Secur
A FOSS, cross-platform TOTP client written in Flutter with the aim of providing
Dart3mit
3 years ago
security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#919lgpl-3.0
4 days ago
analysisanalyzercode
Free-Security-eBooks
Free Security and Hacking eBooks
4149
5 years ago
cloud-securitycyber-securityebooks
osx-security-awesome
A collection of OSX and iOS security resources
709apache-2.0
4 months ago
awesomeawesome-listhacking-mac
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
4 years ago
android-security-awesome
A collection of android security related resources
Shell7742apache-2.0
2 months ago
androidawesomeawesome-list
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1263apache-2.0
5 years ago
aspnet-product
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1323cc0-1.0
2 months ago
awesomeawesome-listcourses
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1815mit
4 years ago
checklistrailsruby
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript74apache-2.0
10 months ago
carbon-design-systemibm-securityjavascript
awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
387
5 months ago
awesomeawesome-listllm
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
4978
last month
awesome-listbest-practicesblue-team
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
6 years ago
code-analysisroslynroslyn-analyzer
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
447
5 months ago
awesomeawesome-listble
awesome-embedded-and-iot-security
A curated list of awesome embedded and IoT security resources.
1555cc0-1.0
7 months ago
awesomeawesome-listembedded
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP702gpl-3.0
last year
phpphp-codesnifferphpcs
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin766gpl-3.0
7 months ago
androidandroidanimationandroidviewmodel
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8055apache-2.0
2 months ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1509apache-2.0
7 months ago
awesomeawesome-listhacktoberfest
security-apis
A collective list of public APIs for use in security. Contributions welcome
844mit
11 months ago
awesome-listjsonjson-api
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
2825cc0-1.0
3 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#247mit
6 months ago
awesome-evm-security
🕶 A high-level overview of the EVM security ecosystem
151cc0-1.0
2 years ago
awesomeawesome-listblockchain
rust-security-framework
Bindings to the macOS Security.framework
Rust210apache-2.0
5 months ago
keychainmacosrust
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript15814other
yesterday
awesomeawesome-listcensorship
mana-security-app
macOS vulnerability management for individuals
JavaScript21mit
last year
cybersecurityelectronmacos
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python28apache-2.0
8 years ago
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16385gpl-3.0
4 days ago
android-securityapi-testingapk
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
988mit
6 months ago
cryptosecuritysecurity-tools
awesome-websocket-security
Awesome information for WebSockets security research
238apache-2.0
2 years ago
securitysecurity-toolsweb-application-security
security-belt
🥋 Framework for continuously improving the IT-Security of your teams through ga
JavaScript73apache-2.0
2 years ago
gamificationjavascriptmaturity-model
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python83
5 years ago
automotive-securitycar-hacking
awesome-web-security
🐶 A curated list of Web Security materials and resources.
10715
3 months ago
awesomeawesome-listlist
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
11385mit
3 months ago
awesome-listsecurity
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3055
3 years ago
dfirhuntingids
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
21736mit
5 months ago
apijwtoauth2
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript36other
2 years ago
ada-security
Ada Security - OAuth 2.0 client and server framework to secure web applications
Ada20apache-2.0
7 months ago
adaauthenticationjwt
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
788gpl-2.0
3 months ago
cybersecuritynewsletter
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python967mit
4 years ago
automationblue-teamblue-teams
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11313cc-by-sa-4.0
2 days ago
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl37other
2 months ago
sastsecuritystatic-analysis
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin248gpl-3.0
last year
activismadvicecrypto
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL543other
2 months ago
awsaws-security-groupaws-vpc
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
5 years ago
assessmentcybersecurityframework
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2487gpl-3.0
18 days ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python9618apache-2.0
yesterday
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
Python20912mit
7 days ago
appledisk-encryptiondnscrypt-proxy
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python845other
last year
audit-siphacking-toolspassword-cracker
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell8752apache-2.0
3 months ago
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#561
4 years ago
aspnetcorekatanaoauth2
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go1762other
7 days ago
appseccode-qualitycompliance
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1815apache-2.0
6 days ago
appseccicdctf
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP51177mit
4 months ago
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript67bsd-3-clause
3 years ago
appseceducationtraining-materials
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python124mit
9 months ago
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, co
Python3147mit
4 days ago
auditingsecurityssh
iOS-App-Security-Class
Simple class to check if app has been cracked, being debugged or enriched with c
Objective-C74mit
6 years ago
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#438mpl-2.0
2 years ago
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2161gpl-2.0
3 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript524apache-2.0
3 days ago
actionsegress-filteringgithub-actions
k-rail
Kubernetes security tool for policy enforcement
Go444apache-2.0
last year
k8skuberneteskubernetes-security
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2821mpl-2.0
2 years ago
reg
Docker registry v2 command line client and repo listing generator with security
Go1624mit
8 months ago
clicontainersdocker
vast
Easy data pipelines for security teams.
