security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#944lgpl-3.0
4 months ago
analysisanalyzercode
Free-Security-eBooks
Free Security and Hacking eBooks
4233
5 years ago
cloud-securitycyber-securityebooks
osx-security-awesome
A collection of OSX and iOS security resources
727apache-2.0
11 months ago
awesomeawesome-listhacking-mac
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
5 years ago
android-security-awesome
A collection of android security related resources
Shell8099apache-2.0
3 months ago
androidawesomeawesome-list
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1266apache-2.0
6 years ago
aspnet-product
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1750cc0-1.0
last month
awesomeawesome-listcourses
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1812mit
5 years ago
checklistrailsruby
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript77apache-2.0
4 months ago
carbon-design-systemibm-securityjavascript
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
5224
5 months ago
awesome-listbest-practicesblue-team
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
7 years ago
code-analysisroslynroslyn-analyzer
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
486
11 months ago
awesomeawesome-listble
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP706gpl-3.0
2 years ago
phpphp-codesnifferphpcs
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin773gpl-3.0
last year
androidandroidanimationandroidviewmodel
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8278apache-2.0
2 months ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1562apache-2.0
last year
awesomeawesome-listhacktoberfest
security-apis
A collective list of public APIs for use in security. Contributions welcome
873mit
last year
awesome-listjsonjson-api
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
3001cc0-1.0
10 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#262mit
last year
awesome-evm-security
🕶 A high-level overview of the EVM security ecosystem
162cc0-1.0
2 years ago
awesomeawesome-listblockchain
rust-security-framework
Bindings to the macOS Security.framework
Rust230apache-2.0
4 months ago
keychainmacosrust
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript16519other
3 months ago
awesomeawesome-listcensorship
mana-security-app
macOS vulnerability management for individuals
JavaScript22mit
2 years ago
cybersecurityelectronmacos
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python29apache-2.0
8 years ago
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16875gpl-3.0
4 months ago
android-securityapi-testingapk
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
1067mit
last year
cryptosecuritysecurity-tools
awesome-websocket-security
Awesome information for WebSockets security research
239apache-2.0
3 years ago
securitysecurity-toolsweb-application-security
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python85
5 years ago
automotive-securitycar-hacking
awesome-web-security
🐶 A curated list of Web Security materials and resources.
11139
9 months ago
awesomeawesome-listlist
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
12479mit
4 months ago
awesome-listsecurity
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3056
4 years ago
dfirhuntingids
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
22267mit
7 months ago
apijwtoauth2
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript36other
2 years ago
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
806gpl-2.0
9 months ago
cybersecuritynewsletter
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python977mit
4 years ago
automationblue-teamblue-teams
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11530cc-by-sa-4.0
3 months ago
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl47other
last month
sastsecuritystatic-analysis
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin265gpl-3.0
6 months ago
activismadvicecrypto
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL562other
last month
awsaws-security-groupaws-vpc
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
6 years ago
assessmentcybersecurityframework
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2533gpl-3.0
5 months ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python10398apache-2.0
3 months ago
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
21123mit
4 months ago
appledisk-encryptiondnscrypt-proxy
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python869other
2 years ago
audit-siphacking-toolspassword-cracker
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell9164apache-2.0
last month
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#560
4 years ago
aspnetcorekatanaoauth2
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go2047other
6 days ago
appseccode-qualitycompliance
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1926apache-2.0
4 months ago
appseccicdctf
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP58636mit
yesterday
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript71bsd-3-clause
3 years ago
appseceducationtraining-materials
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python141mit
last year
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#443mpl-2.0
2 years ago
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2176gpl-2.0
4 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript587apache-2.0
4 months ago
actionsegress-filteringgithub-actions
k-rail
Kubernetes security tool for policy enforcement
Go445apache-2.0
2 years ago
k8skuberneteskubernetes-security
reg
Docker registry v2 command line client and repo listing generator with security
Go1662mit
5 months ago
clicontainersdocker
sobelow
Security-focused static analysis for the Phoenix Framework
Elixir1684apache-2.0
3 months ago
elixirphoenix-frameworksecurity
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8431other
4 months ago
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go14168mit
3 months ago
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python951agpl-3.0
4 months ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL7711mit
2 days ago
codeqlgithub-advanced-securitygithub-security-lab
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go182apache-2.0
4 months ago
clictfdcybersecurity
PANIX
Customizable Linux Persistence Tool for Security Research and Detection Engineer
Shell415mit
yesterday
backdoorbashdetection-engineering
stronghold
Easily configure macOS security settings from the terminal.
