security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#930lgpl-3.0
2 months ago
analysisanalyzercode
osx-security-awesome
A collection of OSX and iOS security resources
721apache-2.0
8 months ago
awesomeawesome-listhacking-mac
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin772gpl-3.0
11 months ago
androidandroidanimationandroidviewmodel
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1570cc0-1.0
3 months ago
awesomeawesome-listcourses
android-security-awesome
A collection of android security related resources
Shell7959apache-2.0
2 months ago
androidawesomeawesome-list
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
5224
3 months ago
awesome-listbest-practicesblue-team
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
486
9 months ago
awesomeawesome-listble
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8201apache-2.0
5 days ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1562apache-2.0
11 months ago
awesomeawesome-listhacktoberfest
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
3001cc0-1.0
7 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#262mit
10 months ago
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript16519other
last month
awesomeawesome-listcensorship
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
1023mit
10 months ago
cryptosecuritysecurity-tools
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
11965mit
2 months ago
awesome-listsecurity
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
22267mit
5 months ago
apijwtoauth2
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
806gpl-2.0
7 months ago
cybersecuritynewsletter
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript77apache-2.0
2 months ago
carbon-design-systemibm-securityjavascript
rust-security-framework
Bindings to the macOS Security.framework
Rust230apache-2.0
2 months ago
keychainmacosrust
awesome-web-security
🐶 A curated list of Web Security materials and resources.
11139
7 months ago
awesomeawesome-listlist
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16875gpl-3.0
last month
android-securityapi-testingapk
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11530cc-by-sa-4.0
last month
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl44other
12 days ago
sastsecuritystatic-analysis
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin261gpl-3.0
4 months ago
activismadvicecrypto
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL563other
14 days ago
awsaws-security-groupaws-vpc
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2533gpl-3.0
3 months ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python10398apache-2.0
last month
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
21123mit
2 months ago
appledisk-encryptiondnscrypt-proxy
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell9025apache-2.0
4 months ago
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1875apache-2.0
2 months ago
appseccicdctf
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript587apache-2.0
last month
actionsegress-filteringgithub-actions
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go1942other
5 days ago
appseccode-qualitycompliance
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP56833mit
2 days ago
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, co
Python3263mit
2 months ago
auditingsecurityssh
reg
Docker registry v2 command line client and repo listing generator with security
Go1649mit
3 months ago
clicontainersdocker
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8431other
last month
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go14168mit
last month
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python951agpl-3.0
2 months ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL7508mit
18 hours ago
codeqlgithub-advanced-securitygithub-security-lab
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#634mit
2 months ago
hacktoberfest
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2398apache-2.0
3 months ago
aflafl-fuzzbug-hunting
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1288other
5 months ago
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3833mit
16 days ago
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
6 months ago
progpilot
A static analysis tool for security
PHP323mit
2 months ago
phpsecurity-toolsstatic-code-analysis
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python3050mit
3 months ago
enumerationfuzzinghacking
Astra
Automated Security Testing For REST API's
Python2475apache-2.0
3 months ago
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin539gpl-3.0
24 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python481mit
10 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go5169bsd-3-clause
2 months ago
gouuid
GraphCrawler
GraphQL automated security testing toolkit
Python293mit
7 months ago
apiapi-hackingautomated-testing
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1352other
3 months ago
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1343mit
5 months ago
bugbountyenumerationpenetration-testing
qark
Tool to look for several security related Android application vulnerabilities
Python3180other
8 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#767other
last month
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#730mit
8 months ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust983mit
7 months ago
actixhandlebarshttp
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua6094gpl-3.0
last month
dockerebpfipfix
awesome-appsec
A curated list of resources for learning about application security
PHP6226mit
2 months ago
application-securitycuratedowasp
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6944other
2 months ago
brakemanrailsruby
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go4050other
20 hours ago
bigquerycdpcustomer-data
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python349gpl-2.0
3 months ago
magevulndb
List of Magento extensions with known security issues.
