Secur

A FOSS, cross-platform TOTP client written in Flutter with the aim of providing

Dart3mit

3 years ago

security-code-scan

security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

C#872lgpl-3.0

3 months ago

analysisanalyzercode

Free-Security-eBooks

Free Security and Hacking eBooks

3911

4 years ago

cloud-securitycyber-securityebooks

osx-security-awesome

A collection of OSX and iOS security resources

680apache-2.0

7 months ago

awesomeawesome-listhacking-mac

timely-security-analytics

Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta

Scala28other

4 years ago

android-security-awesome

A collection of android security related resources

Shell7201apache-2.0

6 days ago

androidawesomeawesome-list

Security

[Archived] Middleware for security and authorization of web apps. Project moved

C#1256apache-2.0

5 years ago

aspnet-product

awesome-cyber-security-university

awesome-cyber-security-university

🎓 Because Education should be free. Contributions welcome! 🕵️

638cc0-1.0

5 months ago

awesomeawesome-listcourses

zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

Ruby1810mit

4 years ago

checklistrailsruby

ibm-security

A Carbon-powered React component library built by IBM Security

JavaScript72apache-2.0

2 months ago

carbon-design-systemibm-securityjavascript

Android-Security-Reference

A W.I.P Android Security Ref

850

10 days ago

androidsecurity

roslyn-security-guard

roslyn-security-guard

Roslyn analyzers that aim to help security audit on .NET applications.

C#207lgpl-3.0

6 years ago

code-analysisroslynroslyn-analyzer

awesome-bluetooth-security

List of Bluetooth BR/EDR/LE security resources

357

2 months ago

awesomeawesome-listble

awesome-embedded-and-iot-security

awesome-embedded-and-iot-security

A curated list of awesome embedded and IoT security resources.

1331cc0-1.0

5 months ago

awesomeawesome-listembedded

phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP681gpl-3.0

9 months ago

phpphp-codesnifferphpcs

Vigilante

Vigilante

🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati

Kotlin761gpl-3.0

6 days ago

androidandroidanimationandroidviewmodel

tsunami-security-scanner

Tsunami is a general purpose network security scanner with an extensible plugin

Java7931apache-2.0

16 days ago

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python1345apache-2.0

2 months ago

awesomeawesome-listhacktoberfest

security-apis

A collective list of public APIs for use in security. Contributions welcome

798mit

3 months ago

awesome-listjsonjson-api

awesome-vehicle-security

awesome-vehicle-security

🚗 A curated list of resources for learning about vehicle security and car hack

2578cc0-1.0

2 months ago

automotiveawesomeawesome-list

go-jwk-security

Go7

3 years ago

aspnetcore-security-headers

Middleware for adding security headers to an ASP.NET Core application.

C#242mit

4 months ago

awesome-evm-security

awesome-evm-security

🕶 A high-level overview of the EVM security ecosystem

138cc0-1.0

last year

awesomeawesome-listblockchain

rust-security-framework

Bindings to the macOS Security.framework

Rust196apache-2.0

2 months ago

keychainmacosrust

personal-security-checklist

personal-security-checklist

Description Strongbox is an application for keeping all your passwords safely

12562other

5 days ago

awesomeawesome-listcensorship

mana-security-app

macOS vulnerability management for individuals

JavaScript16mit

9 months ago

cybersecurityelectronmacos

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python26apache-2.0

7 years ago

Mobile-Security-Framework-MobSF

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application

JavaScript14906gpl-3.0

11 days ago

android-securityapi-testingapk

simple-security-toolkit

A collection of practical security-focused guides and checklists for smart contr

851mit

3 months ago

cryptosecuritysecurity-tools

eslint-plugin-security

ESLint rules for Node Security

JavaScript1847apache-2.0

10 months ago

awesome-websocket-security

Awesome information for WebSockets security research

221apache-2.0

2 years ago

securitysecurity-toolsweb-application-security

security-belt

security-belt

🥋 Framework for continuously improving the IT-Security of your teams through ga

JavaScript73apache-2.0

last year

gamificationjavascriptmaturity-model

automotive-security-research

automotive-security-research

This repository contains reverse engineering results and resources for a few spe

Python74

4 years ago

automotive-securitycar-hacking

awesome-web-security

🐶 A curated list of Web Security materials and resources.

10083

21 days ago

awesomeawesome-listlist

awesome-security

A collection of awesome software, libraries, documents, books, resources and coo

10222mit

26 days ago

awesome-listsecurity

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3033

2 years ago

dfirhuntingids

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing

21319mit

3 months ago

apijwtoauth2

snync

Mitigate security concerns of Dependency Confusion supply chain security risks

JavaScript30other

last year

ada-security

Ada Security - OAuth 2.0 client and server framework to secure web applications

Ada19apache-2.0

last month

adaauthenticationjwt

security-adventure

Go on an educational Web security adventure!