Python1102mit
5 years ago
command-linecommand-line-toolhardening
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#634mit
4 months ago
hacktoberfest
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1118gpl-3.0
6 years ago
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2398apache-2.0
6 months ago
aflafl-fuzzbug-hunting
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript636mit
last year
blueteamredteamsecret-management
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go922
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir54mit
2 years ago
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell238mit
2 years ago
firebasefirebase-firestorehaskell
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift149mit
18 days ago
brokenhandssecurityserver-side-swift
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1308other
8 months ago
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3885mit
last month
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
8 months ago
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2828mpl-2.0
3 years ago
progpilot
A static analysis tool for security
PHP330mit
4 months ago
phpsecurity-toolsstatic-code-analysis
LogESP
Open Source SIEM (Security Information and Event Management system).
Python194mit
last year
asset-managementforensicslog
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1844
2 years ago
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python3050mit
6 months ago
enumerationfuzzinghacking
Astra
Automated Security Testing For REST API's
Python2475apache-2.0
6 months ago
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin642gpl-3.0
3 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python481mit
12 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go5169bsd-3-clause
5 months ago
gouuid
GraphCrawler
GraphQL automated security testing toolkit
Python302mit
9 months ago
apiapi-hackingautomated-testing
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript358other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go511mit
3 years ago
androidandroid-securitycli
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1352other
5 months ago
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1343mit
7 months ago
bugbountyenumerationpenetration-testing
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
9 years ago
qark
Tool to look for several security related Android application vulnerabilities
Python3200other
10 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#779other
21 days ago
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#732mit
10 months ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust983mit
9 months ago
actixhandlebarshttp
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4357apache-2.0
4 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
641
2 years ago
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#89mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java923other
5 years ago
analysiscontrol-systemsics
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua6094gpl-3.0
3 months ago
dockerebpfipfix
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go838mit
2 years ago
authauthenticationdecoder
awesome-appsec
A curated list of resources for learning about application security
PHP6226mit
4 months ago
application-securitycuratedowasp
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP371bsd-3-clause
last year
acldemophalcon
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C647mit
4 years ago
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6944other
4 months ago
brakemanrailsruby
SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list,
2717mit
24 days ago
composerinfosecphp
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go4096other
yesterday
bigquerycdpcustomer-data
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust28apache-2.0
2 years ago
devopsdevops-toolsrust
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python349gpl-2.0
6 months ago
magevulndb
List of Magento extensions with known security issues.
PHP200
4 months ago
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1509gpl-3.0
5 months ago
androidandroid-developmentfile-manager
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
2 years ago
aws-cdkciscis-controls
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4767apache-2.0
9 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1361mit
2 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby737mit
9 months ago
codereviewcybersecurityhanami
metta
An information security preparedness tool to do adversarial simulation.
Python1087mit
6 years ago
adversarialceleryinfosec
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2245mit
5 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift227mit
7 months ago
aesaes-256aes-encryption
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
10 years ago
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript321mit
last year
browser-extensionchrome-extensioncybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3655apache-2.0
8 hours ago
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2982apache-2.0
17 days ago
chrootlinuxlinux-namespaces
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python257bsd-3-clause
2 years ago
cifcif3ids
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
4 years ago
caringcaribou
A friendly car security exploration tool for the CAN bus
Python706gpl-3.0
4 months ago
can-busecufuzzing
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript972apache-2.0
2 months ago
electronelectron-appnodejs
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript500mit
yesterday
apolloapollo-servercybersecurity
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
966
2 years ago
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java404apache-2.0
4 months ago
authenticationauthorizationcas
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java127apache-2.0
4 days ago
authenticationauthorizationcas
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1731
5 years ago
hardeningsecuritywindows
tutanota
Description PROTECT YOUR PRIVACY WITH TUTA MAIL FOR FREE: SECURE, PRIVATE AND
TypeScript6114gpl-3.0
9 hours ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP2292agpl-3.0
2 days ago
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1324apache-2.0
4 months ago
cryptocryptographydatabase-proxy
fwanalyzer
a tool to analyze filesystem images for security
Go485apache-2.0
last year
androidembedded-linuxfilesystem
OwaspHeaders.Core
Inject OWASP recommended HTTP Headers for increased security in a single line
C#276mit
6 months ago
aspnetcorehttp-headermiddleware
InviZible
Android application for online privacy and security
Java1506gpl-3.0
5 days ago
advertisingandroidandroid-application
honggfuzz
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin
C3022apache-2.0
4 months ago
cfuzzingsecurity
hblock
Improve your security and privacy by blocking ads, tracking and malware domains.
