security-code-scan

security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

C#930lgpl-3.0

3 months ago

analysisanalyzercode

Free-Security-eBooks

Free Security and Hacking eBooks

4233

5 years ago

cloud-securitycyber-securityebooks

osx-security-awesome

A collection of OSX and iOS security resources

721apache-2.0

9 months ago

awesomeawesome-listhacking-mac

timely-security-analytics

Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta

Scala29other

5 years ago

android-security-awesome

A collection of android security related resources

Shell7959apache-2.0

2 months ago

androidawesomeawesome-list

Security

[Archived] Middleware for security and authorization of web apps. Project moved

C#1266apache-2.0

6 years ago

aspnet-product

awesome-cyber-security-university

awesome-cyber-security-university

🎓 Because Education should be free. Contributions welcome! 🕵️

1570cc0-1.0

4 months ago

awesomeawesome-listcourses

zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

Ruby1812mit

5 years ago

checklistrailsruby

ibm-security

A Carbon-powered React component library built by IBM Security

JavaScript77apache-2.0

3 months ago

carbon-design-systemibm-securityjavascript

security-acronyms

Curated list of Cyber Security acronyms & abbreviations

HTML18

2 months ago

Android-Security-Reference

A W.I.P Android Security Ref

903

3 months ago

androidsecurity

roslyn-security-guard

roslyn-security-guard

Roslyn analyzers that aim to help security audit on .NET applications.

C#208lgpl-3.0

7 years ago

code-analysisroslynroslyn-analyzer

awesome-bluetooth-security

List of Bluetooth BR/EDR/LE security resources

486

10 months ago

awesomeawesome-listble

phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP706gpl-3.0

2 years ago

phpphp-codesnifferphpcs

Vigilante

Vigilante

🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati

Kotlin773gpl-3.0

12 months ago

androidandroidanimationandroidviewmodel

tsunami-security-scanner

Tsunami is a general purpose network security scanner with an extensible plugin

Java8216apache-2.0

17 days ago

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python1562apache-2.0

11 months ago

awesomeawesome-listhacktoberfest

security-apis

security-apis

A collective list of public APIs for use in security. Contributions welcome

873mit

last year

awesome-listjsonjson-api

awesome-vehicle-security

awesome-vehicle-security

🚗 A curated list of resources for learning about vehicle security and car hack

3001cc0-1.0

8 months ago

automotiveawesomeawesome-list

aspnetcore-security-headers

Middleware for adding security headers to an ASP.NET Core application.

C#262mit

11 months ago

rust-security-framework

Bindings to the macOS Security.framework

Rust230apache-2.0

2 months ago

keychainmacosrust

personal-security-checklist

personal-security-checklist

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy

TypeScript16519other

2 months ago

awesomeawesome-listcensorship

mana-security-app

macOS vulnerability management for individuals

JavaScript22mit

2 years ago

cybersecurityelectronmacos

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python28apache-2.0

8 years ago

Mobile-Security-Framework-MobSF

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application

JavaScript16875gpl-3.0

2 months ago

android-securityapi-testingapk

simple-security-toolkit

A collection of practical security-focused guides and checklists for smart contr

1023mit

11 months ago

cryptosecuritysecurity-tools

awesome-websocket-security

Awesome information for WebSockets security research

239apache-2.0

3 years ago

securitysecurity-toolsweb-application-security

automotive-security-research

automotive-security-research

This repository contains reverse engineering results and resources for a few spe

Python85

5 years ago

automotive-securitycar-hacking

awesome-web-security

🐶 A curated list of Web Security materials and resources.

11139

7 months ago

awesomeawesome-listlist

awesome-security

A collection of awesome software, libraries, documents, books, resources and coo

11965mit

2 months ago

awesome-listsecurity

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3056

3 years ago

dfirhuntingids

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing

22267mit

6 months ago

apijwtoauth2

snync

Mitigate security concerns of Dependency Confusion supply chain security risks

JavaScript36other

2 years ago

security-adventure

Go on an educational Web security adventure!