JavaScript335

10 years ago

DumpsterFire

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for

Python933mit

3 years ago

automationblue-teamblue-teams

owasp-mastg

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual

Python10699cc-by-sa-4.0

2 days ago

androidandroid-applicationcompliancy-checklist

eslint-plugin-security

ESLint rules for Node Security

JavaScript1985apache-2.0

5 months ago

zarn

A lightweight static security analysis tool for modern Perl Apps

Perl18other

3 months ago

sastsecuritystatic-analysis

terraform-aws-security-group

Terraform module which creates EC2-VPC security groups on AWS 🇺🇦

HCL510other

3 months ago

awsaws-security-groupaws-vpc

wpscan

wpscan

WPScan WordPress security scanner. Written for security professionals and blog m

Ruby7825other

2 days ago

hacking-toolscanscanner

RSF

RSF

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz

80gpl-3.0

5 years ago

assessmentcybersecurityframework

RMS-Runtime-Mobile-Security

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you

JavaScript2321gpl-3.0

23 days ago

android-securityfridaios-security

prowler

prowler

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud

Python8620apache-2.0

yesterday

awsazurecis-benchmark

sipvicious

sipvicious

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a

Python780other

10 months ago

audit-siphacking-toolspassword-cracker

docker-bench-security

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-

Shell8544apache-2.0

last month

AspNet.Security.OpenIdConnect.Server

OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core

C#562

3 years ago

aspnetcorekatanaoauth2

bearer

Code security scanning tool (SAST) to discover, filter and prioritize security a

Go1361other

yesterday

appseccode-qualitycompliance

cicd-goat

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1629apache-2.0

2 months ago

appseccicdctf

security-acronyms

Cybersecurity list of acronyms & abbreviations

HTML11

10 days ago

SecLists

SecLists is the security tester's companion. It's a collection of multiple types

PHP47284mit

3 months ago

appsec-education

Presentations, training modules, and other education materials from Duo Security

JavaScript66bsd-3-clause

2 years ago

appseceducationtraining-materials

fastapi-security

Implements authentication and authorization as FastAPI dependencies

Python113mit

12 months ago

Sitecore-Security-Rights-Reporting

Sitecore-Security-Rights-Reporting

View all the Access right set on Sitecore rols or users

C#7

last year

sitecore

ssh-audit

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, co

Python1710mit

21 days ago

auditingsecurityssh

iOS-App-Security-Class

Simple class to check if app has been cracked, being debugged or enriched with c

Objective-C74mit

5 years ago

puma-scan

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time

C#428mpl-2.0

11 months ago

pyt

pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2139gpl-2.0

3 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

harden-runner

harden-runner

Runtime Security for GitHub Actions Workflow Runs

TypeScript321apache-2.0

6 days ago

actionsfirewallgithub-actions

k-rail

Kubernetes security tool for policy enforcement

Go444apache-2.0

9 months ago

k8skuberneteskubernetes-security

H5SC

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

JavaScript2781mpl-2.0

2 years ago

reg

reg

Docker registry v2 command line client and repo listing generator with security

Go1596mit

6 months ago

clicontainersdocker

ScoutSuite

ScoutSuite

Multi-Cloud Security Auditing Tool

Python5651gpl-2.0

10 days ago

auditingawsazure

gosec

gosec

Golang security checker

Go7095apache-2.0

3 days ago

golangsecuritysecurity-automation

vast

vast

Easy data pipelines for security teams.

C++500bsd-3-clause

3 months ago

actor-modelbitmap-indexdataops

Cryptool

Cryptool

Cryptography and high security keystore Android application tool. It has a very

Kotlin44gpl-3.0

last year

androidcryptographykeystore

nebula

nebula

Description Nebula is a scalable overlay networking tool with a focus on perf

Go12541mit

6 days ago

intelmq

intelmq

IntelMQ is a solution for IT security teams for collecting and processing securi

Python841agpl-3.0

4 days ago

alertsautomationcert

codeql

codeql

CodeQL: the libraries and queries that power security researchers around the wor

CodeQL6310mit

last month

codeqlgithub-advanced-securitygithub-security-lab

Umbrella_ios

Open source Android, iOS and Web app for learning about and managing digital and

Swift15

2 years ago

infoseciosopen-source

mortar

mortar

Framework to join Linux's physical security bricks.

Shell150gpl-3.0

last year

archbitlockerboot

haaukins

haaukins

A Highly Accessible and Automated Virtualization Platform for Security Education

Go168gpl-3.0

17 days ago

clictfdcybersecurity

safetybox

Security oriented helper functions for Elixir

Elixir19

8 years ago

stronghold

stronghold

Easily configure macOS security settings from the terminal.