Shell1625mit
30 days ago
ad-blockeradblockadblocker
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java84other
2 years ago
cyberowl
A daily updated summary of the most frequent types of security advisories curren
Python241mit
9 months ago
cisacvesecurity
safenotes
Safe Notes is a security project aimed at providing an encrypted, private note m
Dart235gpl-3.0
12 days ago
androidanonymitydart
matano
Open source security data lake for threat hunting, detection & response, and cyb
Rust1454apache-2.0
4 months ago
alertingapache-icebergaws
android-money-manager-ex
Manage your finances on-the-go, encrypted for security, and sync via your storag
Java504gpl-3.0
9 hours ago
cipherencryptionfinance
CANalyzat0r
Security analysis toolkit for proprietary car protocols
Python748gpl-3.0
3 years ago
automotive-securitycarhackingreverse-engineering
wagtailenforcer
The Wagtail arm of the law - enforce security protocols on your Wagtail site
Python45
3 years ago
axessecuritysecurity-protocol
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CT
Python58983mit
4 months ago
bountybugbountybypass
pyramid_simpleauth
Session based authentication and role based security for a Pyramid web applicati
Python33unlicense
2 years ago
vsfire
Visual Studio Code extension for syntax highlighting, hover help and code comple
TypeScript76mit
5 years ago
firebasefirebase-storagevscode
drozer
The Leading Security Assessment Framework for Android.
Python3753other
4 months ago
androiddrozerjava
scout
Description The Scout - Full App for accessing a Scout server, which is a sta
Go14mit
4 months ago
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
Go4602apache-2.0
2 days ago
openssf-scorecardscorecard
PortAuthority
A handy systems and security-focused tool, Port Authority is a very fast Android
Java354gpl-3.0
last year
androiddns-lookupjava
rails-template
Application template for Rails 7 projects; preloaded with best practices for TDD
Ruby307other
2 days ago
ackamarailsrails-template
mqtt-pwn
MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se
Python368gpl-3.0
3 months ago
exploitationiotmqtt
RCTF
Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.
32gpl-3.0
4 years ago
ctf-challengesctf-platformcybersecurity
afterglow-cloud
AfterGlow Cloud is a security visualization tool which lets users upload data an
Perl14
12 years ago
cakephp-encrypted-type
:lock_with_ink_pen: CakePHP plugin that provides field-level (column) encryption
PHP8mit
4 years ago
cakephpcakephp-plugindata-encryption
hubble
Hubble - Network, Service & Security Observability for Kubernetes using eBPF
Makefile3551apache-2.0
18 hours ago
ciliumebpfkubernetes
security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
C#944lgpl-3.0
4 months ago
analysisanalyzercode
Free-Security-eBooks
Free Security and Hacking eBooks
4233
5 years ago
cloud-securitycyber-securityebooks
osx-security-awesome
A collection of OSX and iOS security resources
727apache-2.0
11 months ago
awesomeawesome-listhacking-mac
timely-security-analytics
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta
Scala29other
5 years ago
android-security-awesome
A collection of android security related resources
Shell8099apache-2.0
3 months ago
androidawesomeawesome-list
Security
[Archived] Middleware for security and authorization of web apps. Project moved
C#1266apache-2.0
6 years ago
aspnet-product
awesome-cyber-security-university
🎓 Because Education should be free. Contributions welcome! 🕵️
1750cc0-1.0
last month
awesomeawesome-listcourses
zen-rails-security-checklist
Checklist of security precautions for Ruby on Rails applications.
