Open Source Security
Showing 27 of 27 projects
A fast, customizable vulnerability scanner with a YAML-based DSL, powered by a global security community.
A secrets scanning tool that discovers, classifies, validates, and analyzes leaked credentials across multiple sources.
A secrets scanning tool that discovers, classifies, validates, and analyzes leaked credentials across multiple sources.
A SQL-powered framework for instrumenting, monitoring, and analyzing operating systems across Linux, macOS, and Windows.
A multi-platform desktop application that provides client-side encryption for cloud storage files, ensuring privacy and control.
An open-source penetration testing framework for social engineering with custom attack vectors to create believable attacks quickly.
An advanced offline password cracker supporting hundreds of hash and cipher types across multiple platforms.
A free and open-source network discovery and security auditing tool for mapping networks and identifying services.
A vulnerability scanner for container images, filesystems, and SBOMs to detect known security issues.
Open-source vulnerability static analysis tool for container images (OCI/Docker) via API-based indexing and matching.
A curated list of free and open-source honeypot resources, tools, and related components for cybersecurity research.
A curated list of awesome honeypot resources, tools, and related components for cybersecurity research and defense.
A CLI tool and Go library for generating Software Bill of Materials (SBOM) from container images and filesystems.
A general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities.
Securely and anonymously share files, host websites, and chat via the Tor network.
AFL++ is a community-enhanced, high-performance fork of the AFL fuzzer with advanced instrumentation, mutators, and speed improvements.
Automated security health metrics for open source projects, assessing security best practices and risks.
A Rust tool for detecting IMSI catchers (cell-site simulators) on mobile hotspots like the Orbic RC400L.
An open-source web application security scanner that identifies and exploits 200+ vulnerabilities for developers and penetration testers.
A binary and file access authorization system for macOS that monitors and controls application execution.
An open-source Cloud Security Posture Management (CSPM) tool that scans AWS, Azure, GCP, Oracle, and GitHub for security misconfigurations.
A Composer package that blocks installation of PHP dependencies with known security vulnerabilities.
Static application security testing (SAST) tool that scans source code to discover, filter, and prioritize security and privacy risks.
A phishing campaign toolkit for simulating real-world attacks to test and promote user security awareness.
An open-source malware analysis framework that functions as a self-hosted alternative to VirusTotal.
A command-line toolkit for validating, scanning, and managing SCAP (Security Content Automation Protocol) documents.
An open-source, scalable DDoS protection system designed for network operators to withstand high-bandwidth attacks.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.