C++500bsd-3-clause
11 months ago
actor-modelbitmap-indexdataops
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8259other
3 days ago
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go13767mit
5 days ago
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python938agpl-3.0
3 days ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL6916mit
2 months ago
codeqlgithub-advanced-securitygithub-security-lab
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go178apache-2.0
25 days ago
clictfdcybersecurity
stronghold
Easily configure macOS security settings from the terminal.
Python1046mit
5 years ago
command-linecommand-line-toolhardening
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#567mit
7 months ago
hacktoberfest
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1097gpl-3.0
5 years ago
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2288apache-2.0
2 years ago
aflafl-fuzzbug-hunting
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript633mit
11 months ago
blueteamredteamsecret-management
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go919
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir50mit
last year
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell236mit
last year
firebasefirebase-firestorehaskell
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift142mit
12 months ago
brokenhandssecurityserver-side-swift
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1281other
last month
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3683mit
2 months ago
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
2 months ago
ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargat
TypeScript4630apache-2.0
22 days ago
cloud-nativecloudsecuritycnapp
progpilot
A static analysis tool for security
PHP306mit
9 months ago
phpsecurity-toolsstatic-code-analysis
LogESP
Open Source SIEM (Security Information and Event Management system).
Python186mit
9 months ago
asset-managementforensicslog
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1837
last year
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python3005mit
last month
enumerationfuzzinghacking
fleet
Open-source platform for IT, security, and infrastructure teams. (Linux, macOS,
Go2021other
2 months ago
device-managementemployee-experienceendpoint-ops
Astra
Automated Security Testing For REST API's
Python2429apache-2.0
last month
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin399gpl-3.0
3 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python478mit
6 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
gatsby
The best React-based framework with performance, scalability and security built
JavaScript54851mit
5 months ago
blogcompilergatsby
secure_headers
Manages application of security headers with many safe defaults
Ruby3122mit
8 months ago
content-security-policycookiecsp
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go4912bsd-3-clause
3 months ago
gouuid
shield
Comprehensive security for Lucky framework
Crystal52mit
6 months ago
authenticationcrystallucky-framework
GraphCrawler
GraphQL automated security testing toolkit
Python285mit
3 months ago
apiapi-hackingautomated-testing
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript358other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go488mit
2 years ago
androidandroid-securitycli
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1326other
last year
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1306mit
12 months ago
bugbountyenumerationpenetration-testing
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
8 years ago
qark
Tool to look for several security related Android application vulnerabilities
Python3144other
4 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#731other
2 months ago
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#717mit
4 months ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust920mit
2 years ago
actixhandlebarshttp
sobelow
Security-focused static analysis for the Phoenix Framework
Elixir1478apache-2.0
11 months ago
elixirphoenix-frameworksecurity
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4345apache-2.0
3 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
622
last year
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#87mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java905other
4 years ago
analysiscontrol-systemsics
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua5923gpl-3.0
8 days ago
dockerebpfipfix
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go789mit
last year
authauthenticationdecoder
awesome-appsec
A curated list of resources for learning about application security
PHP6118mit
8 months ago
application-securitycuratedowasp
PatrowlManager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Plat
HTML590agpl-3.0
6 months ago
apiautomationincident-response
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP370bsd-3-clause
10 months ago
acldemophalcon
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C638mit
3 years ago
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6747other
8 months ago
brakemanrailsruby
SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list,
2632mit
2 months ago
composerinfosecphp
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go3940other
8 days ago
bigquerycustomer-datacustomer-data-lake
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust26apache-2.0
last year
devopsdevops-toolsrust
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python344gpl-2.0
last month
magevulndb
List of Magento extensions with known security issues.