Python1028mit

4 years ago

command-linecommand-line-toolhardening

NetEscapades.AspNetCore.SecurityHeaders

Small package to allow adding security headers to ASP.NET Core websites

C#536mit

3 months ago

hacktoberfest

AndroBugs_Framework

AndroBugs_Framework

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1060gpl-3.0

4 years ago

Fuzzing101

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

2048apache-2.0

11 months ago

aflafl-fuzzbug-hunting

cloudsploit

cloudsploit

Cloud Security Posture Management (CSPM)

JavaScript2896gpl-3.0

21 days ago

alibabaaquaaws

repo-supervisor

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

JavaScript625mit

3 months ago

blueteamredteamsecret-management

totp-ssh-fluxer

totp-ssh-fluxer

Take security by obscurity to the next level (this is a bad idea, don't really u

Go913

last year

iptablesobscurityssh

atomex

🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a

Elixir42mit

6 months ago

atomelixirrss

fireward

A concise and readable language for Firestore security rules, similar to Firebas

Haskell234mit

6 months ago

firebasefirebase-firestorehaskell

VaporSecurityHeaders

VaporSecurityHeaders

Harden Your Security Headers For Vapor

Swift133mit

4 months ago

brokenhandssecurityserver-side-swift

joy

A package for capturing and analyzing network flow data and intraflow data, for

C1248other

4 years ago

mythril

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe

Python3517mit

18 days ago

blockchainethereumprogram-analysis

ThreatMapper

ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargat

Go3773apache-2.0

3 months ago

cloud-nativecloudsecuritycnapp

progpilot

A static analysis tool for security

PHP295mit

4 months ago

phpsecurity-toolsstatic-code-analysis

LogESP

Open Source SIEM (Security Information and Event Management system).

Python175mit

last month

asset-managementforensicslog

jwtXploiter

A tool to test security of json web token

Python239gpl-3.0

3 years ago

ctfctf-toolsjku

domain_analyzer

Analyze the security of any domain by finding all the information possible. Made

Python1829

9 months ago

hermetic

Security for Clack-based Common Lisp web applications.

Common Lisp40

4 years ago

Raccoon

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability

Python2881mit

last year

enumerationfuzzinghacking

fleet

fleet

Open-source platform for IT and security teams with thousands of computers. (Lin

Go1562other

24 hours ago

chefcloud-securitydesktop-engineering

Astra

Astra

Automated Security Testing For REST API's

Python2333apache-2.0

4 months ago

ci-cdowasppenetration-testing

buddy

Security library for Clojure

Clojure824apache-2.0

2 years ago

octopus

octopus

Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra

Python455mit

11 months ago

blockchaincall-flow-analysiscontrol-flow-analysis

InviZible

InviZible

Android application for Internet privacy and security

Java1027gpl-3.0

7 hours ago

advertisingandroidandroid-application

secure_headers

Manages application of security headers with many safe defaults

Ruby3103mit

24 days ago

content-security-policycookiecsp

nogotofail

An on-path blackbox network traffic security testing tool

Python2904apache-2.0

12 months ago

uuid

Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security

Go4616bsd-3-clause

7 days ago

gouuid

shield

Comprehensive security for Lucky framework

Crystal52mit

2 months ago

authenticationcrystallucky-framework

GraphCrawler

GraphCrawler

GraphQL automated security testing toolkit

Python256mit

8 months ago

apiapi-hackingautomated-testing

aaf-easypassword

aaf-easypassword

:lock: Easy Password is password management application. This application uses p

Kotlin33other

4 years ago

android-appandroid-applicationkotlin

scanner-cli

scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript356other

2 years ago

cidockernodejs

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.

Python25

8 years ago

insider

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go447mit

last year

androidandroid-securitycli

itextsharp

itextsharp

[DEPRECATED] .NET port of the iText library, only security fixes will be added —

C#1296other

6 months ago

lorg

lorg

Apache Logfile Security Analyzer

HTML204gpl-2.0

5 years ago

AWSBucketDump

Security Tool to Look For Interesting Files in S3 Buckets

Python1283mit

4 months ago

bugbountyenumerationpenetration-testing

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python76mit

8 years ago

starbase

starbase

Graph-based security analysis for everyone

TypeScript300mpl-2.0

7 days ago

analysisawsazure

bolt

An integrated security system for applications built on component

Clojure123mit

8 years ago

NetworkMapper

Android frontend for Nmap Security Scanner

Java56gpl-2.0

7 years ago

NoiseTorch

Project dead (security breach)

20

last year

qark

Tool to look for several security related Android application vulnerabilities

Python3048other

2 months ago

AdminControl

Additional security settings for Android

Java35gpl-3.0

2 years ago

honeyup

An uploader honeypot designed to look like poor website security.

