security-code-scan

security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

C#930lgpl-3.0

2 months ago

analysisanalyzercode

osx-security-awesome

A collection of OSX and iOS security resources

721apache-2.0

8 months ago

awesomeawesome-listhacking-mac

Vigilante

Vigilante

🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati

Kotlin772gpl-3.0

11 months ago

androidandroidanimationandroidviewmodel

awesome-cyber-security-university

awesome-cyber-security-university

🎓 Because Education should be free. Contributions welcome! 🕵️

1570cc0-1.0

3 months ago

awesomeawesome-listcourses

android-security-awesome

A collection of android security related resources

Shell7959apache-2.0

2 months ago

androidawesomeawesome-list

security-acronyms

Curated list of Cyber Security acronyms & abbreviations

HTML18

2 months ago

awesome-security-hardening

A collection of awesome security hardening guides, tools and other resources

5224

3 months ago

awesome-listbest-practicesblue-team

Android-Security-Reference

A W.I.P Android Security Ref

903

2 months ago

androidsecurity

awesome-bluetooth-security

List of Bluetooth BR/EDR/LE security resources

486

9 months ago

awesomeawesome-listble

tsunami-security-scanner

Tsunami is a general purpose network security scanner with an extensible plugin

Java8201apache-2.0

5 days ago

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python1562apache-2.0

11 months ago

awesomeawesome-listhacktoberfest

awesome-vehicle-security

awesome-vehicle-security

🚗 A curated list of resources for learning about vehicle security and car hack

3001cc0-1.0

7 months ago

automotiveawesomeawesome-list

aspnetcore-security-headers

Middleware for adding security headers to an ASP.NET Core application.

C#262mit

10 months ago

personal-security-checklist

personal-security-checklist

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy

TypeScript16519other

last month

awesomeawesome-listcensorship

simple-security-toolkit

A collection of practical security-focused guides and checklists for smart contr

1023mit

10 months ago

cryptosecuritysecurity-tools

awesome-security

A collection of awesome software, libraries, documents, books, resources and coo

11965mit

2 months ago

awesome-listsecurity

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing

22267mit

5 months ago

apijwtoauth2

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of c

806gpl-2.0

7 months ago

cybersecuritynewsletter

ibm-security

A Carbon-powered React component library built by IBM Security

JavaScript77apache-2.0

2 months ago

carbon-design-systemibm-securityjavascript

rust-security-framework

Bindings to the macOS Security.framework

Rust230apache-2.0

2 months ago

keychainmacosrust

awesome-web-security

🐶 A curated list of Web Security materials and resources.

11139

7 months ago

awesomeawesome-listlist

Mobile-Security-Framework-MobSF

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application

JavaScript16875gpl-3.0

last month

android-securityapi-testingapk

owasp-mastg

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual

Python11530cc-by-sa-4.0

last month

androidandroid-applicationcompliancy-checklist

zarn

A lightweight static security analysis tool for modern Perl Apps

Perl44other

12 days ago

sastsecuritystatic-analysis

Umbrella_android

Umbrella_android

Open source Android, iOS and Web app for learning about and managing digital and

Kotlin261gpl-3.0

4 months ago

activismadvicecrypto

terraform-aws-security-group

Terraform module to create AWS Security Group resources 🇺🇦

HCL563other

14 days ago

awsaws-security-groupaws-vpc

RMS-Runtime-Mobile-Security

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you

JavaScript2533gpl-3.0

3 months ago

android-securityfridaios-security

prowler

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do

Python10398apache-2.0

last month

awsazurecis-benchmark

macOS-Security-and-Privacy-Guide

macOS-Security-and-Privacy-Guide

Guide to securing and improving privacy on macOS

21123mit

2 months ago

appledisk-encryptiondnscrypt-proxy

docker-bench-security

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-

Shell9025apache-2.0

4 months ago

cicd-goat

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1875apache-2.0

2 months ago

appseccicdctf

harden-runner

harden-runner

Network egress filtering and runtime security for GitHub-hosted and self-hosted

TypeScript587apache-2.0

last month

actionsegress-filteringgithub-actions

bearer

Code security scanning tool (SAST) to discover, filter and prioritize security a

Go1942other

5 days ago

appseccode-qualitycompliance

SecLists

SecLists is the security tester's companion. It's a collection of multiple types

PHP56833mit

2 days ago

ssh-audit

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, co

Python3263mit

2 months ago

auditingsecurityssh

reg

reg

Docker registry v2 command line client and repo listing generator with security

Go1649mit

3 months ago

clicontainersdocker

ScoutSuite

ScoutSuite

Multi-Cloud Security Auditing Tool

Python6392gpl-2.0

2 months ago

auditingawsazure

gosec

gosec

Go security checker

Go7643apache-2.0

last month

golangsecuritysecurity-automation

wpscan

wpscan

WPScan WordPress security scanner. Written for security professionals and blog m

Ruby8431other

last month

hacking-toolscanscanner

nebula

nebula

Description Nebula is a scalable overlay networking tool with a focus on perf

Go14168mit

last month

intelmq

intelmq

IntelMQ is a solution for IT security teams for collecting and processing securi

Python951agpl-3.0

2 months ago

alertsautomationcert

codeql

codeql

CodeQL: the libraries and queries that power security researchers around the wor

CodeQL7508mit

18 hours ago

codeqlgithub-advanced-securitygithub-security-lab

NetEscapades.AspNetCore.SecurityHeaders

Small package to allow adding security headers to ASP.NET Core websites

C#634mit

2 months ago

hacktoberfest

Fuzzing101

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

2398apache-2.0

3 months ago

aflafl-fuzzbug-hunting

cloudsploit

cloudsploit

Cloud Security Posture Management (CSPM)