PHP199
last month
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1491gpl-3.0
3 months ago
androidandroid-developmentfile-manager
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4679apache-2.0
4 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1345mit
5 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby735mit
6 months ago
codereviewcybersecurityhanami
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2245mit
3 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift227mit
4 months ago
aesaes-256aes-encryption
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go182apache-2.0
last month
clictfdcybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3469apache-2.0
last month
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2880apache-2.0
2 months ago
chrootlinuxlinux-namespaces
caringcaribou
A friendly car security exploration tool for the CAN bus
Python706gpl-3.0
last month
can-busecufuzzing
diffy
:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit
Python632apache-2.0
8 months ago
dfirforensicssecurity
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java124apache-2.0
10 days ago
authenticationauthorizationcas
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript486mit
last month
apolloapollo-servercybersecurity
passbolt_api
Description Take your team's passwords with you wherever you go by downloadin
PHP4508agpl-3.0
2 months ago
cakephpcakephp4credentials
tutanota
Description Tuta (formerly Tutanota), the fully secure encrypted email and ca
TypeScript5971gpl-3.0
18 hours ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP1917agpl-3.0
last month
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1324apache-2.0
2 months ago
cryptocryptographydatabase-proxy
fwanalyzer
a tool to analyze filesystem images for security
Go485apache-2.0
11 months ago
androidembedded-linuxfilesystem
OwaspHeaders.Core
Inject OWASP recommended HTTP Headers for increased security in a single line
C#276mit
4 months ago
aspnetcorehttp-headermiddleware
InviZible
Android application for online privacy and security
Java1425gpl-3.0
5 days ago
advertisingandroidandroid-application
honggfuzz
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin
C3022apache-2.0
2 months ago
cfuzzingsecurity
hblock
Improve your security and privacy by blocking ads, tracking and malware domains.
Shell1539mit
2 months ago
ad-blockeradblockadblocker
cyberowl
A daily updated summary of the most frequent types of security advisories curren
Python241mit
7 months ago
cisacvesecurity
safenotes
Safe Notes is a security project aimed at providing an encrypted, private note m
Dart225gpl-3.0
29 days ago
androidanonymitydart
matano
Open source security data lake for threat hunting, detection & response, and cyb
Rust1433apache-2.0
2 months ago
alertingapache-icebergaws
android-money-manager-ex
Manage your finances on-the-go, encrypted for security, sync via your own cloud
Java477gpl-3.0
3 days ago
androidcipherencryption
fibratus
A modern tool for Windows kernel exploration and tracing with a focus on securit
Go2127other
2 months ago
edrgolanginstrumentation
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CT
Python58983mit
last month
bountybugbountybypass
drozer
The Leading Security Assessment Framework for Android.
Python3753other
2 months ago
androiddrozerjava
scout
Description The Scout - Full App for accessing a Scout server, which is a sta
Go14mit
2 months ago
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
Go4387apache-2.0
yesterday
openssf-scorecardscorecard
rails-template
Application template for Rails 7 projects; preloaded with best practices for TDD
Ruby300other
8 days ago
ackamarailsrails-template
ssh-audit
SSH server auditing (banner, key exchange, encryption, mac, compression, compati
Python2942mit
3 months ago
hubble
Hubble - Network, Service & Security Observability for Kubernetes using eBPF
Makefile3406apache-2.0
2 months ago
ciliumebpfkubernetes
Awesome-SOAR
A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome
772
6 months ago
graphql-cop
Security Auditor Utility for GraphQL APIs
Python329mit
3 months ago
auditingblue-teamgraphql
awesome-electronjs-hacking
A curated list of awesome resources about Electron.js (in)security
557
2 months ago
Flask-AppBuilder
Simple and rapid application development framework, built on top of Flask. inclu
Python4626bsd-3-clause
12 days ago
authenticationcrudflask
emba
EMBA - The firmware security analyzer
Shell2540gpl-3.0
last month
artificial-intelligencebinary-analysisembedded-linux
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android app
Java2246lgpl-3.0
2 months ago
bytecodecode-analysiscwe
OpenSK
OpenSK is an open-source implementation for security keys written in Rust that s
Rust2977apache-2.0
9 days ago
ctap2embeddedfido2
gotham
A flexible web framework that promotes stability, safety, security and speed.