PHP192
4 months ago
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1460gpl-3.0
6 months ago
androidandroid-developmentfile-manager
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
last year
aws-cdkciscis-controls
black-mirror
Blacklists and whitelists that aim to promote security, safety, and sanity acros
Shell106agpl-3.0
2 years ago
adblock-listblackhole-listsblacklist
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4526apache-2.0
3 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1307mit
7 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby723mit
6 months ago
codereviewcybersecurityhanami
solcurity
Opinionated security and code quality standard for Solidity smart contracts.
1939
10 months ago
metta
An information security preparedness tool to do adversarial simulation.
Python1074mit
5 years ago
adversarialceleryinfosec
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2198mit
5 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift225mit
7 days ago
aesaes-256aes-encryption
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
9 years ago
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript310mit
9 months ago
browser-extensionchrome-extensioncybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3199apache-2.0
2 months ago
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2716apache-2.0
3 months ago
chrootlinuxlinux-namespaces
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python255bsd-3-clause
last year
cifcif3ids
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
3 years ago
caringcaribou
A friendly car security exploration tool for the CAN bus
Python675gpl-3.0
11 days ago
can-busecufuzzing
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript929apache-2.0
11 months ago
electronelectron-appnodejs
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript462mit
9 days ago
apolloapollo-servercybersecurity
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
736
2 years ago
k9-cdk
Provision strong AWS security policies easily using the AWS CDK, v1 or v2.
TypeScript8apache-2.0
last year
awscdkiam
lockfile-lint
Lint an npm or yarn lockfile to analyze and detect security issues
JavaScript744apache-2.0
9 months ago
hacktoberfestlintlinter
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java398apache-2.0
8 months ago
authenticationauthorizationcas
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java122apache-2.0
4 months ago
authenticationauthorizationcas
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1711
4 years ago
hardeningsecuritywindows
ShinobiCE
Shinobi Community Edition (CE) is a GPLv3+AGPLv3 release of Shinobi. The Free Op
JavaScript111other
3 years ago
tutanota
Description Tuta (formerly Tutanota), the fully secure encrypted email and ca
TypeScript5758gpl-3.0
3 days ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP1625agpl-3.0
14 days ago
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1271apache-2.0
5 months ago
cryptocryptographydatabase-proxy
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java78other
last year
Secur
A FOSS, cross-platform TOTP client written in Flutter with the aim of providing
Dart3mit
3 years ago
security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#919lgpl-3.0
4 days ago
analysisanalyzercode
Free-Security-eBooks
Free Security and Hacking eBooks
4149
5 years ago
cloud-securitycyber-securityebooks
osx-security-awesome
A collection of OSX and iOS security resources
709apache-2.0
4 months ago
awesomeawesome-listhacking-mac
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
4 years ago
android-security-awesome
A collection of android security related resources
Shell7742apache-2.0
2 months ago
androidawesomeawesome-list
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1263apache-2.0
5 years ago
aspnet-product
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1323cc0-1.0
2 months ago
awesomeawesome-listcourses
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1815mit
4 years ago
checklistrailsruby
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript74apache-2.0
10 months ago
carbon-design-systemibm-securityjavascript
awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
387
5 months ago
awesomeawesome-listllm
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
4978
last month
awesome-listbest-practicesblue-team
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
6 years ago
code-analysisroslynroslyn-analyzer
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
447
5 months ago
awesomeawesome-listble
awesome-embedded-and-iot-security
A curated list of awesome embedded and IoT security resources.
1555cc0-1.0
7 months ago
awesomeawesome-listembedded
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP702gpl-3.0
last year
phpphp-codesnifferphpcs
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin766gpl-3.0
7 months ago
androidandroidanimationandroidviewmodel
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8055apache-2.0
2 months ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1509apache-2.0
7 months ago
awesomeawesome-listhacktoberfest
security-apis
A collective list of public APIs for use in security. Contributions welcome
844mit
11 months ago
awesome-listjsonjson-api
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
2825cc0-1.0
3 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#247mit
6 months ago
awesome-evm-security
🕶 A high-level overview of the EVM security ecosystem
151cc0-1.0
2 years ago
awesomeawesome-listblockchain
rust-security-framework
Bindings to the macOS Security.framework
Rust210apache-2.0
5 months ago
keychainmacosrust
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript15814other
yesterday
awesomeawesome-listcensorship
mana-security-app
macOS vulnerability management for individuals
JavaScript21mit
last year
cybersecurityelectronmacos
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python28apache-2.0
8 years ago
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16385gpl-3.0
4 days ago
android-securityapi-testingapk
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
988mit
6 months ago
cryptosecuritysecurity-tools
awesome-websocket-security
Awesome information for WebSockets security research
238apache-2.0
2 years ago
securitysecurity-toolsweb-application-security
security-belt
🥋 Framework for continuously improving the IT-Security of your teams through ga
JavaScript73apache-2.0
2 years ago
gamificationjavascriptmaturity-model
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python83
5 years ago
automotive-securitycar-hacking
awesome-web-security
🐶 A curated list of Web Security materials and resources.