JavaScript3282gpl-3.0

2 months ago

alibabaaquaaws

joy

A package for capturing and analyzing network flow data and intraflow data, for

C1288other

5 months ago

mythril

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe

Python3833mit

16 days ago

blockchainethereumprogram-analysis

caringcaribounext

A fork of a friendly car security exploration tool for the CAN bus

Python5gpl-3.0

6 months ago

ebpfguard

ebpfguard

Rust library for writing Linux security policies using eBPF

Rust278apache-2.0

8 months ago

progpilot

A static analysis tool for security

PHP323mit

2 months ago

phpsecurity-toolsstatic-code-analysis

Raccoon

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability

Python3050mit

3 months ago

enumerationfuzzinghacking

Astra

Astra

Automated Security Testing For REST API's

Python2475apache-2.0

3 months ago

ci-cdowasppenetration-testing

File-Manager

File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin539gpl-3.0

24 days ago

androidfile-managerfoss

octopus

octopus

Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra

Python481mit

10 months ago

blockchaincall-flow-analysiscontrol-flow-analysis

uuid

Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security

Go5169bsd-3-clause

2 months ago

gouuid

GraphCrawler

GraphCrawler

GraphQL automated security testing toolkit

Python293mit

7 months ago

apiapi-hackingautomated-testing

itextsharp

itextsharp

[DEPRECATED] .NET port of the iText library, only security fixes will be added —

C#1352other

3 months ago

AWSBucketDump

Security Tool to Look For Interesting Files in S3 Buckets

Python1343mit

5 months ago

bugbountyenumerationpenetration-testing

starbase

starbase

Graph-based security analysis for everyone

TypeScript335mpl-2.0

8 months ago

analysisawsazure

qark

Tool to look for several security related Android application vulnerabilities

Python3180other

8 months ago

binskim

A binary static analysis tool that provides security and correctness results for

C#767other

last month

infersharp

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#730mit

8 months ago

fastapi_simple_security

fastapi_simple_security

Drop-in API-key based security for FastAPI

Python324mit

9 months ago

binserve

binserve

A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi

Rust983mit

7 months ago

actixhandlebarshttp

ntopng

ntopng

Web-based Traffic and Security Network Traffic Monitoring

Lua6094gpl-3.0

last month

dockerebpfipfix

pest

pest

:beetle: Primitive Erlang Security Tool

Erlang102mit

9 months ago

elixirelixir-securityerlang

allstar

allstar

GitHub App to set and enforce security policies

Go1234apache-2.0

last month

awesome-appsec

awesome-appsec

A curated list of resources for learning about application security

PHP6226mit

2 months ago

application-securitycuratedowasp

brakeman

brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

Ruby6944other

2 months ago

brakemanrailsruby

killerbee

killerbee

IEEE 802.15.4/ZigBee Security Research Toolkit

C748other

last year

rudder-server

rudder-server

Privacy and Security focused Segment-alternative, in Golang and React

Go4050other

20 hours ago

bigquerycdpcustomer-data

cotopaxi

Set of tools for security testing of Internet of Things devices using specific n

Python349gpl-2.0

3 months ago

magevulndb

magevulndb

List of Magento extensions with known security issues.

PHP199

last month

extensionsmagentovulnerability

Simple-File-Manager

Simple-File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin1491gpl-3.0

3 months ago

androidandroid-developmentfile-manager

terrascan

terrascan

Detect compliance and security violations across Infrastructure as Code to mitig

Go4679apache-2.0

4 days ago

architectureawsaws-security

cli

terraform-compliance/cli

a lightweight, security focused, BDD test framework against terraform.

Python1345mit

5 months ago

bddbdd-stylecompliance

dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It

Ruby735mit

6 months ago

codereviewcybersecurityhanami

secure

HTTP middleware for Go that facilitates some quick security wins.

Go2245mit

3 months ago

gogolangmiddleware

SecureDefaults

SecureDefaults

Elevate the security of your UserDefaults with this lightweight wrapper that ad

Swift227mit

4 months ago

aesaes-256aes-encryption

haaukins

haaukins

A Highly Accessible and Automated Virtualization Platform for Security Education

Go182apache-2.0

last month

clictfdcybersecurity

tetragon

tetragon

eBPF-based Security Observability and Runtime Enforcement

Go3469apache-2.0

last month

bpfebpfkernel

nsjail

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl

C++2880apache-2.0

2 months ago

chrootlinuxlinux-namespaces

caringcaribou

A friendly car security exploration tool for the CAN bus

Python706gpl-3.0

last month

can-busecufuzzing

diffy

diffy

:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit

Python632apache-2.0

8 months ago

dfirforensicssecurity

vertx-pac4j

vertx-pac4j

Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...