Rust2231other
3 months ago
asyncgothamlearning-gotham
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security resea
81064cc0-1.0
3 months ago
androidawesomebug-bounty
awesome-canbus
:articulated_lorry: Awesome CAN bus tools, hardware and resources for Cyber Secu
1994cc0-1.0
2 months ago
automotiveautomotive-securityawesome
strong-node
:heavy_check_mark: More than 100 security checks for your Node.js API
JavaScript499
5 months ago
k9-cdk
Provision strong AWS security policies easily using the AWS CDK, v1 or v2.
TypeScript8apache-2.0
2 months ago
awscdkiam
secrets.clj
A library designed to generate cryptographically strong random numbers suitable
Clojure91mit
5 months ago
authenticationchoicesclj
DevSkim
DevSkim is a set of IDE plugins, language analyzers, and rules that provide secu
C#901mit
18 days ago
lintersdlsecurity
restler-fuzzer
RESTler is the first stateful REST API fuzzing tool for automatically testing cl
Python2530mit
3 months ago
zuul
Zuul is a gateway service that provides dynamic routing, monitoring, resiliency,
Java13350apache-2.0
last month
openappsec
open-appsec is a machine learning security engine that preemptively and automati
C++797apache-2.0
23 days ago
api-securityapplication-securityappsec
NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 sec
HTML1857apache-2.0
3 months ago
dockerherokujavascript
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java404apache-2.0
2 months ago
authenticationauthorizationcas
pareto-mac
Automatically audit your Mac for basic security hygiene.
Swift315gpl-3.0
2 months ago
endpoint-securitymacossecurity
panel
Pterodactyl® is a free, open-source game server management panel built with PHP,
PHP6357other
2 months ago
dockerfreegames
action-tfsec
Run tfsec with reviewdog on pull requests to enforce security best practices
Shell70mit
last month
reviewdogterrafromtfsec
secure-electron-template
The best way to build Electron apps with security in mind.
JavaScript1623mit
5 months ago
boilerplateelectroni18next
cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Python2832bsd-3-clause
3 months ago
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/adm
CSS5490mit
4 months ago
blueteamforensicshacking
advisory-db
Security advisory database for Rust crates published through crates.io
900other
5 days ago
rustsecuritysecurity-advisories
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive s
PowerShell8622other
5 months ago
activedirectoryhackinginfosec
VeraCrypt
Disk encryption with strong security based on TrueCrypt
C6581other
last month
encryptionencryption-algorithmsencryption-decryption
awesome-privacy
Description Strongbox is an application for keeping all your passwords safely
Astro6516cc0-1.0
last month
awesomeawesome-listhacktoberfest
building-secure-contracts
Guidelines and training material to write secure smart contracts
Solidity2179agpl-3.0
last month
cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml
Python5319apache-2.0
last month
awsazurecloud
cloud-concierge
Codify resources outside of Terraform control, detect drift, estimate cloud cost
Go211apache-2.0
last month
awsazurermcontainers
force-dot-com-esapi
Enterprise Security API for the Apex language on the Force.com platform.
Apex129bsd-3-clause
6 months ago
kratos
Next-gen identity server replacing your Auth0, Okta, Firebase with hardened secu
Go11040apache-2.0
2 days ago
hacktoberfestidentityidentity-management
Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collabo
Shell1622agpl-3.0
last month
agplv3automationcybersecurity
weggli
weggli is a fast and robust semantic search tool for C and C++ codebases. It is
Rust2321apache-2.0
2 months ago
KryptEY
Android keyboard for secure E2EE communication through the signal protocol in an
Java642gpl-3.0
5 months ago
androidandroid-keyboardchat-control
capacitor-secure-storage
Secure, flexible storage for Capacitor apps using iOS Keychain and Android Keyst
TypeScript94mit
2 months ago
capacitorcapacitor-androidcapacitor-ios
How-To-Secure-A-Linux-Server
An evolving how-to guide for securing a Linux server.