Rust24gpl-3.0

2 years ago

binskim

A binary static analysis tool that provides security and correctness results for

C#693other

18 days ago

infersharp

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#704mit

last month

fastapi_simple_security

fastapi_simple_security

API-key based security utilities for FastAPI, focused on simplicity of use

Python210mit

6 months ago

android_app_security_checklist

Android App Security Checklist

813

last year

binserve

binserve

A fast production-ready static web server with TLS (HTTPS), routing, hot reloadi

Rust765mit

last year

actixhandlebarshttp

sobelow

Security-focused static analysis for the Phoenix Framework

Elixir1478apache-2.0

4 months ago

elixirphoenix-frameworksecurity

security_monkey

security_monkey

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and the

Python4338apache-2.0

3 years ago

awsaws-ec2aws-iam

metadata

This repository contains the data behind our Security, Privacy and Parental Cont

602

8 months ago

BreachDetector

Detect root, emulation, debug mode and other security concerns in your Xamarin a

C#83mit

2 years ago

debugdetectionemulation

GRASSMARLIN

Provides situational awareness of Industrial Control Systems (ICS) and Superviso

Java843other

4 years ago

analysiscontrol-systemsics

ntopng

ntopng

Web-based Traffic and Security Network Traffic Monitoring

Lua5524gpl-3.0

2 days ago

dockerebpfipfix

movecerts

movecerts

Move Android Certificates to system to avoid security warnings

Java26gpl-3.0

4 years ago

paseto

Platform-Agnostic Security Tokens implementation in GO (Golang)

Go716mit

7 months ago

authauthenticationdecoder

pest

pest

:beetle: Primitive Erlang Security Tool

Erlang96mit

12 months ago

elixirelixir-securityerlang

allstar

allstar

GitHub App to set and enforce security policies

Go1119apache-2.0

3 days ago

v0lt

v0lt

Security CTF Toolkit (Not maintained anymore)

Python358

6 years ago

python3securitysecurity-ctf

awesome-appsec

awesome-appsec

A curated list of resources for learning about application security

PHP5777mit

21 days ago

application-securitycuratedowasp

PatrowlManager

PatrowlManager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Plat

HTML580agpl-3.0

5 days ago

apiautomationincident-response

vokuro

vokuro

Sample application for Phalcon Framework (Acl, Auth, Security)

PHP370bsd-3-clause

8 months ago

acldemophalcon

Obfuscator-iOS

Secure your app by obfuscating all the hard-coded security-sensitive strings.

Objective-C624mit

3 years ago

brakeman

brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

Ruby6747other

8 days ago

brakemanrailsruby

calico

calico

Cloud native networking and network security

Go4657apache-2.0

4 months ago

iniscan

A php.ini scanner for best security practices

PHP1467mit

4 months ago

configurationiniphp

killerbee

IEEE 802.15.4/ZigBee Security Research Toolkit

C706other

16 days ago

rudder-server

rudder-server

Privacy and Security focused Segment-alternative, in Golang and React

Go3712other

yesterday

bigquerycustomer-datacustomer-data-lake

recon

recon

🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️

Rust21apache-2.0

9 months ago

devopsdevops-toolsrust

magevulndb

magevulndb

List of Magento extensions with known security issues.

PHP189

22 days ago

extensionsmagentovulnerability

Simple-File-Manager

Simple-File-Manager

Easy app for managing your files without ads, respecting your privacy & security

Kotlin1382gpl-3.0

yesterday

androidandroid-developmentfile-manager

secureyournode

Security workshop

JavaScript24mit

8 years ago

LSMS

Linux Security and Monitoring Scripts

Python292mit

last month

c3

𝗖𝟯 provides compliant AWS CDK components to various security standards.

TypeScript31mit

7 months ago

aws-cdkciscis-controls

black-mirror

black-mirror

Blacklists and whitelists that aim to promote security, safety, and sanity acros

Shell106agpl-3.0

11 months ago

adblock-listblackhole-listsblacklist

terrascan

terrascan

Detect compliance and security violations across Infrastructure as Code to mitig

Go4209apache-2.0

22 days ago

architectureawsaws-security

cli

terraform-compliance/cli

a lightweight, security focused, BDD test framework against terraform.

Python1266mit

3 months ago

bddbdd-stylecompliance

dawnscanner

Dawn is a static analysis security scanner for ruby written web applications. It

Ruby708mit

5 months ago

codereviewcybersecurityhanami

solcurity

Opinionated security and code quality standard for Solidity smart contracts.

1764

3 months ago

csaw_esc_2019

csaw_esc_2019

CSAW Embedded Security Challenge 2019

Python32mit

4 years ago

metta

metta

An information security preparedness tool to do adversarial simulation.

Python1041mit

4 years ago

adversarialceleryinfosec

secure

HTTP middleware for Go that facilitates some quick security wins.