JavaScript335

11 years ago

DumpsterFire

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for

Python977mit

4 years ago

automationblue-teamblue-teams

owasp-mastg

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual

Python11530cc-by-sa-4.0

2 months ago

androidandroid-applicationcompliancy-checklist

zarn

A lightweight static security analysis tool for modern Perl Apps

Perl44other

last month

sastsecuritystatic-analysis

Umbrella_android

Umbrella_android

Open source Android, iOS and Web app for learning about and managing digital and

Kotlin261gpl-3.0

4 months ago

activismadvicecrypto

terraform-aws-security-group

Terraform module to create AWS Security Group resources 🇺🇦

HCL562other

last month

awsaws-security-groupaws-vpc

RSF

RSF

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz

86gpl-3.0

6 years ago

assessmentcybersecurityframework

RMS-Runtime-Mobile-Security

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you

JavaScript2533gpl-3.0

3 months ago

android-securityfridaios-security

prowler

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do

Python10398apache-2.0

2 months ago

awsazurecis-benchmark

macOS-Security-and-Privacy-Guide

macOS-Security-and-Privacy-Guide

Guide to securing and improving privacy on macOS

21123mit

2 months ago

appledisk-encryptiondnscrypt-proxy

sipvicious

sipvicious

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a

Python869other

2 years ago

audit-siphacking-toolspassword-cracker

docker-bench-security

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-

Shell9025apache-2.0

5 months ago

AspNet.Security.OpenIdConnect.Server

OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core

C#560

4 years ago

aspnetcorekatanaoauth2

bearer

Code security scanning tool (SAST) to discover, filter and prioritize security a

Go1965other

6 days ago

appseccode-qualitycompliance

cicd-goat

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1875apache-2.0

3 months ago

appseccicdctf

SecLists

SecLists is the security tester's companion. It's a collection of multiple types

PHP57233mit

2 days ago

appsec-education

Presentations, training modules, and other education materials from Duo Security

JavaScript68bsd-3-clause

3 years ago

appseceducationtraining-materials

fastapi-security

Implements authentication and authorization as FastAPI dependencies

Python139mit

last year

Sitecore-Security-Rights-Reporting

Sitecore-Security-Rights-Reporting

View all the Access right set on Sitecore rols or users

C#7

2 years ago

sitecore

ssh-audit

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, co

Python3263mit

2 months ago

auditingsecurityssh

puma-scan

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time

C#443mpl-2.0

2 years ago

pyt

pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2172gpl-2.0

4 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

harden-runner

harden-runner

Network egress filtering and runtime security for GitHub-hosted and self-hosted

TypeScript587apache-2.0

2 months ago

actionsegress-filteringgithub-actions

k-rail

Kubernetes security tool for policy enforcement

Go445apache-2.0

2 years ago

k8skuberneteskubernetes-security

reg

reg

Docker registry v2 command line client and repo listing generator with security

Go1655mit

3 months ago

clicontainersdocker

bolt

An integrated security system for applications built on component

Clojure123mit

9 years ago

ScoutSuite

ScoutSuite

Multi-Cloud Security Auditing Tool

Python6392gpl-2.0

2 months ago

auditingawsazure

gosec

gosec

Go security checker

Go7643apache-2.0

2 months ago

golangsecuritysecurity-automation

wpscan

wpscan

WPScan WordPress security scanner. Written for security professionals and blog m

Ruby8431other

2 months ago

hacking-toolscanscanner

nebula

nebula

Description Nebula is a scalable overlay networking tool with a focus on perf

Go14168mit

2 months ago

intelmq

intelmq

IntelMQ is a solution for IT security teams for collecting and processing securi

Python951agpl-3.0

2 months ago

alertsautomationcert

codeql

codeql

CodeQL: the libraries and queries that power security researchers around the wor

CodeQL7554mit

2 days ago

codeqlgithub-advanced-securitygithub-security-lab

haaukins

haaukins

A Highly Accessible and Automated Virtualization Platform for Security Education

Go182apache-2.0

2 months ago

clictfdcybersecurity

stronghold

stronghold

Easily configure macOS security settings from the terminal.

Python1081mit

5 years ago

command-linecommand-line-toolhardening

NetEscapades.AspNetCore.SecurityHeaders

Small package to allow adding security headers to ASP.NET Core websites

C#634mit

2 months ago

hacktoberfest

AndroBugs_Framework

AndroBugs_Framework

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1118gpl-3.0

5 years ago

Fuzzing101

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

2398apache-2.0

4 months ago

aflafl-fuzzbug-hunting

cloudsploit

cloudsploit

Cloud Security Posture Management (CSPM)

JavaScript3282gpl-3.0

3 months ago

alibabaaquaaws

repo-supervisor

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

JavaScript636mit

last year

blueteamredteamsecret-management

totp-ssh-fluxer

totp-ssh-fluxer

Take security by obscurity to the next level (this is a bad idea, don't really u

Go918

2 years ago

iptablesobscurityssh

atomex

🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a

Elixir54mit

2 years ago

atomelixirrss

fireward

A concise and readable language for Firestore security rules, similar to Firebas

Haskell238mit

last year

firebasefirebase-firestorehaskell

VaporSecurityHeaders

VaporSecurityHeaders

Harden Your Security Headers For Vapor

Swift147mit

last year

brokenhandssecurityserver-side-swift

joy

A package for capturing and analyzing network flow data and intraflow data, for

C1288other

6 months ago

mythril

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe

Python3851mit

6 days ago

blockchainethereumprogram-analysis

caringcaribounext

A fork of a friendly car security exploration tool for the CAN bus

Python5gpl-3.0

7 months ago

H5SC

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

JavaScript2828mpl-2.0

3 years ago

ebpfguard

ebpfguard

Rust library for writing Linux security policies using eBPF

Rust278apache-2.0

8 months ago

progpilot

A static analysis tool for security

PHP325mit

2 months ago

phpsecurity-toolsstatic-code-analysis

LogESP

Open Source SIEM (Security Information and Event Management system).