17153cc-by-sa-4.0
2 months ago
cc-by-sahardeninghardening-steps
substation
Substation is a toolkit for routing, normalizing, and enriching security event a
Go314mit
3 days ago
automationawslogging
kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigur
Open Policy Agent2016apache-2.0
2 days ago
appseccloudnativedevsecops
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists
Shell12891gpl-3.0
2 months ago
auditingcompliancedevops
crowdsec
CrowdSec - the open-source and participative security solution offering crowdsou
Go8240mit
2 months ago
attacks-preventiondetectionlinux
regula
Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s m
Open Policy Agent960apache-2.0
11 days ago
validiac
ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Co
TypeScript222other
3 days ago
ObjectivePGP
ObjectivePGP is an open-source library for iOS and macOS that provides developer
Objective-C665other
4 months ago
encryptionframeworkios
bandit
Bandit is a tool designed to find common security issues in Python code.
Python6212apache-2.0
last month
banditlinterpython
cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations
JavaScript1922bsd-3-clause
26 days ago
awsaws-iamaws-security
wemake-django-template
Bleeding edge django template focused on code quality and security.
Python1969mit
last month
caddycookiecuttercookiecutter-template
kube-score
Kubernetes object analysis with recommendations for improved reliability and sec
Go2709mit
last month
analysisautomationcharts
open-source-xamarin-apps
Description Start using the app?Activate the DigiD app first. Open the DigiD
458
last year
androidappawesome
Artemis
A modular vulnerability scanner with automatic report generation capabilities.
Python493bsd-3-clause
last month
artemispentestingsecurity
speed-camera
A Unix, Windows, Raspberry Pi Object Speed Camera using python, opencv, video st
Python958apache-2.0
3 months ago
matplotlib-pyplotmotion-trackingmoving
paseto-dotnet
🔑 Paseto.NET, a Paseto (Platform-Agnostic Security Tokens) implementation for .
C#97mit
2 months ago
dotnetdotnet-corenetstandard
Android-InsecureBankv2
Vulnerable Android application for developers and security enthusiasts to learn
Java1218mit
5 months ago
mutual-tls-ssl
🔐 Tutorial of setting up Security for your API with one way authentication with
Java557apache-2.0
last month
certificatecertificate-authoritycertificate-signing-request
awesome-threat-modelling
A curated list of threat modeling resources (Books, courses - free and paid, vid
Dockerfile1334cc0-1.0
last month
appsecawesomeawesome-list
terraform-aws-secure-baseline
Terraform module to set up your AWS account with the secure baseline configurati
HCL1132mit
2 months ago
awsaws-auditingcis-benchmark
opensips
OpenSIPS is a GPL implementation of a multi-functionality SIP Server that target
C1231other
last month
pi-timolo
Raspberry PI-TIMOLO ( PI-TImelapse, MOtion, LOwLight ) uses RPI picamera and Ope
Python549mit
9 months ago
awesome-listcurllowlight
sandstorm
Sandstorm is a self-hostable web productivity suite. It's implemented as a secur
JavaScript6696other
7 months ago
capnprotodecentralizedsandstorm
tenzir
Tenzir is the data pipeline engine for security teams.
