years ago
extension-dashboard-m2
A Magento 2 dashboard to display installed extensions. Read the blog post on som
PHP37
2 years ago
Windows-Secure-Host-Baseline
Configuration guidance for implementing the Windows 10 and Windows Server 2016 D
HTML1519other
last year
adobe-readerapplockeraudit
WELA
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs!
PowerShell678gpl-3.0
last year
analysisdfirevent
PSRecon
:rocket: PSRecon gathers data from a remote Windows host using PowerShell (v2 or
PowerShell472apache-2.0
7 years ago
retter
A collection of hash functions, ciphers, tools, libraries, and materials related
C88
7 years ago
OWASP-GoatDroid-Project
*This project is no longer maintained* OWASP GoatDroid is a fully functional and
Java236
10 years ago
api-gateway-secure-pet-store
Amazon API Gateway sample using Amazon Cognito credentials through AWS Lambda
Objective-C309apache-2.0
3 years ago
Insular
Isolate your big brother apps https://secure-system.gitlab.io/Insular/
Java96apache-2.0
2 years ago
androidbig brotherprivacy
SharedChamber
Android Secure SharedPreferences Using Facebook Conceal Encryption
Java95mit
4 years ago
androidandroid-secure-sharedpreferencesconceal
plug_password
Simple plug to secure your server with password
Elixir10mit
6 years ago
authenticationelixirlibrary
Applied-Crypto-Hardening
Best Current Practices regarding secure online communication and configuration o
TeX706
2 years ago
applied-cryptographybest-practicescryptography
beyond
BeyondCorp-inspired HTTPS/SSO Access Proxy. Secure internal services outside you
Go245other
2 years ago
beyondcorpfederationgolang
skyhook
Send and recieve files securely through the IPFS network
Python30gpl-3.0
3 years ago
aes-256aes-encryptionfile
ucryptoauthlib
Lightweight driver for Microchip's Crypto Authentication secure elements written
Python37mit
3 years ago
ateccatecc508aatecc608a
see
Sandboxed Execution Environment
Python805apache-2.0
4 years ago
malware-analysismalware-researchpython
Lockbox
Objective-C utility class for storing data securely in the key chain.
Objective-C850mit
last year
Smallfolk
A fast, robust, secure, richly-featured table serialisation library for Lua
Lua19mit
8 years ago
BlueSSLService
SSL/TLS Add-in for BlueSocket using Secure Transport and OpenSSL
Swift95apache-2.0
2 years ago
linuxmacosnetworking
passera
[UNSUPPORTED] A small tool to turn any entered passphrase into a strong secure p
Go62other
6 years ago
PyGrid
A Peer-to-peer Platform for Secure, Privacy-preserving, Decentralized Data Scien
Python613apache-2.0
last year
peer-to-peerpygridpython
PyGrid-deprecated---see-PySyft-
A Peer-to-peer Platform for Secure, Privacy-preserving, Decentralized Data Scien
Python611apache-2.0
last year
peer-to-peerpygridpython
SscPublish
Publish extension to Sitecore.Services.Client - A Web API method to securely tri
C#1gpl-3.0
2 years ago
HAVK
An attempt at a minimalistic and secure operating system.
Ada23gpl-3.0
3 years ago
adakerneloperating-system
jackson
Pythonic way of keeping secrets secure in JSON
Python18apache-2.0
3 years ago
json-parserpythonsecret-in-json
FXML
Secure-by-default, error-recovering XML parser and serializer in Common Lisp
Common Lisp29other
3 years ago
NoteCrypt
Keep your notes safe and secure with Note Crypt for Android!
Java39gpl-3.0
4 years ago
androidbackupcrypt
patchwork
A decentralized messaging and sharing app built on top of Secure Scuttlebutt (SS
JavaScript3567agpl-3.0
3 years ago
decentralizeddecentralized-messagingelectron
super
Secure, Unified, Powerful and Extensible Rust Android Analyzer
Rust413gpl-3.0
4 years ago
analyzerandroidandroid-analyzer
plug_secex
Plug that adds various HTTP Headers to make Phoenix/Elixir app more secure
Elixir27apache-2.0
3 years ago
elixirhexhex-downloads
SecureEnclaveCrypto
Demonstration library for using the Secure Enclave on iOS
Swift279apache-2.0
3 years ago
applecryptoios
trebleshot/android
An open-source app that allows you to transfer files one to one securely or usin
Kotlin135gpl-2.0
3 years ago
androidapplicationfile
aeacus
A simple, secure, and highly configurable Elixir identity [username | email | id
Elixir37other
2 years ago
Yubico Authenticator
Store your unique credential on a hardware-backed security key and take it where
Kotlin236bsd-2-clause
last year
nfcoathtotp
Swift-CircleMenu
Description ASTROLABE CETUS app is Intended for use with products from ASTROL
Swift125mit
7 years ago
AuthenticationWithClientSideBlazor
Companion code sample for my blog post - Authentication with client-side Blazor
C#233mit
3 years ago
aspnetcore-identityaspnetcore-webapiaspnetcoreidentity
datalisk
Secure data rooms for business critical data - powered by Blockchain
7
2 years ago
dropboxend-to-end-encryptionfilesync
subuser
Run programs on linux with selectively restricted permissions.
Python885lgpl-3.0
2 years ago
containersdockerpython
chatter_ex
Chatter library for Elixir, provides a secure broadcast between nodes.
Elixir29mit
8 years ago
Crypter
🔓✨🔒 An innovative, convenient and secure encryption app
JavaScript454mit
3 years ago
clientcross-platformcrypter
oogway
A secure Bitcoin utility library for Python
Python10mit
3 years ago
bitcoinbitcoin-clibitcoin-library
Password Generator
Password Generator is a simple Android application which generates secure passwo
Kotlin10apache-2.0
2 years ago
Password Master
Password Master generates and manages passwords in a secure encrypted database.
Kotlin2
3 years ago