Go2149mit

9 months ago

gogolangmiddleware

Tokenize

Security tokens for CakePHP

PHP12mit

3 years ago

SOCKS5Engine

High-performance SOCKS5 server by Vee Security

Go41agpl-3.0

4 years ago

SecureDefaults

Elevate the security of your UserDefaults with this lightweight ✨ wrapper that

Swift223mit

7 months ago

aesaes-256aes-encryption

drozer

The Leading Security Assessment Framework for Android.

Python3171other

4 months ago

androiddrozerjava

Sentry

Sentry

Enforce security policies.

Kotlin75gpl-3.0

last year

androidkotlinsecurity

aurasium

Practical security policy enforcement for Android apps via bytecode rewriting an

Python37gpl-3.0

9 years ago

Security_list

Great security list for fun and profit

1591

9 months ago

SOC-Multitool

SOC-Multitool

A powerful and user-friendly browser extension that streamlines investigations f

JavaScript286mit

last month

browser-extensionchrome-extensioncybersecurity

tracee

Linux Runtime Security and Forensics using eBPF

Go2848apache-2.0

30 days ago

bpfebpfgolang

tetragon

tetragon

eBPF-based Security Observability and Runtime Enforcement

C2551apache-2.0

29 days ago

bpfebpfkernel

paseto

Platform-Agnostic Security Tokens

PHP3153other

5 months ago

pasetopaseto-tokensphp

caringcaribou

A friendly car security exploration tool for the CAN bus

Python593gpl-3.0

last month

can-busecufuzzing

electronegativity

electronegativity

Electronegativity is a tool to identify misconfigurations and security anti-patt

JavaScript885apache-2.0

3 months ago

electronelectron-appnodejs

graphql-armor

graphql-armor

🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / En

TypeScript396mit

4 days ago

apolloapollo-serverenvelop

statistically-likely-usernames

statistically-likely-usernames

Wordlists for creating statistically likely username lists for use in password a

654

last year

k9-cdk

Provision strong AWS security policies easily using the AWS CDK, v1 or v2.

TypeScript7apache-2.0

5 months ago

awscdkiam

lockfile-lint

lockfile-lint

Lint an npm or yarn lockfile to analyze and detect security issues

JavaScript725apache-2.0

3 months ago

hacktoberfestlintlinter

scorecard

scorecard

OpenSSF Scorecard - Security health metrics for Open Source

Go3660apache-2.0

14 days ago

openssf-scorecardscorecard

play-pac4j

play-pac4j

Security library for Play framework 2 in Java and Scala: OAuth, CAS, SAML, OpenI

Java398apache-2.0

4 days ago

authenticationauthorizationcas

vertx-pac4j

vertx-pac4j

Security library for Vert.x: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...

Java120apache-2.0

3 months ago

authenticationauthorizationcas

awesome-windows-domain-hardening

A curated list of awesome Security Hardening techniques for Windows.

1663

4 years ago

hardeningsecuritywindows

parse

Parse: A Static Security Scanner

PHP353

5 years ago

phpscannersecurity

ShinobiCE

Shinobi Community Edition (CE) is a GPLv3+AGPLv3 release of Shinobi. The Free Op

JavaScript111other

3 years ago

hetty

hetty

An HTTP toolkit for security research.

Go4972mit

last year

bugbountyhttpinfosec

tfsec

tfsec

Security scanner for your Terraform code

Go6270mit

10 days ago

awsazureci

2FAuth

2FAuth

A Web app to manage your Two-Factor Authentication (2FA) accounts and generate t

PHP1006agpl-3.0

4 days ago

2fa2factorhotp

kubectl-kubesec

kubectl-kubesec

Security risk analysis for Kubernetes resources

Go481apache-2.0

10 days ago

acra

acra

Database security suite. Database proxy with field-level encryption, search thro

Go1214apache-2.0

6 days ago

cryptocryptographydatabase-proxy

termbot

termbot

SSH client that works with YubiKeys, Nitrokeys, and other OpenPGP cards (based o

Java75other

10 months ago

fwanalyzer

fwanalyzer

a tool to analyze filesystem images for security

Go474apache-2.0

5 days ago

androidembedded-linuxfilesystem

falco

falco

Cloud Native Runtime Security

C++5959apache-2.0

3 months ago

cloud-nativecncfcontainers

mimikatz

A little tool to play with Windows security

C17776

2 months ago

honggfuzz

honggfuzz

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzin

C2868apache-2.0

3 days ago

cfuzzingsecurity

hblock

hblock

Improve your security and privacy by blocking ads, tracking and malware domains.