10715
3 months ago
awesomeawesome-listlist
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
11385mit
3 months ago
awesome-listsecurity
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3055
3 years ago
dfirhuntingids
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
21736mit
5 months ago
apijwtoauth2
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript36other
2 years ago
ada-security
Ada Security - OAuth 2.0 client and server framework to secure web applications
Ada20apache-2.0
7 months ago
adaauthenticationjwt
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
788gpl-2.0
3 months ago
cybersecuritynewsletter
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python967mit
4 years ago
automationblue-teamblue-teams
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11313cc-by-sa-4.0
2 days ago
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl37other
2 months ago
sastsecuritystatic-analysis
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin248gpl-3.0
last year
activismadvicecrypto
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL543other
2 months ago
awsaws-security-groupaws-vpc
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
5 years ago
assessmentcybersecurityframework
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2487gpl-3.0
18 days ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python9618apache-2.0
yesterday
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
Python20912mit
7 days ago
appledisk-encryptiondnscrypt-proxy
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python845other
last year
audit-siphacking-toolspassword-cracker
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell8752apache-2.0
3 months ago
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#561
4 years ago
aspnetcorekatanaoauth2
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go1762other
7 days ago
appseccode-qualitycompliance
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1815apache-2.0
6 days ago
appseccicdctf
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP51177mit
4 months ago
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript67bsd-3-clause
3 years ago
appseceducationtraining-materials
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python124mit
9 months ago
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, co
Python3147mit
4 days ago
auditingsecurityssh
iOS-App-Security-Class
Simple class to check if app has been cracked, being debugged or enriched with c
Objective-C74mit
6 years ago
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#438mpl-2.0
2 years ago
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2161gpl-2.0
3 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript524apache-2.0
3 days ago
actionsegress-filteringgithub-actions
k-rail
Kubernetes security tool for policy enforcement
Go444apache-2.0
last year
k8skuberneteskubernetes-security
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2821mpl-2.0
2 years ago
reg
Docker registry v2 command line client and repo listing generator with security
Go1624mit
8 months ago
clicontainersdocker
vast
Easy data pipelines for security teams.
C++500bsd-3-clause
11 months ago
actor-modelbitmap-indexdataops
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8259other
3 days ago
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go13767mit
5 days ago
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python938agpl-3.0
3 days ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL6916mit
2 months ago
codeqlgithub-advanced-securitygithub-security-lab
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go178apache-2.0
25 days ago
clictfdcybersecurity
stronghold
Easily configure macOS security settings from the terminal.
Python1046mit
5 years ago
command-linecommand-line-toolhardening
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#567mit
7 months ago
hacktoberfest
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1097gpl-3.0
5 years ago
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2288apache-2.0
2 years ago
aflafl-fuzzbug-hunting
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript633mit
11 months ago
blueteamredteamsecret-management
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go919
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir50mit
last year
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell236mit
last year
firebasefirebase-firestorehaskell
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift142mit
12 months ago
brokenhandssecurityserver-side-swift
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1281other
last month
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3683mit
2 months ago
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
2 months ago
ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargat
TypeScript4630apache-2.0
22 days ago
cloud-nativecloudsecuritycnapp
progpilot
A static analysis tool for security
PHP306mit
9 months ago
phpsecurity-toolsstatic-code-analysis
LogESP
Open Source SIEM (Security Information and Event Management system).