Ruby1812mit
5 years ago
checklistrailsruby
ibm-security
A Carbon-powered React component library built by IBM Security
JavaScript77apache-2.0
4 months ago
carbon-design-systemibm-securityjavascript
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
5224
5 months ago
awesome-listbest-practicesblue-team
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
C#208lgpl-3.0
7 years ago
code-analysisroslynroslyn-analyzer
awesome-bluetooth-security
List of Bluetooth BR/EDR/LE security resources
486
11 months ago
awesomeawesome-listble
phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie
PHP706gpl-3.0
2 years ago
phpphp-codesnifferphpcs
Vigilante
🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati
Kotlin773gpl-3.0
last year
androidandroidanimationandroidviewmodel
tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin
Java8278apache-2.0
2 months ago
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python1562apache-2.0
last year
awesomeawesome-listhacktoberfest
security-apis
A collective list of public APIs for use in security. Contributions welcome
873mit
last year
awesome-listjsonjson-api
awesome-vehicle-security
🚗 A curated list of resources for learning about vehicle security and car hack
3001cc0-1.0
10 months ago
automotiveawesomeawesome-list
aspnetcore-security-headers
Middleware for adding security headers to an ASP.NET Core application.
C#262mit
last year
awesome-evm-security
🕶 A high-level overview of the EVM security ecosystem
162cc0-1.0
2 years ago
awesomeawesome-listblockchain
rust-security-framework
Bindings to the macOS Security.framework
Rust230apache-2.0
4 months ago
keychainmacosrust
personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy
TypeScript16519other
3 months ago
awesomeawesome-listcensorship
mana-security-app
macOS vulnerability management for individuals
JavaScript22mit
2 years ago
cybersecurityelectronmacos
awesome-industrial-control-system-security
A curated list of resources related to Industrial Control System (ICS) security.
Python29apache-2.0
8 years ago
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application
JavaScript16875gpl-3.0
4 months ago
android-securityapi-testingapk
simple-security-toolkit
A collection of practical security-focused guides and checklists for smart contr
1067mit
last year
cryptosecuritysecurity-tools
awesome-websocket-security
Awesome information for WebSockets security research
239apache-2.0
3 years ago
securitysecurity-toolsweb-application-security
automotive-security-research
This repository contains reverse engineering results and resources for a few spe
Python85
5 years ago
automotive-securitycar-hacking
awesome-web-security
🐶 A curated list of Web Security materials and resources.
11139
9 months ago
awesomeawesome-listlist
awesome-security
A collection of awesome software, libraries, documents, books, resources and coo
12479mit
4 months ago
awesome-listsecurity
security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni
3056
4 years ago
dfirhuntingids
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing
22267mit
7 months ago
apijwtoauth2
snync
Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript36other
2 years ago
awesome-security-newsletters
Periodic cyber security newsletters that capture the latest news, summaries of c
806gpl-2.0
9 months ago
cybersecuritynewsletter
DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for
Python977mit
4 years ago
automationblue-teamblue-teams
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual
Python11530cc-by-sa-4.0
3 months ago
androidandroid-applicationcompliancy-checklist
zarn
A lightweight static security analysis tool for modern Perl Apps
Perl47other
last month
sastsecuritystatic-analysis
Umbrella_android
Open source Android, iOS and Web app for learning about and managing digital and
Kotlin265gpl-3.0
6 months ago
activismadvicecrypto
terraform-aws-security-group
Terraform module to create AWS Security Group resources 🇺🇦
HCL562other
last month
awsaws-security-groupaws-vpc
RSF
The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz
86gpl-3.0
6 years ago
assessmentcybersecurityframework
RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you
JavaScript2533gpl-3.0
5 months ago
android-securityfridaios-security
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do
Python10398apache-2.0
3 months ago
awsazurecis-benchmark
macOS-Security-and-Privacy-Guide
Guide to securing and improving privacy on macOS
21123mit
4 months ago
appledisk-encryptiondnscrypt-proxy
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a
Python869other