Shell1349mit

16 days ago

ad-blockeradblockadblocker

cyberowl

A daily updated summary of the most frequent types of security incidents current

Python230mit

5 days ago

cisacvesecurity

safenotes

safenotes

Safe Notes is a security project aimed at providing an encrypted, private note m

Dart182gpl-3.0

24 days ago

androidanonymitydart

beelzebub

beelzebub

Go based low code Honeypot Framework with Enhanced Security, leveraging OpenAI G

Go418mit

7 days ago

chatgptchatgpt-apicybersecurity

matano

matano

Open source cloud-native security lake platform (SIEM alternative) for threat hu

Rust1214apache-2.0

23 days ago

alertingapache-icebergaws

Secur

A FOSS, cross-platform TOTP client written in Flutter with the aim of providing

Dart3mit

3 years ago

security-code-scan

security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

C#872lgpl-3.0

3 months ago

analysisanalyzercode

Free-Security-eBooks

Free Security and Hacking eBooks

3911

4 years ago

cloud-securitycyber-securityebooks

osx-security-awesome

A collection of OSX and iOS security resources

680apache-2.0

7 months ago

awesomeawesome-listhacking-mac

Umbrella_android

Umbrella_android

Description Umbrella is your one stop shop for digital and physical security

Kotlin234gpl-3.0

7 months ago

activismadvicecrypto

timely-security-analytics

Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presenta

Scala28other

4 years ago

android-security-awesome

A collection of android security related resources

Shell7201apache-2.0

6 days ago

androidawesomeawesome-list

Security

[Archived] Middleware for security and authorization of web apps. Project moved

C#1256apache-2.0

5 years ago

aspnet-product

awesome-cyber-security-university

awesome-cyber-security-university

🎓 Because Education should be free. Contributions welcome! 🕵️

638cc0-1.0

5 months ago

awesomeawesome-listcourses

zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

Ruby1810mit

4 years ago

checklistrailsruby

ibm-security

A Carbon-powered React component library built by IBM Security

JavaScript72apache-2.0

2 months ago

carbon-design-systemibm-securityjavascript

awesome-security-hardening

A collection of awesome security hardening guides, tools and other resources

4557

11 days ago

awesome-listbest-practicesblue-team

Android-Security-Reference

A W.I.P Android Security Ref

850

10 days ago

androidsecurity

roslyn-security-guard

roslyn-security-guard

Roslyn analyzers that aim to help security audit on .NET applications.

C#207lgpl-3.0

6 years ago

code-analysisroslynroslyn-analyzer

awesome-bluetooth-security

List of Bluetooth BR/EDR/LE security resources

357

2 months ago

awesomeawesome-listble

awesome-embedded-and-iot-security

awesome-embedded-and-iot-security

A curated list of awesome embedded and IoT security resources.

1331cc0-1.0

5 months ago

awesomeawesome-listembedded

phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP681gpl-3.0

9 months ago

phpphp-codesnifferphpcs

Vigilante

Vigilante

🛡️ Android security (camera/microphone dots indicators) app using Hilt, Animati

Kotlin761gpl-3.0

6 days ago

androidandroidanimationandroidviewmodel

tsunami-security-scanner

Tsunami is a general purpose network security scanner with an extensible plugin

Java7931apache-2.0

16 days ago

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python1345apache-2.0

2 months ago

awesomeawesome-listhacktoberfest

security-apis

A collective list of public APIs for use in security. Contributions welcome

798mit

3 months ago

awesome-listjsonjson-api

awesome-vehicle-security

awesome-vehicle-security

🚗 A curated list of resources for learning about vehicle security and car hack

2578cc0-1.0

2 months ago

automotiveawesomeawesome-list

go-jwk-security

Go7

3 years ago

aspnetcore-security-headers

Middleware for adding security headers to an ASP.NET Core application.

C#242mit

4 months ago

awesome-evm-security

awesome-evm-security

🕶 A high-level overview of the EVM security ecosystem

138cc0-1.0

last year

awesomeawesome-listblockchain

rust-security-framework

Bindings to the macOS Security.framework

Rust196apache-2.0

2 months ago

keychainmacosrust

personal-security-checklist

personal-security-checklist

Description Strongbox is an application for keeping all your passwords safely

12562other

5 days ago

awesomeawesome-listcensorship

mana-security-app

macOS vulnerability management for individuals

JavaScript16mit

9 months ago

cybersecurityelectronmacos

awesome-industrial-control-system-security

A curated list of resources related to Industrial Control System (ICS) security.

Python26apache-2.0

7 years ago

Mobile-Security-Framework-MobSF

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application

JavaScript14906gpl-3.0

11 days ago

android-securityapi-testingapk

simple-security-toolkit

A collection of practical security-focused guides and checklists for smart contr

851mit

3 months ago

cryptosecuritysecurity-tools

eslint-plugin-security

ESLint rules for Node Security

JavaScript1847apache-2.0

10 months ago

awesome-websocket-security

Awesome information for WebSockets security research

221apache-2.0

2 years ago

securitysecurity-toolsweb-application-security

security-belt

security-belt

🥋 Framework for continuously improving the IT-Security of your teams through ga

JavaScript73apache-2.0

last year

gamificationjavascriptmaturity-model

automotive-security-research

automotive-security-research

This repository contains reverse engineering results and resources for a few spe

Python74

4 years ago

automotive-securitycar-hacking

awesome-web-security

🐶 A curated list of Web Security materials and resources.