Java124apache-2.0

10 days ago

authenticationauthorizationcas

graphql-armor

graphql-armor

🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En

TypeScript486mit

last month

apolloapollo-servercybersecurity

passbolt_api

passbolt_api

Description Take your team's passwords with you wherever you go by downloadin

PHP4508agpl-3.0

2 months ago

cakephpcakephp4credentials

tutanota

tutanota

Description Tuta (formerly Tutanota), the fully secure encrypted email and ca

TypeScript5971gpl-3.0

18 hours ago

emailencryptionjavascript

tracee

Linux Runtime Security and Forensics using eBPF

Go3432apache-2.0

last month

bpfdockerebpf

2FAuth

2FAuth

A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t

PHP1917agpl-3.0

last month

2fa2factorhotp

kubectl-kubesec

kubectl-kubesec

Security risk analysis for Kubernetes resources

Go506apache-2.0

9 months ago

acra

acra

Database security suite. Database proxy with field-level encryption, search thro

Go1324apache-2.0

2 months ago

cryptocryptographydatabase-proxy

fwanalyzer

fwanalyzer

a tool to analyze filesystem images for security

Go485apache-2.0

11 months ago

androidembedded-linuxfilesystem

falco

falco

Cloud Native Runtime Security

C++7232apache-2.0

4 days ago

cloud-nativecncfcncf-project

OwaspHeaders.Core

OwaspHeaders.Core

Inject OWASP recommended HTTP Headers for increased security in a single line

C#276mit

4 months ago

aspnetcorehttp-headermiddleware

InviZible

InviZible

Android application for online privacy and security

Java1425gpl-3.0

5 days ago

advertisingandroidandroid-application

mimikatz

A little tool to play with Windows security

C19124

2 months ago

honggfuzz

honggfuzz

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin

C3022apache-2.0

2 months ago

cfuzzingsecurity

hblock

Improve your security and privacy by blocking ads, tracking and malware domains.

Shell1539mit

2 months ago

ad-blockeradblockadblocker

cyberowl

A daily updated summary of the most frequent types of security advisories curren

Python241mit

7 months ago

cisacvesecurity

safenotes

safenotes

Safe Notes is a security project aimed at providing an encrypted, private note m

Dart225gpl-3.0

29 days ago

androidanonymitydart

matano

matano

Open source security data lake for threat hunting, detection & response, and cyb

Rust1433apache-2.0

2 months ago

alertingapache-icebergaws

android-money-manager-ex

android-money-manager-ex

Manage your finances on-the-go, encrypted for security, sync via your own cloud

Java477gpl-3.0

3 days ago

androidcipherencryption

calico

calico

Cloud native networking and network security

Go5870apache-2.0

3 days ago

catscnicni-plugin

fibratus

fibratus

A modern tool for Windows kernel exploration and tracing with a focus on securit

Go2127other

2 months ago

edrgolanginstrumentation

PayloadsAllTheThings

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CT

Python58983mit

last month

bountybugbountybypass

drozer

drozer

The Leading Security Assessment Framework for Android.

Python3753other

2 months ago

androiddrozerjava

scout

scout

Description The Scout - Full App for accessing a Scout server, which is a sta

Go14mit

2 months ago

scorecard

scorecard

OpenSSF Scorecard - Security health metrics for Open Source

Go4387apache-2.0

yesterday

openssf-scorecardscorecard

rails-template

Application template for Rails 7 projects; preloaded with best practices for TDD

Ruby300other

8 days ago

ackamarailsrails-template

ssh-audit

ssh-audit

SSH server auditing (banner, key exchange, encryption, mac, compression, compati

Python2942mit

3 months ago

cilium

cilium

eBPF-based Networking, Security, and Observability

Go19518apache-2.0

last month

bpfcncfcni

hubble

hubble

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

Makefile3406apache-2.0

2 months ago

ciliumebpfkubernetes

Awesome-SOAR

Awesome-SOAR

A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome

772

6 months ago

graphql-cop

graphql-cop

Security Auditor Utility for GraphQL APIs

Python329mit

3 months ago

auditingblue-teamgraphql

awesome-electronjs-hacking

awesome-electronjs-hacking

A curated list of awesome resources about Electron.js (in)security

557

2 months ago

Flask-AppBuilder

Flask-AppBuilder

Simple and rapid application development framework, built on top of Flask. inclu

Python4626bsd-3-clause

12 days ago

authenticationcrudflask

emba

emba

EMBA - The firmware security analyzer

Shell2540gpl-3.0

last month

artificial-intelligencebinary-analysisembedded-linux

find-sec-bugs

find-sec-bugs

The SpotBugs plugin for security audits of Java web applications and Android app

Java2246lgpl-3.0

2 months ago

bytecodecode-analysiscwe

OpenSK

OpenSK

OpenSK is an open-source implementation for security keys written in Rust that s

Rust2977apache-2.0

9 days ago

ctap2embeddedfido2

gotham

gotham

A flexible web framework that promotes stability, safety, security and speed.