2 years ago
audit-siphacking-toolspassword-cracker
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-
Shell9164apache-2.0
last month
AspNet.Security.OpenIdConnect.Server
OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
C#560
4 years ago
aspnetcorekatanaoauth2
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security a
Go2047other
6 days ago
appseccode-qualitycompliance
cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip
Python1926apache-2.0
4 months ago
appseccicdctf
SecLists
SecLists is the security tester's companion. It's a collection of multiple types
PHP58636mit
yesterday
appsec-education
Presentations, training modules, and other education materials from Duo Security
JavaScript71bsd-3-clause
3 years ago
appseceducationtraining-materials
fastapi-security
Implements authentication and authorization as FastAPI dependencies
Python141mit
last year
Sitecore-Security-Rights-Reporting
View all the Access right set on Sitecore rols or users
C#7
2 years ago
sitecore
ssh-audit
SSH server & client security auditing (banner, key exchange, encryption, mac, co
Python3263mit
4 months ago
auditingsecurityssh
puma-scan
Puma Scan is a software security Visual Studio extension that provides real time
C#443mpl-2.0
2 years ago
pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl
Python2176gpl-2.0
4 years ago
abstract-syntaxabstract-syntax-treecontrol-flow-graph
harden-runner
Network egress filtering and runtime security for GitHub-hosted and self-hosted
TypeScript587apache-2.0
4 months ago
actionsegress-filteringgithub-actions
k-rail
Kubernetes security tool for policy enforcement
Go445apache-2.0
2 years ago
k8skuberneteskubernetes-security
reg
Docker registry v2 command line client and repo listing generator with security
Go1662mit
5 months ago
clicontainersdocker
sobelow
Security-focused static analysis for the Phoenix Framework
Elixir1684apache-2.0
3 months ago
elixirphoenix-frameworksecurity
wpscan
WPScan WordPress security scanner. Written for security professionals and blog m
Ruby8431other
4 months ago
hacking-toolscanscanner
nebula
Description Nebula is a scalable overlay networking tool with a focus on perf
Go14168mit
3 months ago
intelmq
IntelMQ is a solution for IT security teams for collecting and processing securi
Python951agpl-3.0
4 months ago
alertsautomationcert
codeql
CodeQL: the libraries and queries that power security researchers around the wor
CodeQL7711mit
2 days ago
codeqlgithub-advanced-securitygithub-security-lab
haaukins
A Highly Accessible and Automated Virtualization Platform for Security Education
Go182apache-2.0
4 months ago
clictfdcybersecurity
PANIX
Customizable Linux Persistence Tool for Security Research and Detection Engineer
Shell415mit
yesterday
backdoorbashdetection-engineering
stronghold
Easily configure macOS security settings from the terminal.
Python1102mit
5 years ago
command-linecommand-line-toolhardening
NetEscapades.AspNetCore.SecurityHeaders
Small package to allow adding security headers to ASP.NET Core websites
C#634mit
4 months ago
hacktoberfest
AndroBugs_Framework
AndroBugs Framework is an efficient Android vulnerability scanner that helps dev
Python1118gpl-3.0
6 years ago
Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
2398apache-2.0
6 months ago
aflafl-fuzzbug-hunting
repo-supervisor
Scan your code for security misconfiguration, search for passwords and secrets.
JavaScript636mit
last year
blueteamredteamsecret-management
totp-ssh-fluxer
Take security by obscurity to the next level (this is a bad idea, don't really u
Go922
2 years ago
iptablesobscurityssh
atomex
🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a
Elixir54mit
2 years ago
atomelixirrss
fireward
A concise and readable language for Firestore security rules, similar to Firebas
Haskell238mit
2 years ago
firebasefirebase-firestorehaskell
VaporSecurityHeaders
Harden Your Security Headers For Vapor
Swift149mit
18 days ago
brokenhandssecurityserver-side-swift
joy
A package for capturing and analyzing network flow data and intraflow data, for
C1308other
8 months ago
mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe
Python3885mit
last month
blockchainethereumprogram-analysis
caringcaribounext
A fork of a friendly car security exploration tool for the CAN bus
Python5gpl-3.0
8 months ago
H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
JavaScript2828mpl-2.0
3 years ago
progpilot
A static analysis tool for security
PHP330mit
4 months ago
phpsecurity-toolsstatic-code-analysis
LogESP
Open Source SIEM (Security Information and Event Management system).