Python190mit

last year

asset-managementforensicslog

jwtXploiter

A tool to test security of json web token

Python270gpl-3.0

4 years ago

ctfctf-toolsjku

domain_analyzer

domain_analyzer

Analyze the security of any domain by finding all the information possible. Made

Python1844

2 years ago

Raccoon

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability

Python3050mit

4 months ago

enumerationfuzzinghacking

Astra

Astra

Automated Security Testing For REST API's

Python2475apache-2.0

4 months ago

ci-cdowasppenetration-testing

File-Manager

File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin560gpl-3.0

5 days ago

androidfile-managerfoss

octopus

octopus

Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra

Python481mit

10 months ago

blockchaincall-flow-analysiscontrol-flow-analysis

nogotofail

An on-path blackbox network traffic security testing tool

Python2937apache-2.0

2 years ago

uuid

Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security

Go5169bsd-3-clause

3 months ago

gouuid

GraphCrawler

GraphCrawler

GraphQL automated security testing toolkit

Python293mit

8 months ago

apiapi-hackingautomated-testing

aaf-easypassword

aaf-easypassword

:lock: Easy Password is password management application. This application uses p

Kotlin34other

5 years ago

android-appandroid-applicationkotlin

scanner-cli

scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript358other

3 years ago

cidockernodejs

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.

Python25

9 years ago

insider

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go504mit

2 years ago

androidandroid-securitycli

itextsharp

itextsharp

[DEPRECATED] .NET port of the iText library, only security fixes will be added —

C#1352other

4 months ago

lorg

lorg

Apache Logfile Security Analyzer

HTML208gpl-2.0

6 years ago

AWSBucketDump

Security Tool to Look For Interesting Files in S3 Buckets

Python1343mit

6 months ago

bugbountyenumerationpenetration-testing

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python78mit

9 years ago

starbase

starbase

Graph-based security analysis for everyone

TypeScript335mpl-2.0

9 months ago

analysisawsazure

NetworkMapper

Android frontend for Nmap Security Scanner

Java67gpl-2.0

8 years ago

NoiseTorch

Project dead (security breach)

21

2 years ago

qark

Tool to look for several security related Android application vulnerabilities

Python3189other

9 months ago

AdminControl

Additional security settings for Android

Java40gpl-3.0

3 years ago

binskim

A binary static analysis tool that provides security and correctness results for

C#770other

5 days ago

infersharp

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#730mit

9 months ago

honeyup

An uploader honeypot designed to look like poor website security.

Rust25gpl-3.0

3 years ago

fastapi_simple_security

fastapi_simple_security

Drop-in API-key based security for FastAPI

Python327mit

10 months ago

android_app_security_checklist

Android App Security Checklist

846

2 years ago

binserve

binserve

A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi

Rust983mit

8 months ago

actixhandlebarshttp

security_monkey

security_monkey

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the

Python4350apache-2.0

4 years ago

awsaws-ec2aws-iam

metadata

This repository contains the data behind our Security, Privacy and Parental Cont

637

2 years ago

BreachDetector

Detect root, emulation, debug mode and other security concerns in your Xamarin a

C#88mit

3 years ago

debugdetectionemulation

GRASSMARLIN

Provides situational awareness of Industrial Control Systems (ICS) and Superviso

Java923other

5 years ago

analysiscontrol-systemsics

ntopng

ntopng

Web-based Traffic and Security Network Traffic Monitoring

Lua6094gpl-3.0

2 months ago

dockerebpfipfix

movecerts

movecerts

Move Android Certificates to system to avoid security warnings

Java29gpl-3.0

5 years ago

paseto

Platform-Agnostic Security Tokens implementation in GO (Golang)

Go838mit

2 years ago

authauthenticationdecoder

pest

pest

:beetle: Primitive Erlang Security Tool

Erlang102mit

10 months ago

elixirelixir-securityerlang

allstar

allstar

GitHub App to set and enforce security policies

Go1234apache-2.0

2 months ago

v0lt

v0lt

Security CTF Toolkit (Not maintained anymore)

Python365

7 years ago

python3securitysecurity-ctf

awesome-appsec

awesome-appsec

A curated list of resources for learning about application security

PHP6226mit

3 months ago

application-securitycuratedowasp

vokuro

vokuro

Sample application for Phalcon Framework (Acl, Auth, Security)

PHP369bsd-3-clause

last year

acldemophalcon

Obfuscator-iOS

Secure your app by obfuscating all the hard-coded security-sensitive strings.