10083

21 days ago

awesomeawesome-listlist

awesome-security

A collection of awesome software, libraries, documents, books, resources and coo

10222mit

26 days ago

awesome-listsecurity

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3033

2 years ago

dfirhuntingids

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing

21319mit

3 months ago

apijwtoauth2

snync

Mitigate security concerns of Dependency Confusion supply chain security risks

JavaScript30other

last year

ada-security

Ada Security - OAuth 2.0 client and server framework to secure web applications

Ada19apache-2.0

last month

adaauthenticationjwt

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of c

720gpl-2.0

2 months ago

cybersecuritynewsletter

security-adventure

Go on an educational Web security adventure!

JavaScript335

10 years ago

DumpsterFire

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for

Python933mit

3 years ago

automationblue-teamblue-teams

owasp-mastg

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual

Python10699cc-by-sa-4.0

2 days ago

androidandroid-applicationcompliancy-checklist

eslint-plugin-security

ESLint rules for Node Security

JavaScript1985apache-2.0

5 months ago

zarn

A lightweight static security analysis tool for modern Perl Apps

Perl18other

3 months ago

sastsecuritystatic-analysis

terraform-aws-security-group

Terraform module which creates EC2-VPC security groups on AWS 🇺🇦

HCL510other

3 months ago

awsaws-security-groupaws-vpc

wpscan

wpscan

WPScan WordPress security scanner. Written for security professionals and blog m

Ruby7825other

2 days ago

hacking-toolscanscanner

RSF

RSF

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardiz

80gpl-3.0

5 years ago

assessmentcybersecurityframework

RMS-Runtime-Mobile-Security

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you

JavaScript2321gpl-3.0

23 days ago

android-securityfridaios-security

prowler

prowler

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud

Python8620apache-2.0

yesterday

awsazurecis-benchmark

sipvicious

sipvicious

SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA a

Python780other

10 months ago

audit-siphacking-toolspassword-cracker

docker-bench-security

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-

Shell8544apache-2.0

last month

AspNet.Security.OpenIdConnect.Server

OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core

C#562

3 years ago

aspnetcorekatanaoauth2

bearer

Code security scanning tool (SAST) to discover, filter and prioritize security a

Go1361other

yesterday

appseccode-qualitycompliance

cicd-goat

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1629apache-2.0

2 months ago

appseccicdctf

security-acronyms

Cybersecurity list of acronyms & abbreviations

HTML11

10 days ago

SecLists

SecLists is the security tester's companion. It's a collection of multiple types

PHP47284mit

3 months ago

appsec-education

Presentations, training modules, and other education materials from Duo Security

JavaScript66bsd-3-clause

2 years ago

appseceducationtraining-materials

fastapi-security

Implements authentication and authorization as FastAPI dependencies

Python113mit

12 months ago

Sitecore-Security-Rights-Reporting

Sitecore-Security-Rights-Reporting

View all the Access right set on Sitecore rols or users

C#7

last year

sitecore

ssh-audit

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, co

Python1710mit

21 days ago

auditingsecurityssh

iOS-App-Security-Class

Simple class to check if app has been cracked, being debugged or enriched with c

Objective-C74mit

5 years ago

puma-scan

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time

C#428mpl-2.0

11 months ago

pyt

pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2139gpl-2.0

3 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

harden-runner

harden-runner

Runtime Security for GitHub Actions Workflow Runs

TypeScript321apache-2.0

6 days ago

actionsfirewallgithub-actions

k-rail

Kubernetes security tool for policy enforcement

Go444apache-2.0

9 months ago

k8skuberneteskubernetes-security

H5SC

HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

JavaScript2781mpl-2.0

2 years ago

reg

reg

Docker registry v2 command line client and repo listing generator with security

Go1596mit

6 months ago

clicontainersdocker

ScoutSuite

ScoutSuite

Multi-Cloud Security Auditing Tool

Python5651gpl-2.0

10 days ago

auditingawsazure

gosec

gosec

Golang security checker

Go7095apache-2.0

3 days ago

golangsecuritysecurity-automation

vast

vast

Easy data pipelines for security teams.

C++500bsd-3-clause

3 months ago

actor-modelbitmap-indexdataops

Cryptool

Cryptool

Cryptography and high security keystore Android application tool. It has a very

Kotlin44gpl-3.0

last year

androidcryptographykeystore

nebula

nebula

Description Nebula is a scalable overlay networking tool with a focus on perf

Go12541mit

6 days ago

intelmq

intelmq

IntelMQ is a solution for IT security teams for collecting and processing securi

Python841agpl-3.0

4 days ago

alertsautomationcert

codeql

codeql

CodeQL: the libraries and queries that power security researchers around the wor

CodeQL6310mit

last month

codeqlgithub-advanced-securitygithub-security-lab

Umbrella_ios

Open source Android, iOS and Web app for learning about and managing digital and

Swift15

2 years ago

infoseciosopen-source

mortar

mortar

Framework to join Linux's physical security bricks.