Rust2231other

3 months ago

asyncgothamlearning-gotham

Awesome-Hacking

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security resea

81064cc0-1.0

3 months ago

androidawesomebug-bounty

fastapi-permissions

row level security for FastAPI framework

Python473other

11 months ago

machinae

machinae

Machinae Security Intelligence Collector

Python499mit

4 months ago

awesome-canbus

:articulated_lorry: Awesome CAN bus tools, hardware and resources for Cyber Secu

1994cc0-1.0

2 months ago

automotiveautomotive-securityawesome

awesome-web-hacking

A list of web application security

5661mit

last month

appsechackinghacking-tools

strong-node

strong-node

:heavy_check_mark: More than 100 security checks for your Node.js API

JavaScript499

5 months ago

k9-cdk

Provision strong AWS security policies easily using the AWS CDK, v1 or v2.

TypeScript8apache-2.0

2 months ago

awscdkiam

secrets.clj

secrets.clj

A library designed to generate cryptographically strong random numbers suitable

Clojure91mit

5 months ago

authenticationchoicesclj

DevSkim

DevSkim is a set of IDE plugins, language analyzers, and rules that provide secu

C#901mit

18 days ago

lintersdlsecurity

restler-fuzzer

restler-fuzzer

RESTler is the first stateful REST API fuzzing tool for automatically testing cl

Python2530mit

3 months ago

zuul

zuul

Zuul is a gateway service that provides dynamic routing, monitoring, resiliency,

Java13350apache-2.0

last month

openappsec

openappsec

open-appsec is a machine learning security engine that preemptively and automati

C++797apache-2.0

23 days ago

api-securityapplication-securityappsec

NodeGoat

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 sec

HTML1857apache-2.0

3 months ago

dockerherokujavascript

play-pac4j

play-pac4j

Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI

Java404apache-2.0

2 months ago

authenticationauthorizationcas

pareto-mac

pareto-mac

Automatically audit your Mac for basic security hygiene.

Swift315gpl-3.0

2 months ago

endpoint-securitymacossecurity

panel

panel

Pterodactyl® is a free, open-source game server management panel built with PHP,

PHP6357other

2 months ago

dockerfreegames

action-tfsec

action-tfsec

Run tfsec with reviewdog on pull requests to enforce security best practices

Shell70mit

last month

reviewdogterrafromtfsec

secure-electron-template

secure-electron-template

The best way to build Electron apps with security in mind.

JavaScript1623mit

5 months ago

boilerplateelectroni18next

cloudgoat

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Python2832bsd-3-clause

3 months ago

Infosec_Reference

Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/adm

CSS5490mit

4 months ago

blueteamforensicshacking

advisory-db

advisory-db

Security advisory database for Rust crates published through crates.io

900other

5 days ago

rustsecuritysecurity-advisories

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive s

PowerShell8622other

5 months ago

activedirectoryhackinginfosec

VeraCrypt

Disk encryption with strong security based on TrueCrypt

C6581other

last month

encryptionencryption-algorithmsencryption-decryption

flask-talisman

HTTP security headers for Flask

Python71apache-2.0

5 months ago

ctf-tools

Some setup scripts for security research tools.

Shell8346bsd-3-clause

10 months ago

awesome-privacy

awesome-privacy

Description Strongbox is an application for keeping all your passwords safely

Astro6516cc0-1.0

last month

awesomeawesome-listhacktoberfest

building-secure-contracts

Guidelines and training material to write secure smart contracts

Solidity2179agpl-3.0

last month

cloud-custodian

cloud-custodian

Rules engine for cloud security, cost optimization, and governance, DSL in yaml

Python5319apache-2.0

last month

awsazurecloud

cloud-concierge

cloud-concierge

Codify resources outside of Terraform control, detect drift, estimate cloud cost

Go211apache-2.0

last month

awsazurermcontainers

force-dot-com-esapi

Enterprise Security API for the Apex language on the Force.com platform.

Apex129bsd-3-clause

6 months ago

kratos

kratos

Next-gen identity server replacing your Auth0, Okta, Firebase with hardened secu

Go11040apache-2.0

2 days ago

hacktoberfestidentityidentity-management

Shuffle

Shuffle

Shuffle: A general purpose security automation platform. Our focus is on collabo

Shell1622agpl-3.0

last month

agplv3automationcybersecurity

weggli

weggli

weggli is a fast and robust semantic search tool for C and C++ codebases. It is

Rust2321apache-2.0

2 months ago

KryptEY

KryptEY

Android keyboard for secure E2EE communication through the signal protocol in an

Java642gpl-3.0

5 months ago

androidandroid-keyboardchat-control

capacitor-secure-storage

Secure, flexible storage for Capacitor apps using iOS Keychain and Android Keyst

TypeScript94mit

2 months ago

capacitorcapacitor-androidcapacitor-ios

How-To-Secure-A-Linux-Server

An evolving how-to guide for securing a Linux server.