Objective-C646mit

4 years ago

brakeman

brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

Ruby6944other

2 months ago

brakemanrailsruby

killerbee

killerbee

IEEE 802.15.4/ZigBee Security Research Toolkit

C748other

last year

rudder-server

rudder-server

Privacy and Security focused Segment-alternative, in Golang and React

Go4063other

yesterday

bigquerycdpcustomer-data

recon

recon

🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️

Rust28apache-2.0

2 years ago

devopsdevops-toolsrust

magevulndb

magevulndb

List of Magento extensions with known security issues.

PHP199

2 months ago

extensionsmagentovulnerability

Simple-File-Manager

Simple-File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin1498gpl-3.0

4 months ago

androidandroid-developmentfile-manager

secureyournode

Security workshop

JavaScript26mit

9 years ago

LSMS

Linux Security and Monitoring Scripts

Python318mit

last year

c3

𝗖𝟯 provides compliant AWS CDK components to various security standards.

TypeScript31mit

2 years ago

aws-cdkciscis-controls

terrascan

terrascan

Detect compliance and security violations across Infrastructure as Code to mitig

Go4706apache-2.0

16 days ago

architectureawsaws-security

cli

terraform-compliance/cli

a lightweight, security focused, BDD test framework against terraform.

Python1352mit

2 days ago

bddbdd-stylecompliance

dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It

Ruby734mit

7 months ago

codereviewcybersecurityhanami

solcurity

Opinionated security and code quality standard for Solidity smart contracts.

2010

last year

csaw_esc_2019

csaw_esc_2019

CSAW Embedded Security Challenge 2019

Python34mit

5 years ago

metta

metta

An information security preparedness tool to do adversarial simulation.

Python1087mit

6 years ago

adversarialceleryinfosec

secure

HTTP middleware for Go that facilitates some quick security wins.

Go2245mit

3 months ago

gogolangmiddleware

Tokenize

Security tokens for CakePHP

PHP12mit

4 years ago

SecureDefaults

SecureDefaults

Elevate the security of your UserDefaults with this lightweight wrapper that ad

Swift227mit

5 months ago

aesaes-256aes-encryption

Sentry

Sentry

Enforce security policies

Kotlin109gpl-3.0

2 years ago

androidkotlinsecurity

aurasium

Practical security policy enforcement for Android apps via bytecode rewriting an

Python36gpl-3.0

10 years ago

SOC-Multitool

SOC-Multitool

A powerful and user-friendly browser extension that streamlines investigations f

JavaScript321mit

last year

browser-extensionchrome-extensioncybersecurity

tetragon

tetragon

eBPF-based Security Observability and Runtime Enforcement

Go3469apache-2.0

2 months ago

bpfebpfkernel

nsjail

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rl

C++2880apache-2.0

2 months ago

chrootlinuxlinux-namespaces

threatbus

🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi

Python257bsd-3-clause

2 years ago

cifcif3ids

awesome-blocksec-ctf

A curated list of blockchain security Capture the Flag (CTF) competitions

14cc0-1.0

4 years ago

caringcaribou

A friendly car security exploration tool for the CAN bus

Python706gpl-3.0

2 months ago

can-busecufuzzing

electronegativity

electronegativity

Electronegativity is a tool to identify misconfigurations and security anti-patt

JavaScript953apache-2.0

last year

electronelectron-appnodejs

graphql-armor

graphql-armor

🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En

TypeScript486mit

2 months ago

apolloapollo-servercybersecurity

statistically-likely-usernames

statistically-likely-usernames

Wordlists for creating statistically likely username lists for use in password a

920

2 years ago

vertx-pac4j

vertx-pac4j

Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...

Java124apache-2.0

last month

authenticationauthorizationcas

passbolt_api

passbolt_api

Description Take your team's passwords with you wherever you go by downloadin

PHP4508agpl-3.0

2 months ago

cakephpcakephp4credentials

awesome-windows-domain-hardening

A curated list of awesome Security Hardening techniques for Windows.