Shell150gpl-3.0

last year

archbitlockerboot

haaukins

haaukins

A Highly Accessible and Automated Virtualization Platform for Security Education

Go168gpl-3.0

17 days ago

clictfdcybersecurity

safetybox

Security oriented helper functions for Elixir

Elixir19

8 years ago

stronghold

stronghold

Easily configure macOS security settings from the terminal.

Python1028mit

4 years ago

command-linecommand-line-toolhardening

NetEscapades.AspNetCore.SecurityHeaders

Small package to allow adding security headers to ASP.NET Core websites

C#536mit

3 months ago

hacktoberfest

AndroBugs_Framework

AndroBugs_Framework

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1060gpl-3.0

4 years ago

Fuzzing101

Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

2048apache-2.0

11 months ago

aflafl-fuzzbug-hunting

cloudsploit

cloudsploit

Cloud Security Posture Management (CSPM)

JavaScript2896gpl-3.0

21 days ago

alibabaaquaaws

repo-supervisor

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets.

JavaScript625mit

3 months ago

blueteamredteamsecret-management

totp-ssh-fluxer

totp-ssh-fluxer

Take security by obscurity to the next level (this is a bad idea, don't really u

Go913

last year

iptablesobscurityssh

atomex

🌊 Elixir RSS/ATOM feed builder with a focus on standards compliance, security a

Elixir42mit

6 months ago

atomelixirrss

fireward

A concise and readable language for Firestore security rules, similar to Firebas

Haskell234mit

6 months ago

firebasefirebase-firestorehaskell

VaporSecurityHeaders

VaporSecurityHeaders

Harden Your Security Headers For Vapor

Swift133mit

4 months ago

brokenhandssecurityserver-side-swift

joy

A package for capturing and analyzing network flow data and intraflow data, for

C1248other

4 years ago

mythril

mythril

Security analysis tool for EVM bytecode. Supports smart contracts built for Ethe

Python3517mit

18 days ago

blockchainethereumprogram-analysis

ThreatMapper

ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargat

Go3773apache-2.0

3 months ago

cloud-nativecloudsecuritycnapp

progpilot

A static analysis tool for security

PHP295mit

4 months ago

phpsecurity-toolsstatic-code-analysis

LogESP

Open Source SIEM (Security Information and Event Management system).

Python175mit

last month

asset-managementforensicslog

jwtXploiter

A tool to test security of json web token

Python239gpl-3.0

3 years ago

ctfctf-toolsjku

domain_analyzer

Analyze the security of any domain by finding all the information possible. Made

Python1829

9 months ago

hermetic

Security for Clack-based Common Lisp web applications.

Common Lisp40

4 years ago

Raccoon

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability

Python2881mit

last year

enumerationfuzzinghacking

fleet

fleet

Open-source platform for IT and security teams with thousands of computers. (Lin

Go1562other

24 hours ago

chefcloud-securitydesktop-engineering

Astra

Astra

Automated Security Testing For REST API's

Python2333apache-2.0

4 months ago

ci-cdowasppenetration-testing

buddy

Security library for Clojure

Clojure824apache-2.0

2 years ago

octopus

octopus

Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contra

Python455mit

11 months ago

blockchaincall-flow-analysiscontrol-flow-analysis

InviZible

InviZible

Android application for Internet privacy and security

Java1027gpl-3.0

7 hours ago

advertisingandroidandroid-application

secure_headers

Manages application of security headers with many safe defaults

Ruby3103mit

24 days ago

content-security-policycookiecsp

nogotofail

An on-path blackbox network traffic security testing tool

Python2904apache-2.0

12 months ago

uuid

Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security

Go4616bsd-3-clause

7 days ago

gouuid

shield

Comprehensive security for Lucky framework

Crystal52mit

2 months ago

authenticationcrystallucky-framework

GraphCrawler

GraphCrawler

GraphQL automated security testing toolkit

Python256mit

8 months ago

apiapi-hackingautomated-testing

aaf-easypassword

aaf-easypassword

:lock: Easy Password is password management application. This application uses p

Kotlin33other

4 years ago

android-appandroid-applicationkotlin

scanner-cli

scanner-cli

A project security/vulnerability/risk scanning tool

JavaScript356other

2 years ago

cidockernodejs

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.

Python25

8 years ago

insider

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go447mit

last year

androidandroid-securitycli

itextsharp

itextsharp

[DEPRECATED] .NET port of the iText library, only security fixes will be added —

C#1296other

6 months ago

lorg

lorg

Apache Logfile Security Analyzer

HTML204gpl-2.0

5 years ago