Python194mit
last year
asset-managementforensicslog
domain_analyzer
Analyze the security of any domain by finding all the information possible. Made
Python1844
2 years ago
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability
Python3050mit
6 months ago
enumerationfuzzinghacking
Astra
Automated Security Testing For REST API's
Python2475apache-2.0
6 months ago
ci-cdowasppenetration-testing
File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin642gpl-3.0
3 days ago
androidfile-managerfoss
octopus
Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra
Python481mit
12 months ago
blockchaincall-flow-analysiscontrol-flow-analysis
uuid
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security
Go5169bsd-3-clause
5 months ago
gouuid
GraphCrawler
GraphQL automated security testing toolkit
Python302mit
9 months ago
apiapi-hackingautomated-testing
aaf-easypassword
:lock: Easy Password is password management application. This application uses p
Kotlin34other
5 years ago
android-appandroid-applicationkotlin
scanner-cli
A project security/vulnerability/risk scanning tool
JavaScript358other
3 years ago
cidockernodejs
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP
Go511mit
3 years ago
androidandroid-securitycli
itextsharp
[DEPRECATED] .NET port of the iText library, only security fixes will be added —
C#1352other
5 months ago
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
Python1343mit
7 months ago
bugbountyenumerationpenetration-testing
threataggregator
Aggregates security threats from a number of online sources, and outputs to Sysl
Python78mit
9 years ago
qark
Tool to look for several security related Android application vulnerabilities
Python3200other
10 months ago
binskim
A binary static analysis tool that provides security and correctness results for
C#779other
21 days ago
infersharp
Infer# is an interprocedural and scalable static code analyzer for C#. Via the c
C#732mit
10 months ago
binserve
A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi
Rust983mit
9 months ago
actixhandlebarshttp
security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the
Python4357apache-2.0
4 years ago
awsaws-ec2aws-iam
metadata
This repository contains the data behind our Security, Privacy and Parental Cont
641
2 years ago
BreachDetector
Detect root, emulation, debug mode and other security concerns in your Xamarin a
C#89mit
3 years ago
debugdetectionemulation
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Superviso
Java923other
5 years ago
analysiscontrol-systemsics
ntopng
Web-based Traffic and Security Network Traffic Monitoring
Lua6094gpl-3.0
3 months ago
dockerebpfipfix
paseto
Platform-Agnostic Security Tokens implementation in GO (Golang)
Go838mit
2 years ago
authauthenticationdecoder
awesome-appsec
A curated list of resources for learning about application security
PHP6226mit
4 months ago
application-securitycuratedowasp
vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
PHP371bsd-3-clause
last year
acldemophalcon
Obfuscator-iOS
Secure your app by obfuscating all the hard-coded security-sensitive strings.
Objective-C647mit
4 years ago
brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
Ruby6944other
4 months ago
brakemanrailsruby
SecurityAdvisories
:closed_lock_with_key: Security advisories as a simple composer exclusion list,
2717mit
24 days ago
composerinfosecphp
rudder-server
Privacy and Security focused Segment-alternative, in Golang and React
Go4096other
yesterday
bigquerycdpcustomer-data
recon
🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
Rust28apache-2.0
2 years ago
devopsdevops-toolsrust
cotopaxi
Set of tools for security testing of Internet of Things devices using specific n
Python349gpl-2.0
6 months ago
magevulndb
List of Magento extensions with known security issues.
PHP200
4 months ago
extensionsmagentovulnerability
Simple-File-Manager
Easy app for managing your files without ads, respecting your privacy & security
Kotlin1509gpl-3.0
5 months ago
androidandroid-developmentfile-manager
c3
𝗖𝟯 provides compliant AWS CDK components to various security standards.
TypeScript31mit
2 years ago
aws-cdkciscis-controls
terrascan
Detect compliance and security violations across Infrastructure as Code to mitig
Go4767apache-2.0
9 days ago
architectureawsaws-security
terraform-compliance/cli
a lightweight, security focused, BDD test framework against terraform.
Python1361mit
2 months ago
bddbdd-stylecompliance
dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It
Ruby737mit
9 months ago
codereviewcybersecurityhanami
metta
An information security preparedness tool to do adversarial simulation.
Python1087mit
6 years ago
adversarialceleryinfosec
secure
HTTP middleware for Go that facilitates some quick security wins.