C++626bsd-3-clause
22 days ago
dataopsincident-responseinvestigation
wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for e
C++9997other
22 days ago
cloud-securitycomplianceconfiguration-assessement
Bastillion-EC2
Description Authy brings the future of two-factor authentication to the conve
Java424other
6 months ago
awsbastion-hostec2
kata-containers
Kata Containers is an open source project and community working to build a stand
Rust5181apache-2.0
2 months ago
acrncontainerscri
themis
Easy to use cryptographic framework for data protection: secure messaging with f
C1850apache-2.0
2 days ago
asymmetric-cryptographyauthenticationcryptography
aws-firewall-factory
Enhance the security of your web applications effortlessly with AWS Firewall Fac
TypeScript231apache-2.0
5 days ago
amazon-web-servicesawscdk
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and pra
HTML4189mit
last month
blueteamcloud-nativecloud-security
lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vuln
TypeScript1429other
4 months ago
compliancecontinuous-deliverycve-scanning
selinux
This is the upstream repository for the Security Enhanced Linux (SELinux) userla
C1299other
2 months ago
vault
Description Koofr Vault is an open source, client-side, zero-knowledge encryp
Rust90mit
2 months ago
catalyst
Catalyst is a self-hosted, open source incident response platform and ticket sys
Vue309agpl-3.0
last month
dfirdigital-forensicsincident-response
CakeFuzzer
Cake Fuzzer is a project that is meant to help automatically and continuously di
Python93gpl-3.0
9 months ago
cybersecuritydasthacking
OneKeePass/mobile
Description OneKeePass supports the well known KeePass-compatible database (K
Clojure93gpl-3.0
2 months ago
spu
SPU (Secure Processing Unit) aims to be a provable, measurable secure computatio
C++224apache-2.0
19 hours ago
privacy-preservingprivate-set-intersectionsecure-multiparty-computation
nanoid
A tiny (124 bytes), secure, URL-friendly, unique string ID generator for JavaScr
JavaScript24326mit
17 days ago
Free-Security-eBooks
Free Security and Hacking eBooks
4233
5 years ago
cloud-securitycyber-securityebooks
mana-security-app
macOS vulnerability management for individuals
JavaScript22mit
2 years ago
cybersecurityelectronmacos
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python85
5 years ago
automotive-securitycar-hacking
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript36other
2 years ago
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python977mit
4 years ago
automationblue-teamblue-teams
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
5 years ago
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1266apache-2.0
6 years ago
aspnet-product
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1812mit
5 years ago
checklistrailsruby
security-apis
A collective list of public APIs for use in security. Contributions welcome
873mit
last year
awesome-listjsonjson-api
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python28apache-2.0
8 years ago
awesome-websocket-security
Awesome information for WebSockets security research
239apache-2.0
3 years ago
securitysecurity-toolsweb-application-security
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
7 years ago
code-analysisroslynroslyn-analyzer
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP706gpl-3.0
2 years ago
phpphp-codesnifferphpcs
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3056
3 years ago
dfirhuntingids
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
6 years ago
assessmentcybersecurityframework
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python869other
2 years ago
audit-siphacking-toolspassword-cracker
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2168gpl-2.0
4 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#560
4 years ago
aspnetcorekatanaoauth2
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript68bsd-3-clause
3 years ago
appseceducationtraining-materials
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python139mit
last year
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#443mpl-2.0
2 years ago
k-rail
Kubernetes security tool for policy enforcement
Go445apache-2.0
2 years ago
k8skuberneteskubernetes-security
stronghold
Easily configure macOS security settings from the terminal.
Python1081mit
5 years ago
command-linecommand-line-toolhardening
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1118gpl-3.0
5 years ago
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript636mit
last year
blueteamredteamsecret-management
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go918
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir54mit
last year
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell238mit
last year
firebasefirebase-firestorehaskell
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift145mit
last year
brokenhandssecurityserver-side-swift
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2828mpl-2.0
3 years ago
LogESP
Open Source SIEM (Security Information and Event Management system).
Python190mit
last year
asset-managementforensicslog
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1844
2 years ago
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript358other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go504mit
2 years ago
androidandroid-securitycli
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
9 years ago
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4350apache-2.0
4 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
637
2 years ago
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#88mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java923other
5 years ago
analysiscontrol-systemsics
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go838mit
2 years ago
authauthenticationdecoder
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP370bsd-3-clause
last year
acldemophalcon
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C643mit
4 years ago
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust28apache-2.0
2 years ago
devopsdevops-toolsrust
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
2 years ago
aws-cdkciscis-controls
metta
An information security preparedness tool to do adversarial simulation.
Python1087mit
5 years ago
adversarialceleryinfosec
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
10 years ago
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript321mit
last year
browser-extensionchrome-extensioncybersecurity
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python257bsd-3-clause
last year
cifcif3ids
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
4 years ago
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript953apache-2.0
last year
electronelectron-appnodejs
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
906
2 years ago
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1731
5 years ago
hardeningsecuritywindows
sast-scan
Scan is a free & Open Source DevSecOps tool for performing static analysis based
Python790apache-2.0
last year
appsecdependency-scandevsecops
HaboMalHunter
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.