1731

5 years ago

hardeningsecuritywindows

tutanota

tutanota

Description Tuta (formerly Tutanota), the fully secure encrypted email and ca

TypeScript6016gpl-3.0

2 days ago

emailencryptionjavascript

tracee

Linux Runtime Security and Forensics using eBPF

Go3432apache-2.0

2 months ago

bpfdockerebpf

2FAuth

2FAuth

A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t

PHP1917agpl-3.0

2 months ago

2fa2factorhotp

kubectl-kubesec

kubectl-kubesec

Security risk analysis for Kubernetes resources

Go506apache-2.0

10 months ago

acra

acra

Database security suite. Database proxy with field-level encryption, search thro

Go1324apache-2.0

3 months ago

cryptocryptographydatabase-proxy

fwanalyzer

fwanalyzer

a tool to analyze filesystem images for security

Go485apache-2.0

12 months ago

androidembedded-linuxfilesystem

falco

falco

Cloud Native Runtime Security

C++7304apache-2.0

3 days ago

cloud-nativecncfcncf-project

OwaspHeaders.Core

OwaspHeaders.Core

Inject OWASP recommended HTTP Headers for increased security in a single line

C#276mit

4 months ago

aspnetcorehttp-headermiddleware

InviZible

InviZible

Android application for online privacy and security

Java1449gpl-3.0

11 days ago

advertisingandroidandroid-application

mimikatz

A little tool to play with Windows security

C19124

3 months ago

honggfuzz

honggfuzz

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin

C3022apache-2.0

3 months ago

cfuzzingsecurity

hblock

hblock

Improve your security and privacy by blocking ads, tracking and malware domains.

Shell1547mit

8 days ago

ad-blockeradblockadblocker

termbot

termbot

SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o

Java82other

2 years ago

cyberowl

A daily updated summary of the most frequent types of security advisories curren

Python241mit

8 months ago

cisacvesecurity

safenotes

safenotes

Safe Notes is a security project aimed at providing an encrypted, private note m

Dart229gpl-3.0

2 months ago

androidanonymitydart

matano

matano

Open source security data lake for threat hunting, detection & response, and cyb

Rust1433apache-2.0

3 months ago

alertingapache-icebergaws

android-money-manager-ex

android-money-manager-ex

Manage your finances on-the-go, encrypted for security, and sync via your cloud

Java488gpl-3.0

7 days ago

cipherencryptionfinance

Scout2

Scout2

Security auditing tool for AWS environments

Python1728gpl-2.0

6 years ago

awssecurity

calico

calico

Cloud native networking and network security

Go5923apache-2.0

2 days ago

catscnicni-plugin

fibratus

fibratus

A modern tool for Windows kernel exploration and tracing with a focus on securit

Go2127other

3 months ago

edrgolanginstrumentation

cloud-inquisitor

cloud-inquisitor

Enforce ownership and data security within AWS

Python450apache-2.0

4 years ago

CANalyzat0r

CANalyzat0r

Security analysis toolkit for proprietary car protocols

Python748gpl-3.0

3 years ago

automotive-securitycarhackingreverse-engineering

wagtailenforcer

wagtailenforcer

The Wagtail arm of the law - enforce security protocols on your Wagtail site

Python45

3 years ago

axessecuritysecurity-protocol

PayloadsAllTheThings

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CT

Python58983mit

2 months ago

bountybugbountybypass

pyramid_simpleauth

Session based authentication and role based security for a Pyramid web applicati

Python33unlicense

2 years ago

vsfire

vsfire

Visual Studio Code extension for syntax highlighting, hover help and code comple

TypeScript76mit

4 years ago

firebasefirebase-storagevscode

scout

scout

Description The Scout - Full App for accessing a Scout server, which is a sta

Go14mit

3 months ago

cssInjection

Stealing CSRF tokens with CSS injection (without iFrames)

HTML315gpl-2.0

7 years ago

scorecard

scorecard

OpenSSF Scorecard - Security health metrics for Open Source

Go4469apache-2.0

2 days ago

openssf-scorecardscorecard

PortAuthority

PortAuthority

A handy systems and security-focused tool, Port Authority is a very fast Android

Java348gpl-3.0

last year

androiddns-lookupjava

rails-template

Application template for Rails 7 projects; preloaded with best practices for TDD

Ruby302other

6 days ago

ackamarailsrails-template

mqtt-pwn

mqtt-pwn

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se

Python346gpl-3.0

2 years ago

exploitationiotmqtt

RCTF

RCTF

Scenarios of the Robotics CTF (RCTF), a playground to challenge robot security.