Python186mit
9 months ago
asset-managementforensicslog
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1837
last year
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python3005mit
last month
enumerationfuzzinghacking
fleet
Open-source platform for IT, security, and infrastructure teams. (Linux, macOS,
Go2021other
2 months ago
device-managementemployee-experienceendpoint-ops
Astra
Automated Security Testing For REST API's
Python2429apache-2.0
last month
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin399gpl-3.0
3 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python478mit
6 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
gatsby
The best React-based framework with performance, scalability and security built
JavaScript54851mit
5 months ago
blogcompilergatsby
secure_headers
Manages application of security headers with many safe defaults
Ruby3122mit
8 months ago
content-security-policycookiecsp
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go4912bsd-3-clause
3 months ago
gouuid
shield
Comprehensive security for Lucky framework
Crystal52mit
6 months ago
authenticationcrystallucky-framework
GraphCrawler
GraphQL automated security testing toolkit
Python285mit
3 months ago
apiapi-hackingautomated-testing
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript358other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go488mit
2 years ago
androidandroid-securitycli
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1326other
last year
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1306mit
12 months ago
bugbountyenumerationpenetration-testing
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
8 years ago
qark
Tool to look for several security related Android application vulnerabilities
Python3144other
4 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#731other
2 months ago
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#717mit
4 months ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust920mit
2 years ago
actixhandlebarshttp
sobelow
Security-focused static analysis for the Phoenix Framework
Elixir1478apache-2.0
11 months ago
elixirphoenix-frameworksecurity
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4345apache-2.0
3 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
622
last year
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#87mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java905other
4 years ago
analysiscontrol-systemsics
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua5923gpl-3.0
8 days ago
dockerebpfipfix
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go789mit
last year
authauthenticationdecoder
awesome-appsec
A curated list of resources for learning about application security
PHP6118mit
8 months ago
application-securitycuratedowasp
PatrowlManager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Plat
HTML590agpl-3.0
6 months ago
apiautomationincident-response
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP370bsd-3-clause
10 months ago
acldemophalcon
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C638mit
3 years ago
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6747other
8 months ago
brakemanrailsruby
SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list,
2632mit
2 months ago
composerinfosecphp
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go3940other
8 days ago
bigquerycustomer-datacustomer-data-lake
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust26apache-2.0
last year
devopsdevops-toolsrust
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python344gpl-2.0
last month
magevulndb
List of Magento extensions with known security issues.
PHP192
4 months ago
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1460gpl-3.0
6 months ago
androidandroid-developmentfile-manager
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
last year
aws-cdkciscis-controls
black-mirror
Blacklists and whitelists that aim to promote security, safety, and sanity acros
Shell106agpl-3.0
2 years ago
adblock-listblackhole-listsblacklist
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4526apache-2.0
3 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1307mit
7 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby723mit
6 months ago
codereviewcybersecurityhanami
solcurity
Opinionated security and code quality standard for Solidity smart contracts.
1939
10 months ago
metta
An information security preparedness tool to do adversarial simulation.
Python1074mit
5 years ago
adversarialceleryinfosec
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2198mit
5 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift225mit
7 days ago
aesaes-256aes-encryption
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
9 years ago
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript310mit
9 months ago
browser-extensionchrome-extensioncybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3199apache-2.0
2 months ago
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2716apache-2.0
3 months ago
chrootlinuxlinux-namespaces
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python255bsd-3-clause
last year
cifcif3ids
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
3 years ago
caringcaribou
A friendly car security exploration tool for the CAN bus
Python675gpl-3.0
11 days ago
can-busecufuzzing
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript929apache-2.0
11 months ago
electronelectron-appnodejs
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript462mit
9 days ago
apolloapollo-servercybersecurity
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
736
2 years ago
k9-cdk
Provision strong AWS security policies easily using the AWS CDK, v1 or v2.
TypeScript8apache-2.0
last year
awscdkiam
lockfile-lint
Lint an npm or yarn lockfile to analyze and detect security issues
JavaScript744apache-2.0
9 months ago
hacktoberfestlintlinter
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java398apache-2.0
8 months ago
authenticationauthorizationcas
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java122apache-2.0
4 months ago
authenticationauthorizationcas
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1711
4 years ago
hardeningsecuritywindows
ShinobiCE
Shinobi Community Edition (CE) is a GPLv3+AGPLv3 release of Shinobi. The Free Op
JavaScript111other
3 years ago
tutanota
Description Tuta (formerly Tutanota), the fully secure encrypted email and ca
TypeScript5758gpl-3.0
3 days ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP1625agpl-3.0
14 days ago
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1271apache-2.0
5 months ago
cryptocryptographydatabase-proxy
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java78other
last year