Python726other
last year
dynamic-analysiselflinux
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java81other
2 years ago
CANalyzat0r
Security analysis toolkit for proprietary car protocols
Python748gpl-3.0
3 years ago
automotive-securitycarhackingreverse-engineering
wagtailenforcer
The Wagtail arm of the law - enforce security protocols on your Wagtail site
Python45
3 years ago
axessecuritysecurity-protocol
pyramid_simpleauth
Session based authentication and role based security for a Pyramid web applicati
Python33unlicense
2 years ago
vsfire
Visual Studio Code extension for syntax highlighting, hover help and code comple
TypeScript76mit
4 years ago
firebasefirebase-storagevscode
PortAuthority
A handy systems and security-focused tool, Port Authority is a very fast Android
Java345gpl-3.0
last year
androiddns-lookupjava
mqtt-pwn
MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se
Python346gpl-3.0
2 years ago
exploitationiotmqtt
RCTF
Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.
32gpl-3.0
4 years ago
ctf-challengesctf-platformcybersecurity
mkit
MKIT is a Managed Kubernetes Inspection Tool that validates several common secur
Dockerfile401mit
3 years ago
aksawsazure
awesome-rtc-hacking
a list of awesome resources related to security and hacking of VoIP, WebRTC and
389cc0-1.0
2 years ago
awesomeawesome-listsbug-bounty
awesome-lockpicking
:unlock::sunglasses: A curated list of awesome guides, tools, and other resource
1386cc0-1.0
2 years ago
awesomeawesome-listkeypicking
Heimdall
Heimdall is a wrapper around the Security framework for simple encryption/decryp
Swift401mit
4 years ago
aesencrypted-messagesios
ironbee
Universal web application security sensor intended for real-time monitoring and
XSLT302apache-2.0
9 years ago
Vuldroid
Vuldroid is a Vulnerable Android Application made with security issues in order
Java59mit
3 years ago
android-applicationandroid-securityapplication-security
bpflock
bpflock - eBPF driven security for locking and auditing Linux machines
C136apache-2.0
3 years ago
bpfcontainersebpf
is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript
JavaScript1927apache-2.0
last year
hacktoberfestlighthousenodejs
Logibit.Hawk
A F# Hawk implementation with a strongly typed API that guides your usage and mi
F#36other
6 years ago
awesome-es
A collection of awesome resources for Splunk Enterprise Security
19cc0-1.0
4 years ago
awesomeawesome-listsplunk
corbfuzz
Code for ASE'21 Paper "CorbFuzz: Checking Browser Security Policies with Fuzzing
C3mit
3 years ago
browser-securityconcolic-executionfuzzing
raspberry-pi-kernel-hardened
Cross-compile the Linux kernel for Raspberry Pi with enhanced security in a sing
Shell21mit
2 years ago
linux-kernelraspberry-piraspberrypi-kernel
dlint-check
Github Action to run dlint security linter on your Python code
Dockerfile3mit
3 years ago
flake8github-actionslinter
drydock
drydock provides a flexible way of assessing the security of your Docker daemon
Python64gpl-2.0
8 years ago
auditdockersecurity
StaDynA
StaDynA: Addressing the Problem of Dynamic Code Updates in the Security Analysis
20
last year
androidandroid-securitydynamic-analysis
Secure-Pref-Manager
Secure Preference Manager for android. It uses various Encryption to protect you
Java70apache-2.0
8 years ago
androidencryptionhide-preferences
goSecretBoxPassword
A probably paranoid Golang utility library for securely hashing and encrypting p
Go59mit
2 years ago
credentialsgolanggolang-library
stormpath-sdk-dotnet
The Official Stormpath SDK for C# and Visual Basic. Stormpath enables developer
C#54apache-2.0
7 years ago
secure-quick-reliable-login
This repository is an implementation for SQRL (Secure Quick Reliable Login) on A
Java