17153cc-by-sa-4.0

2 months ago

cc-by-sahardeninghardening-steps

rn-secure-storage

Secure Storage for React Native (Android & iOS)

Java202mit

6 months ago

substation

substation

Substation is a toolkit for routing, normalizing, and enriching security event a

Go314mit

3 days ago

automationawslogging

kics

kics

Find security vulnerabilities, compliance issues, and infrastructure misconfigur

Open Policy Agent2016apache-2.0

2 days ago

appseccloudnativedevsecops

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists

Shell12891gpl-3.0

2 months ago

auditingcompliancedevops

crowdsec

crowdsec

CrowdSec - the open-source and participative security solution offering crowdsou

Go8240mit

2 months ago

attacks-preventiondetectionlinux

regula

Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s m

Open Policy Agent960apache-2.0

11 days ago

validiac

ValidIaC combines the best open-source tools to help ensure Infrastructure-as-Co

TypeScript222other

3 days ago

ObjectivePGP

ObjectivePGP is an open-source library for iOS and macOS that provides developer

Objective-C665other

4 months ago

encryptionframeworkios

bandit

bandit

Bandit is a tool designed to find common security issues in Python code.

Python6212apache-2.0

last month

banditlinterpython

cloudsplaining

cloudsplaining

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations

JavaScript1922bsd-3-clause

26 days ago

awsaws-iamaws-security

wemake-django-template

Bleeding edge django template focused on code quality and security.

Python1969mit

last month

caddycookiecuttercookiecutter-template

kube-score

kube-score

Kubernetes object analysis with recommendations for improved reliability and sec

Go2709mit

last month

analysisautomationcharts

open-source-xamarin-apps

open-source-xamarin-apps

Description Start using the app?Activate the DigiD app first. Open the DigiD

458

last year

androidappawesome

Artemis

Artemis

A modular vulnerability scanner with automatic report generation capabilities.

Python493bsd-3-clause

last month

artemispentestingsecurity

speed-camera

speed-camera

A Unix, Windows, Raspberry Pi Object Speed Camera using python, opencv, video st

Python958apache-2.0

3 months ago

matplotlib-pyplotmotion-trackingmoving

paseto-dotnet

🔑 Paseto.NET, a Paseto (Platform-Agnostic Security Tokens) implementation for .

C#97mit

2 months ago

dotnetdotnet-corenetstandard

Android-InsecureBankv2

Vulnerable Android application for developers and security enthusiasts to learn

Java1218mit

5 months ago

mutual-tls-ssl

mutual-tls-ssl

🔐 Tutorial of setting up Security for your API with one way authentication with

Java557apache-2.0

last month

certificatecertificate-authoritycertificate-signing-request

awesome-threat-modelling

awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, vid

Dockerfile1334cc0-1.0

last month

appsecawesomeawesome-list

terraform-aws-secure-baseline

Terraform module to set up your AWS account with the secure baseline configurati

HCL1132mit

2 months ago

awsaws-auditingcis-benchmark

opensips

OpenSIPS is a GPL implementation of a multi-functionality SIP Server that target

C1231other

last month

pi-timolo

pi-timolo

Raspberry PI-TIMOLO ( PI-TImelapse, MOtion, LOwLight ) uses RPI picamera and Ope

Python549mit

9 months ago

awesome-listcurllowlight

sandstorm

Sandstorm is a self-hostable web productivity suite. It's implemented as a secur

JavaScript6696other

7 months ago

capnprotodecentralizedsandstorm

tenzir

Tenzir is the data pipeline engine for security teams.