32gpl-3.0

4 years ago

ctf-challengesctf-platformcybersecurity

ssh-audit

ssh-audit

SSH server auditing (banner, key exchange, encryption, mac, compression, compati

Python2942mit

3 months ago

afterglow-cloud

AfterGlow Cloud is a security visualization tool which lets users upload data an

Perl14

11 years ago

cilium

cilium

eBPF-based Networking, Security, and Observability

Go19518apache-2.0

2 months ago

bpfcncfcni

hubble

hubble

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

Makefile3406apache-2.0

3 months ago

ciliumebpfkubernetes

Awesome-SOAR

Awesome-SOAR

A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome

772

7 months ago

mkit

mkit

MKIT is a Managed Kubernetes Inspection Tool that validates several common secur

Dockerfile401mit

3 years ago

aksawsazure

graphql-cop

graphql-cop

Security Auditor Utility for GraphQL APIs

Python329mit

4 months ago

auditingblue-teamgraphql

awesome-electronjs-hacking

awesome-electronjs-hacking

A curated list of awesome resources about Electron.js (in)security

557

2 months ago

Flask-AppBuilder

Flask-AppBuilder

Simple and rapid application development framework, built on top of Flask. inclu

Python4657bsd-3-clause

last month

authenticationcrudflask

emba

emba

EMBA - The firmware security analyzer

Shell2540gpl-3.0

2 months ago

artificial-intelligencebinary-analysisembedded-linux

security-code-scan

security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

C#930lgpl-3.0

3 months ago

analysisanalyzercode

Free-Security-eBooks

Free Security and Hacking eBooks

4233

5 years ago

cloud-securitycyber-securityebooks

osx-security-awesome

A collection of OSX and iOS security resources

721apache-2.0

9 months ago

awesomeawesome-listhacking-mac

timely-security-analytics

Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta

Scala29other

5 years ago

android-security-awesome

A collection of android security related resources

Shell7959apache-2.0

2 months ago

androidawesomeawesome-list

Security

[Archived] Middleware for security and authorization of web apps. Project moved

C#1266apache-2.0

6 years ago

aspnet-product

awesome-cyber-security-university

awesome-cyber-security-university

🎓 Because Education should be free. Contributions welcome! 🕵️

1570cc0-1.0

4 months ago

awesomeawesome-listcourses

zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

Ruby1812mit

5 years ago

checklistrailsruby

ibm-security

A Carbon-powered React component library built by IBM Security

JavaScript77apache-2.0

3 months ago

carbon-design-systemibm-securityjavascript

security-acronyms

Curated list of Cyber Security acronyms & abbreviations

HTML18

2 months ago

awesome-security-hardening

A collection of awesome security hardening guides, tools and other resources

5224

3 months ago

awesome-listbest-practicesblue-team

Android-Security-Reference

A W.I.P Android Security Ref

903

3 months ago

androidsecurity

roslyn-security-guard

roslyn-security-guard

Roslyn analyzers that aim to help security audit on .NET applications.

C#208lgpl-3.0

7 years ago

code-analysisroslynroslyn-analyzer

awesome-bluetooth-security

List of Bluetooth BR/EDR/LE security resources

486

10 months ago

awesomeawesome-listble

phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP706gpl-3.0

2 years ago

phpphp-codesnifferphpcs

Vigilante

Vigilante

🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati

Kotlin773gpl-3.0

12 months ago

androidandroidanimationandroidviewmodel

tsunami-security-scanner

Tsunami is a general purpose network security scanner with an extensible plugin

Java8216apache-2.0

17 days ago

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python1562apache-2.0

11 months ago

awesomeawesome-listhacktoberfest

security-apis

security-apis

A collective list of public APIs for use in security. Contributions welcome

873mit

last year

awesome-listjsonjson-api

awesome-vehicle-security

awesome-vehicle-security

🚗 A curated list of resources for learning about vehicle security and car hack

3001cc0-1.0

8 months ago

automotiveawesomeawesome-list

aspnetcore-security-headers

Middleware for adding security headers to an ASP.NET Core application.

C#262mit

11 months ago

rust-security-framework

Bindings to the macOS Security.framework

Rust230apache-2.0

2 months ago

keychainmacosrust

personal-security-checklist

personal-security-checklist

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy

TypeScript16519other

2 months ago

awesomeawesome-listcensorship

mana-security-app

macOS vulnerability management for individuals

JavaScript22mit

2 years ago

cybersecurityelectronmacos

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python28apache-2.0

8 years ago

Mobile-Security-Framework-MobSF

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application

JavaScript16875gpl-3.0

2 months ago

android-securityapi-testingapk

simple-security-toolkit

A collection of practical security-focused guides and checklists for smart contr

1023mit

11 months ago

cryptosecuritysecurity-tools

awesome-websocket-security

Awesome information for WebSockets security research

239apache-2.0

3 years ago

securitysecurity-toolsweb-application-security

automotive-security-research

automotive-security-research

This repository contains reverse engineering results and resources for a few spe

Python85

5 years ago

automotive-securitycar-hacking

awesome-web-security

🐶 A curated list of Web Security materials and resources.

11139

7 months ago

awesomeawesome-listlist

awesome-security

A collection of awesome software, libraries, documents, books, resources and coo

11965mit

2 months ago

awesome-listsecurity

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3056

3 years ago

dfirhuntingids

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing

22267mit

6 months ago

apijwtoauth2

snync

Mitigate security concerns of Dependency Confusion supply chain security risks

JavaScript36other

2 years ago

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of c

806gpl-2.0

8 months ago

cybersecuritynewsletter

security-adventure

Go on an educational Web security adventure!

