Security
Showing 36 of 1010 projects
Security-focused static analysis tool for Elixir and Phoenix applications, detecting common vulnerabilities.
A grammar-based DOM fuzzer that generates HTML, CSS, and JavaScript test cases to find security vulnerabilities in web browsers.
A Python RDP man-in-the-middle tool and library for intercepting, monitoring, and analyzing Remote Desktop Protocol connections.
A companion repository with example eBPF programs and a Lima VM configuration for the O'Reilly book 'Learning eBPF'.
A curated list of threat modeling resources including books, courses, videos, tools, tutorials, and examples for learning and practicing threat modeling.
A fast, secure .NET template engine implementing the Liquid language with async support and extensibility.
A CSRF protection middleware for Go that prevents Cross-Site Request Forgery attacks in any HTTP application.
A lightweight SSH honeypot that logs all connection attempts and activity without executing commands.
A secure-by-design Electron app template with React, TypeScript, and Redux pre-configured for best-practice security.
A .NET library for writing dynamic LINQ queries using string expressions, supporting .NET Core, .NET Standard, and .NET Framework.
A .NET library for cleaning HTML fragments and documents to prevent XSS attacks using a robust HTML parser.
An open-source specification and tools for sending webhooks easily, securely, and reliably across the industry.
An open-source tool for PostgreSQL and MySQL database anonymization, synthetic data generation, and logical dumping.
A grep-based source code auditing tool that finds potential security flaws using signature databases for multiple programming languages.
An open source, serverless security data lake for AWS that normalizes logs, enables detection-as-code, and supports petabyte-scale threat hunting.
A lightweight, generic role-based access control (RBAC) library for Go applications with inheritance and custom assertions.
Roslyn-based analyzers for .NET code quality, security, and maintainability, replacing legacy FxCop.
An interactive command-line tool for exploring and exploiting the CTF protocol on Windows systems.
A modern hash identification tool that names MD5, SHA256, and 300+ other hash types with popularity ratings and summaries.
A modern system shell written in Rust with a simple yet powerful syntax, designed for performance and security.
OpenSSL bindings for Rust providing cryptographic functionality and TLS/SSL support.
OpenSSL bindings for the Rust programming language, providing cryptographic and TLS functionality.
A modular Rust library for building production-ready distributed services with built-in observability and security.
A simple Swift wrapper for the iOS/tvOS Keychain that mimics UserDefaults syntax.
A Linux distribution for network detection and response (NDR) built around Suricata, providing a complete NDR platform.
A simple command-line SSH tunnel manager that supports local, remote, and dynamic port forwarding with automatic reconnection.
A composable, extensible, and performant authorization framework for Ruby and Rails applications.
A CocoaPods plugin that securely stores environment and application keys in the developer's keychain, keeping them out of source control.
Authentication library for Nuxt 3+ applications, supporting OAuth, credentials, and email magic links.
A full-stack ASP.NET Core 7.0 and Angular 15 SPA application with authentication, clean architecture, and comprehensive examples.
A certified OpenID Connect reference implementation in Java on the Spring platform, serving as an Identity Provider and OAuth 2.0 Authorization Server.
Fullstack authentication and accounts-management solution for GraphQL and REST applications in JavaScript.
An open-source ICS/SCADA honeypot designed to emulate industrial control systems and collect adversary intelligence.
Database security suite providing field-level encryption, SQL injection prevention, and intrusion detection for sensitive data.
Open-source supply chain security scanner that automatically detects vulnerabilities like Log4Shell in dependencies and notifies via GitHub pull requests.
A GitHub Action that sets up ssh-agent with private SSH keys to enable secure access to private repositories and servers.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.