C++626bsd-3-clause

22 days ago

dataopsincident-responseinvestigation

wazuh

wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for e

C++9997other

22 days ago

cloud-securitycomplianceconfiguration-assessement

videocall-rs

videocall-rs

teleconference system written in rust

Rust1363mit

13 days ago

actix-webrustrust-lang

Bastillion-EC2

Bastillion-EC2

Description Authy brings the future of two-factor authentication to the conve

Java424other

6 months ago

awsbastion-hostec2

kata-containers

Kata Containers is an open source project and community working to build a stand

Rust5181apache-2.0

2 months ago

acrncontainerscri

themis

themis

Easy to use cryptographic framework for data protection: secure messaging with f

C1850apache-2.0

2 days ago

asymmetric-cryptographyauthenticationcryptography

aws-firewall-factory

aws-firewall-factory

Enhance the security of your web applications effortlessly with AWS Firewall Fac

TypeScript231apache-2.0

5 days ago

amazon-web-servicesawscdk

kubernetes-goat

kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and pra

HTML4189mit

last month

blueteamcloud-nativecloud-security

lunasec

lunasec

LunaSec - Dependency Security Scanner that automatically notifies you about vuln

TypeScript1429other

4 months ago

compliancecontinuous-deliverycve-scanning

selinux

This is the upstream repository for the Security Enhanced Linux (SELinux) userla

C1299other

2 months ago

vault

vault

Description Koofr Vault is an open source, client-side, zero-knowledge encryp

Rust90mit

2 months ago

catalyst

catalyst

Catalyst is a self-hosted, open source incident response platform and ticket sys

Vue309agpl-3.0

last month

dfirdigital-forensicsincident-response

community

15

6 months ago

tpotce

tpotce

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

C6405gpl-3.0

2 months ago

deceptiondockerelk

CakeFuzzer

CakeFuzzer

Cake Fuzzer is a project that is meant to help automatically and continuously di

Python93gpl-3.0

9 months ago

cybersecuritydasthacking

mobile

OneKeePass/mobile

Description OneKeePass supports the well known KeePass-compatible database (K

Clojure93gpl-3.0

2 months ago

spu

SPU (Secure Processing Unit) aims to be a provable, measurable secure computatio

C++224apache-2.0

19 hours ago

privacy-preservingprivate-set-intersectionsecure-multiparty-computation

nanoid

A tiny (124 bytes), secure, URL-friendly, unique string ID generator for JavaScr

JavaScript24326mit

17 days ago

booster

booster

Fast and secure initramfs generator

Go485mit

2 months ago

bootinitramfslinux

Vault

Vault

Simple, fast, secure password manager

Kotlin39gpl-3.0

6 months ago

androidf-droidfdroid

Free-Security-eBooks

Free Security and Hacking eBooks

4233

5 years ago

cloud-securitycyber-securityebooks

mana-security-app

macOS vulnerability management for individuals

JavaScript22mit

2 years ago

cybersecurityelectronmacos

automotive-security-research

automotive-security-research

This repository contains reverse engineering results and resources for a few spe

Python85

5 years ago

automotive-securitycar-hacking

snync

Mitigate security concerns of Dependency Confusion supply chain security risks

JavaScript36other

2 years ago

DumpsterFire

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for

Python977mit

4 years ago

automationblue-teamblue-teams

timely-security-analytics

Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta

Scala29other

5 years ago

Security

[Archived] Middleware for security and authorization of web apps. Project moved

C#1266apache-2.0

6 years ago

aspnet-product

zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

Ruby1812mit

5 years ago

checklistrailsruby

security-apis

security-apis

A collective list of public APIs for use in security. Contributions welcome

873mit

last year

awesome-listjsonjson-api

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python28apache-2.0

8 years ago

awesome-websocket-security

Awesome information for WebSockets security research

239apache-2.0

3 years ago

securitysecurity-toolsweb-application-security

roslyn-security-guard

roslyn-security-guard

Roslyn analyzers that aim to help security audit on .NET applications.

C#208lgpl-3.0

7 years ago

code-analysisroslynroslyn-analyzer

phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP706gpl-3.0

2 years ago

phpphp-codesnifferphpcs

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3056

3 years ago

dfirhuntingids

RSF

RSF

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz

86gpl-3.0

6 years ago

assessmentcybersecurityframework

sipvicious

sipvicious

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a

Python869other

2 years ago

audit-siphacking-toolspassword-cracker

pyt

pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2168gpl-2.0

4 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

AspNet.Security.OpenIdConnect.Server

OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core

C#560

4 years ago

aspnetcorekatanaoauth2

appsec-education

Presentations, training modules, and other education materials from Duo Security

JavaScript68bsd-3-clause

3 years ago

appseceducationtraining-materials

fastapi-security

Implements authentication and authorization as FastAPI dependencies

Python139mit

last year

Sitecore-Security-Rights-Reporting

Sitecore-Security-Rights-Reporting

View all the Access right set on Sitecore rols or users

C#7

2 years ago

sitecore

puma-scan

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time

C#443mpl-2.0

2 years ago

k-rail

Kubernetes security tool for policy enforcement

Go445apache-2.0

2 years ago

k8skuberneteskubernetes-security

bolt

An integrated security system for applications built on component

Clojure123mit

9 years ago

stronghold

stronghold

Easily configure macOS security settings from the terminal.

Python1081mit

5 years ago

command-linecommand-line-toolhardening

AndroBugs_Framework

AndroBugs_Framework

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1118gpl-3.0

5 years ago

repo-supervisor

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

JavaScript636mit

last year

blueteamredteamsecret-management

totp-ssh-fluxer

totp-ssh-fluxer

Take security by obscurity to the next level (this is a bad idea, don't really u

Go918

2 years ago

iptablesobscurityssh

atomex

🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a

Elixir54mit

last year

atomelixirrss

fireward

A concise and readable language for Firestore security rules, similar to Firebas

Haskell238mit

last year

firebasefirebase-firestorehaskell

VaporSecurityHeaders

VaporSecurityHeaders

Harden Your Security Headers For Vapor

Swift145mit

last year

brokenhandssecurityserver-side-swift

H5SC

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

JavaScript2828mpl-2.0

3 years ago

LogESP

Open Source SIEM (Security Information and Event Management system).

