Security
Showing 36 of 400 projects
Security-focused static analysis tool for Elixir and Phoenix applications, detecting common vulnerabilities.
A grammar-based DOM fuzzer that generates HTML, CSS, and JavaScript test cases to find security vulnerabilities in web browsers.
A Python RDP man-in-the-middle tool and library for intercepting, monitoring, and analyzing Remote Desktop Protocol connections.
A curated list of threat modeling resources including books, courses, videos, tools, tutorials, and examples for learning and practicing threat modeling.
A CSRF protection middleware for Go that prevents Cross-Site Request Forgery attacks in any HTTP application.
A fast, secure .NET template engine implementing the Liquid language with async support and extensibility.
A lightweight SSH honeypot that logs all connection attempts and activity without executing commands.
A companion repository with example eBPF programs and a Lima VM configuration for the O'Reilly book 'Learning eBPF'.
A secure-by-design Electron app template with React, TypeScript, and Redux pre-configured for best-practice security.
A .NET library for writing dynamic LINQ queries using string expressions, supporting .NET Core, .NET Standard, and .NET Framework.
A grep-based source code auditing tool that finds potential security flaws using signature databases for multiple programming languages.
A .NET library for cleaning HTML fragments and documents to prevent XSS attacks using a robust HTML parser.
Roslyn-based analyzers for .NET code quality, security, and maintainability, replacing legacy FxCop.
An open source, serverless security data lake for AWS that normalizes logs, enables detection-as-code, and supports petabyte-scale threat hunting.
A lightweight, generic role-based access control (RBAC) library for Go applications with inheritance and custom assertions.
An interactive command-line tool for exploring and exploiting the CTF protocol on Windows systems.
An open-source tool for PostgreSQL and MySQL database anonymization, synthetic data generation, and logical dumping.
A modern hash identification tool that names MD5, SHA256, and 300+ other hash types with popularity ratings and summaries.
A modern system shell written in Rust with a simple yet powerful syntax, designed for performance and security.
An open-source specification and tools for sending webhooks easily, securely, and reliably across the industry.
OpenSSL bindings for Rust providing cryptographic functionality and TLS/SSL support.
OpenSSL bindings for the Rust programming language, providing cryptographic and TLS functionality.
A simple Swift wrapper for the iOS/tvOS Keychain that mimics UserDefaults syntax.
A Linux distribution for network detection and response (NDR) built around Suricata, providing a complete NDR platform.
A modular Rust library for building production-ready distributed services with built-in observability and security.
A composable, extensible, and performant authorization framework for Ruby and Rails applications.
A CocoaPods plugin that securely stores environment and application keys in the developer's keychain, keeping them out of source control.
Authentication library for Nuxt 3+ applications, supporting OAuth, credentials, and email magic links.
A full-stack ASP.NET Core 7.0 and Angular 15 SPA application with authentication, clean architecture, and comprehensive examples.
Fullstack authentication and accounts-management solution for GraphQL and REST applications in JavaScript.
A certified OpenID Connect reference implementation in Java on the Spring platform, serving as an Identity Provider and OAuth 2.0 Authorization Server.
Database security suite providing field-level encryption, SQL injection prevention, and intrusion detection for sensitive data.
Open-source supply chain security scanner that automatically detects vulnerabilities like Log4Shell in dependencies and notifies via GitHub pull requests.
An open-source ICS/SCADA honeypot designed to emulate industrial control systems and collect adversary intelligence.
A stripped-down, bare-bones authentication library for Ruby on Rails applications.
A GitHub Action that sets up ssh-agent with private SSH keys to enable secure access to private repositories and servers.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.