JavaScript335

11 years ago

DumpsterFire

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for

Python977mit

4 years ago

automationblue-teamblue-teams

owasp-mastg

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual

Python11530cc-by-sa-4.0

2 months ago

androidandroid-applicationcompliancy-checklist

zarn

A lightweight static security analysis tool for modern Perl Apps

Perl44other

last month

sastsecuritystatic-analysis

Umbrella_android

Umbrella_android

Open source Android, iOS and Web app for learning about and managing digital and

Kotlin261gpl-3.0

4 months ago

activismadvicecrypto

terraform-aws-security-group

Terraform module to create AWS Security Group resources 🇺🇦

HCL562other

last month

awsaws-security-groupaws-vpc

RSF

RSF

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz

86gpl-3.0

6 years ago

assessmentcybersecurityframework

RMS-Runtime-Mobile-Security

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you

JavaScript2533gpl-3.0

3 months ago

android-securityfridaios-security

prowler

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do

Python10398apache-2.0

2 months ago

awsazurecis-benchmark

macOS-Security-and-Privacy-Guide

macOS-Security-and-Privacy-Guide

Guide to securing and improving privacy on macOS

21123mit

2 months ago

appledisk-encryptiondnscrypt-proxy

sipvicious

sipvicious

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a

Python869other

2 years ago

audit-siphacking-toolspassword-cracker

docker-bench-security

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-

Shell9025apache-2.0

5 months ago

AspNet.Security.OpenIdConnect.Server

OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core

C#560

4 years ago

aspnetcorekatanaoauth2

bearer

Code security scanning tool (SAST) to discover, filter and prioritize security a

Go1965other

6 days ago

appseccode-qualitycompliance

cicd-goat

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1875apache-2.0

3 months ago

appseccicdctf

SecLists

SecLists is the security tester's companion. It's a collection of multiple types

PHP57233mit

2 days ago

appsec-education

Presentations, training modules, and other education materials from Duo Security

JavaScript68bsd-3-clause

3 years ago

appseceducationtraining-materials

fastapi-security

Implements authentication and authorization as FastAPI dependencies

Python139mit

last year

Sitecore-Security-Rights-Reporting

Sitecore-Security-Rights-Reporting

View all the Access right set on Sitecore rols or users

C#7

2 years ago

sitecore

ssh-audit

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, co

Python3263mit

2 months ago

auditingsecurityssh

puma-scan

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time

C#443mpl-2.0

2 years ago

pyt

pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2172gpl-2.0

4 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

harden-runner

harden-runner

Network egress filtering and runtime security for GitHub-hosted and self-hosted

TypeScript587apache-2.0

2 months ago

actionsegress-filteringgithub-actions

k-rail

Kubernetes security tool for policy enforcement

Go445apache-2.0

2 years ago

k8skuberneteskubernetes-security

reg

reg

Docker registry v2 command line client and repo listing generator with security

Go1655mit

3 months ago

clicontainersdocker

bolt

An integrated security system for applications built on component

Clojure123mit

9 years ago

ScoutSuite

ScoutSuite

Multi-Cloud Security Auditing Tool

Python6392gpl-2.0

2 months ago

auditingawsazure

gosec

gosec

Go security checker

Go7643apache-2.0

2 months ago

golangsecuritysecurity-automation

wpscan

wpscan

WPScan WordPress security scanner. Written for security professionals and blog m

Ruby8431other

2 months ago

hacking-toolscanscanner

nebula

nebula

Description Nebula is a scalable overlay networking tool with a focus on perf

Go14168mit

2 months ago

intelmq

intelmq

IntelMQ is a solution for IT security teams for collecting and processing securi

Python951agpl-3.0

2 months ago

alertsautomationcert

codeql

codeql

CodeQL: the libraries and queries that power security researchers around the wor

CodeQL7554mit

2 days ago

codeqlgithub-advanced-securitygithub-security-lab

haaukins

haaukins

A Highly Accessible and Automated Virtualization Platform for Security Education

Go182apache-2.0

2 months ago

clictfdcybersecurity

stronghold

stronghold

Easily configure macOS security settings from the terminal.