Python190mit

last year

asset-managementforensicslog

jwtXploiter

A tool to test security of json web token

Python270gpl-3.0

4 years ago

ctfctf-toolsjku

domain_analyzer

domain_analyzer

Analyze the security of any domain by finding all the information possible. Made

Python1844

2 years ago

nogotofail

An on-path blackbox network traffic security testing tool

Python2937apache-2.0

2 years ago

aaf-easypassword

aaf-easypassword

:lock: Easy Password is password management application. This application uses p

Kotlin34other

5 years ago

android-appandroid-applicationkotlin

scanner-cli

scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript358other

3 years ago

cidockernodejs

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.

Python25

9 years ago

insider

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go504mit

2 years ago

androidandroid-securitycli

lorg

lorg

Apache Logfile Security Analyzer

HTML208gpl-2.0

6 years ago

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python78mit

9 years ago

NetworkMapper

Android frontend for Nmap Security Scanner

Java66gpl-2.0

8 years ago

NoiseTorch

Project dead (security breach)

21

2 years ago

AdminControl

Additional security settings for Android

Java39gpl-3.0

3 years ago

honeyup

An uploader honeypot designed to look like poor website security.

Rust25gpl-3.0

3 years ago

android_app_security_checklist

Android App Security Checklist

846

2 years ago

security_monkey

security_monkey

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the

Python4350apache-2.0

4 years ago

awsaws-ec2aws-iam

metadata

This repository contains the data behind our Security, Privacy and Parental Cont

637

2 years ago

BreachDetector

Detect root, emulation, debug mode and other security concerns in your Xamarin a

C#88mit

3 years ago

debugdetectionemulation

GRASSMARLIN

Provides situational awareness of Industrial Control Systems (ICS) and Superviso

Java923other

5 years ago

analysiscontrol-systemsics

movecerts

movecerts

Move Android Certificates to system to avoid security warnings

Java29gpl-3.0

5 years ago

paseto

Platform-Agnostic Security Tokens implementation in GO (Golang)

Go838mit

2 years ago

authauthenticationdecoder

v0lt

v0lt

Security CTF Toolkit (Not maintained anymore)

Python365

7 years ago

python3securitysecurity-ctf

vokuro

vokuro

Sample application for Phalcon Framework (Acl, Auth, Security)

PHP370bsd-3-clause

last year

acldemophalcon

Obfuscator-iOS

Secure your app by obfuscating all the hard-coded security-sensitive strings.

Objective-C643mit

4 years ago

recon

recon

🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️

Rust28apache-2.0

2 years ago

devopsdevops-toolsrust

secureyournode

Security workshop

JavaScript26mit

9 years ago

LSMS

Linux Security and Monitoring Scripts

Python318mit

last year

c3

𝗖𝟯 provides compliant AWS CDK components to various security standards.

TypeScript31mit

2 years ago

aws-cdkciscis-controls

solcurity

Opinionated security and code quality standard for Solidity smart contracts.

2010

last year

csaw_esc_2019

csaw_esc_2019

CSAW Embedded Security Challenge 2019

Python34mit

5 years ago

metta

metta

An information security preparedness tool to do adversarial simulation.

Python1087mit

5 years ago

adversarialceleryinfosec

Tokenize

Security tokens for CakePHP

PHP12mit

4 years ago

Sentry

Sentry

Enforce security policies

Kotlin107gpl-3.0

2 years ago

androidkotlinsecurity

aurasium

Practical security policy enforcement for Android apps via bytecode rewriting an

Python36gpl-3.0

10 years ago

SOC-Multitool

SOC-Multitool

A powerful and user-friendly browser extension that streamlines investigations f

JavaScript321mit

last year

browser-extensionchrome-extensioncybersecurity

threatbus

🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi

Python257bsd-3-clause

last year

cifcif3ids

awesome-blocksec-ctf

A curated list of blockchain security Capture the Flag (CTF) competitions

14cc0-1.0

4 years ago

electronegativity

electronegativity

Electronegativity is a tool to identify misconfigurations and security anti-patt

JavaScript953apache-2.0

last year

electronelectron-appnodejs

statistically-likely-usernames

statistically-likely-usernames

Wordlists for creating statistically likely username lists for use in password a

906

2 years ago

awesome-windows-domain-hardening

A curated list of awesome Security Hardening techniques for Windows.

1731

5 years ago

hardeningsecuritywindows

sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based

Python790apache-2.0

last year

appsecdependency-scandevsecops

HaboMalHunter

HaboMalHunter

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.