Go2245mit
5 months ago
gogolangmiddleware
SecureDefaults
Elevate the security of your UserDefaults with this lightweight wrapper that ad
Swift227mit
7 months ago
aesaes-256aes-encryption
aurasium
Practical security policy enforcement for Android apps via bytecode rewriting an
Python36gpl-3.0
10 years ago
SOC-Multitool
A powerful and user-friendly browser extension that streamlines investigations f
JavaScript321mit
last year
browser-extensionchrome-extensioncybersecurity
tetragon
eBPF-based Security Observability and Runtime Enforcement
Go3655apache-2.0
8 hours ago
bpfebpfkernel
nsjail
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl
C++2982apache-2.0
17 days ago
chrootlinuxlinux-namespaces
threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi
Python257bsd-3-clause
2 years ago
cifcif3ids
awesome-blocksec-ctf
A curated list of blockchain security Capture the Flag (CTF) competitions
14cc0-1.0
4 years ago
caringcaribou
A friendly car security exploration tool for the CAN bus
Python706gpl-3.0
4 months ago
can-busecufuzzing
electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patt
JavaScript972apache-2.0
2 months ago
electronelectron-appnodejs
graphql-armor
🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En
TypeScript500mit
yesterday
apolloapollo-servercybersecurity
statistically-likely-usernames
Wordlists for creating statistically likely username lists for use in password a
966
2 years ago
play-pac4j
Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI
Java404apache-2.0
4 months ago
authenticationauthorizationcas
vertx-pac4j
Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
Java127apache-2.0
4 days ago
authenticationauthorizationcas
passbolt_api
Description Take your team's passwords with you wherever you go by downloadin
PHP4723agpl-3.0
yesterday
cakephpcakephp4credentials
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
1731
5 years ago
hardeningsecuritywindows
tutanota
Description PROTECT YOUR PRIVACY WITH TUTA MAIL FOR FREE: SECURE, PRIVATE AND
TypeScript6114gpl-3.0
9 hours ago
emailencryptionjavascript
2FAuth
A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t
PHP2292agpl-3.0
2 days ago
2fa2factorhotp
acra
Database security suite. Database proxy with field-level encryption, search thro
Go1324apache-2.0
4 months ago
cryptocryptographydatabase-proxy
fwanalyzer
a tool to analyze filesystem images for security
Go485apache-2.0
last year
androidembedded-linuxfilesystem
OwaspHeaders.Core
Inject OWASP recommended HTTP Headers for increased security in a single line
C#276mit
6 months ago
aspnetcorehttp-headermiddleware
InviZible
Android application for online privacy and security
Java1506gpl-3.0
5 days ago
advertisingandroidandroid-application
honggfuzz
Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin
C3022apache-2.0
4 months ago
cfuzzingsecurity
hblock
Improve your security and privacy by blocking ads, tracking and malware domains.
Shell1625mit
30 days ago
ad-blockeradblockadblocker
termbot
SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o
Java84other
2 years ago
cyberowl
A daily updated summary of the most frequent types of security advisories curren
Python241mit
9 months ago
cisacvesecurity
safenotes
Safe Notes is a security project aimed at providing an encrypted, private note m
Dart235gpl-3.0
12 days ago
androidanonymitydart
matano
Open source security data lake for threat hunting, detection & response, and cyb
Rust1454apache-2.0
4 months ago
alertingapache-icebergaws
android-money-manager-ex
Manage your finances on-the-go, encrypted for security, and sync via your storag
Java504gpl-3.0
9 hours ago
cipherencryptionfinance
CANalyzat0r
Security analysis toolkit for proprietary car protocols
Python748gpl-3.0
3 years ago
automotive-securitycarhackingreverse-engineering
wagtailenforcer
The Wagtail arm of the law - enforce security protocols on your Wagtail site
Python45
3 years ago
axessecuritysecurity-protocol
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CT
Python58983mit
4 months ago
bountybugbountybypass
pyramid_simpleauth
Session based authentication and role based security for a Pyramid web applicati
Python33unlicense
2 years ago
vsfire
Visual Studio Code extension for syntax highlighting, hover help and code comple
TypeScript76mit
5 years ago
firebasefirebase-storagevscode
drozer
The Leading Security Assessment Framework for Android.
Python3753other
4 months ago
androiddrozerjava
scout
Description The Scout - Full App for accessing a Scout server, which is a sta
Go14mit
4 months ago
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
Go4602apache-2.0
2 days ago
openssf-scorecardscorecard
PortAuthority
A handy systems and security-focused tool, Port Authority is a very fast Android
Java354gpl-3.0
last year
androiddns-lookupjava
rails-template
Application template for Rails 7 projects; preloaded with best practices for TDD
Ruby307other
2 days ago
ackamarailsrails-template
mqtt-pwn
MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se
Python368gpl-3.0
3 months ago
exploitationiotmqtt
RCTF
Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.
32gpl-3.0
4 years ago
ctf-challengesctf-platformcybersecurity
ssh-audit
SSH server auditing (banner, key exchange, encryption, mac, compression, compati
Python2959mit
5 months ago