Python1081mit

5 years ago

command-linecommand-line-toolhardening

NetEscapades.AspNetCore.SecurityHeaders

Small package to allow adding security headers to ASP.NET Core websites

C#634mit

2 months ago

hacktoberfest

AndroBugs_Framework

AndroBugs_Framework

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1118gpl-3.0

5 years ago

Fuzzing101

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

2398apache-2.0

4 months ago

aflafl-fuzzbug-hunting

cloudsploit

cloudsploit

Cloud Security Posture Management (CSPM)

JavaScript3282gpl-3.0

3 months ago

alibabaaquaaws

repo-supervisor

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

JavaScript636mit

last year

blueteamredteamsecret-management

totp-ssh-fluxer

totp-ssh-fluxer

Take security by obscurity to the next level (this is a bad idea, don't really u

Go918

2 years ago

iptablesobscurityssh

atomex

🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a

Elixir54mit

2 years ago

atomelixirrss

fireward

A concise and readable language for Firestore security rules, similar to Firebas

Haskell238mit

last year

firebasefirebase-firestorehaskell

VaporSecurityHeaders

VaporSecurityHeaders

Harden Your Security Headers For Vapor

Swift147mit

last year

brokenhandssecurityserver-side-swift

joy

A package for capturing and analyzing network flow data and intraflow data, for

C1288other

6 months ago

mythril

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe

Python3851mit

6 days ago

blockchainethereumprogram-analysis

caringcaribounext

A fork of a friendly car security exploration tool for the CAN bus

Python5gpl-3.0

7 months ago

H5SC

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

JavaScript2828mpl-2.0

3 years ago

ebpfguard

ebpfguard

Rust library for writing Linux security policies using eBPF

Rust278apache-2.0

8 months ago

progpilot

A static analysis tool for security

PHP325mit

2 months ago

phpsecurity-toolsstatic-code-analysis

LogESP

Open Source SIEM (Security Information and Event Management system).

Python190mit

last year

asset-managementforensicslog

jwtXploiter

A tool to test security of json web token

Python270gpl-3.0

4 years ago

ctfctf-toolsjku

domain_analyzer

domain_analyzer

Analyze the security of any domain by finding all the information possible. Made

Python1844

2 years ago

Raccoon

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability

Python3050mit

4 months ago

enumerationfuzzinghacking

Astra

Astra

Automated Security Testing For REST API's

Python2475apache-2.0

4 months ago

ci-cdowasppenetration-testing

File-Manager

File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin560gpl-3.0

5 days ago

androidfile-managerfoss

octopus

octopus

Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra

Python481mit

10 months ago

blockchaincall-flow-analysiscontrol-flow-analysis

nogotofail

An on-path blackbox network traffic security testing tool

Python2937apache-2.0

2 years ago

uuid

Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security

Go5169bsd-3-clause

3 months ago

gouuid

GraphCrawler

GraphCrawler

GraphQL automated security testing toolkit

Python293mit

8 months ago

apiapi-hackingautomated-testing

aaf-easypassword

aaf-easypassword

:lock: Easy Password is password management application. This application uses p

Kotlin34other

5 years ago

android-appandroid-applicationkotlin

scanner-cli

scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript358other

3 years ago

cidockernodejs

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.

Python25

9 years ago

insider

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go504mit

2 years ago

androidandroid-securitycli

itextsharp

itextsharp

[DEPRECATED] .NET port of the iText library, only security fixes will be added —

C#1352other

4 months ago

lorg

lorg

Apache Logfile Security Analyzer

HTML208gpl-2.0

6 years ago

AWSBucketDump

Security Tool to Look For Interesting Files in S3 Buckets

Python1343mit

6 months ago

bugbountyenumerationpenetration-testing

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python78mit

9 years ago

starbase

starbase

Graph-based security analysis for everyone

TypeScript335mpl-2.0

9 months ago

analysisawsazure

NetworkMapper

Android frontend for Nmap Security Scanner

Java67gpl-2.0

8 years ago

NoiseTorch

Project dead (security breach)

21

2 years ago

qark

Tool to look for several security related Android application vulnerabilities

Python3189other

9 months ago

AdminControl

Additional security settings for Android

Java40gpl-3.0

3 years ago

binskim

A binary static analysis tool that provides security and correctness results for

C#770other

5 days ago

infersharp

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#730mit

9 months ago

honeyup

An uploader honeypot designed to look like poor website security.

Rust25gpl-3.0

3 years ago

fastapi_simple_security

fastapi_simple_security

Drop-in API-key based security for FastAPI

Python327mit

10 months ago

android_app_security_checklist

Android App Security Checklist

846

2 years ago

binserve

binserve

A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi

Rust983mit

8 months ago

actixhandlebarshttp

security_monkey

security_monkey

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the

Python4350apache-2.0

4 years ago

awsaws-ec2aws-iam

metadata

This repository contains the data behind our Security, Privacy and Parental Cont

637

2 years ago

BreachDetector

Detect root, emulation, debug mode and other security concerns in your Xamarin a

C#88mit

3 years ago

debugdetectionemulation

GRASSMARLIN

Provides situational awareness of Industrial Control Systems (ICS) and Superviso

Java923other

5 years ago

analysiscontrol-systemsics

ntopng

ntopng

Web-based Traffic and Security Network Traffic Monitoring

Lua6094gpl-3.0

2 months ago

dockerebpfipfix

movecerts

movecerts

Move Android Certificates to system to avoid security warnings

Java