Python726other

last year

dynamic-analysiselflinux

termbot

termbot

SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o

Java81other

2 years ago

Scout2

Scout2

Security auditing tool for AWS environments

Python1728gpl-2.0

6 years ago

awssecurity

cloud-inquisitor

cloud-inquisitor

Enforce ownership and data security within AWS

Python450apache-2.0

4 years ago

CANalyzat0r

CANalyzat0r

Security analysis toolkit for proprietary car protocols

Python748gpl-3.0

3 years ago

automotive-securitycarhackingreverse-engineering

wagtailenforcer

wagtailenforcer

The Wagtail arm of the law - enforce security protocols on your Wagtail site

Python45

3 years ago

axessecuritysecurity-protocol

pyramid_simpleauth

Session based authentication and role based security for a Pyramid web applicati

Python33unlicense

2 years ago

vsfire

vsfire

Visual Studio Code extension for syntax highlighting, hover help and code comple

TypeScript76mit

4 years ago

firebasefirebase-storagevscode

cssInjection

Stealing CSRF tokens with CSS injection (without iFrames)

HTML315gpl-2.0

7 years ago

PortAuthority

PortAuthority

A handy systems and security-focused tool, Port Authority is a very fast Android

Java345gpl-3.0

last year

androiddns-lookupjava

mqtt-pwn

mqtt-pwn

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se

Python346gpl-3.0

2 years ago

exploitationiotmqtt

RCTF

RCTF

Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.

32gpl-3.0

4 years ago

ctf-challengesctf-platformcybersecurity

mkit

mkit

MKIT is a Managed Kubernetes Inspection Tool that validates several common secur

Dockerfile401mit

3 years ago

aksawsazure

awesome-rtc-hacking

a list of awesome resources related to security and hacking of VoIP, WebRTC and

389cc0-1.0

2 years ago

awesomeawesome-listsbug-bounty

awesome-lockpicking

:unlock::sunglasses: A curated list of awesome guides, tools, and other resource

1386cc0-1.0

2 years ago

awesomeawesome-listkeypicking

SXA.SecurityHeaders

Sitecore SXA Security Headers Module

C#8mit

last year

Heimdall

Heimdall

Heimdall is a wrapper around the Security framework for simple encryption/decryp

Swift401mit

4 years ago

aesencrypted-messagesios

ironbee

Universal web application security sensor intended for real-time monitoring and

XSLT302apache-2.0

9 years ago

Vuldroid

Vuldroid

Vuldroid is a Vulnerable Android Application made with security issues in order

Java59mit

3 years ago

android-applicationandroid-securityapplication-security

bpflock

bpflock

bpflock - eBPF driven security for locking and auditing Linux machines

C136apache-2.0

3 years ago

bpfcontainersebpf

is-website-vulnerable

is-website-vulnerable

finds publicly known security vulnerabilities in a website's frontend JavaScript

JavaScript1927apache-2.0

last year

hacktoberfestlighthousenodejs

Logibit.Hawk

A F# Hawk implementation with a strongly typed API that guides your usage and mi

F#36other

6 years ago

NWebsec

Security libraries for ASP.NET

C#541bsd-3-clause

2 years ago

packetpig

Packetpig - Open Source Big Data Security Analytics

Python298

6 years ago

awesome-sec-talks

A collected list of awesome security talks

3981

3 years ago

conferenceshackinginfosec

parse

Parse: A Static Security Scanner

PHP362

6 years ago

phpscannersecurity

awesome-es

A collection of awesome resources for Splunk Enterprise Security

19cc0-1.0

4 years ago

awesomeawesome-listsplunk

corbfuzz

Code for ASE'21 Paper "CorbFuzz: Checking Browser Security Policies with Fuzzing

C3mit

3 years ago

browser-securityconcolic-executionfuzzing

raspberry-pi-kernel-hardened

Cross-compile the Linux kernel for Raspberry Pi with enhanced security in a sing

Shell21mit

2 years ago

linux-kernelraspberry-piraspberrypi-kernel

dlint-check

Github Action to run dlint security linter on your Python code

Dockerfile3mit

3 years ago

flake8github-actionslinter

drydock

drydock provides a flexible way of assessing the security of your Docker daemon

Python64gpl-2.0

8 years ago

auditdockersecurity

StaDynA

StaDynA: Addressing the Problem of Dynamic Code Updates in the Security Analysis

20

last year

androidandroid-securitydynamic-analysis

Secure-Pref-Manager

Secure Preference Manager for android. It uses various Encryption to protect you

Java70apache-2.0

8 years ago

androidencryptionhide-preferences

securecookie

Fast, secure and efficient secure cookie encoder/decoder

Go77mit

2 years ago

goSecretBoxPassword

A probably paranoid Golang utility library for securely hashing and encrypting p

Go59mit

2 years ago

credentialsgolanggolang-library

Secure-Photo-Viewer

Java49mit

4 years ago

androidimage-viewerjava

stormpath-sdk-dotnet

The Official Stormpath SDK for C# and Visual Basic. Stormpath enables developer

C#54apache-2.0

7 years ago

Docker-Secure-Deployment-Guidelines

Deployment checklist for securely deploying Docker

601

8 years ago

secure-ruby-development-guide

Guide to secure software development in Ruby

Makefile9other

9 years ago

secure-quick-reliable-login

This repository is an implementation for SQRL (Secure Quick Reliable Login) on A

Java