Security

1010 projects

Showing 36 of 1010 projects

A tiny Flask app to create encrypted secrets and share them securely, keeping sensitive info out of emails and chat logs.

#api#flask#secret-sharing

Stars414

Forks31

Last commit26 days ago

KeyscopeRust

A Rust CLI tool to automate validation and invalidation workflows for API keys and secrets across 30+ providers.

#pentest#developer-tools#devops

Stars411

Forks113

Last commit10 months ago

share-cliJavaScript

A command-line tool to quickly share files via encrypted, password-protected HTTP links.

#http-server#productivity#localtunnel

Stars407

Forks13

Last commit7 years ago

Buttercup MobileTypeScript

React Native mobile application for the Buttercup password manager, offering secure on-device vault management.

#hacktoberfest#ios#biometric-authentication

Stars405

Forks85

Last commit1 year ago

opaque-keRust

A Rust implementation of the OPAQUE password-authenticated key exchange protocol for secure password-based authentication.

#password-authentication#authentication-protocol#end-to-end-encryption

Stars404

Forks64

Last commit2 months ago

SubstationGo

A serverless toolkit for routing, normalizing, and enriching security event and audit logs in AWS.

#aws-serverless#observability#log-enrichment

Stars402

Forks33

Last commit4 months ago

teler-wafGo

A Go HTTP middleware that protects web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, and brute force attacks.

#teler-waf#bot-protection#waf

Stars401

Forks33

Last commit1 year ago

VisualCaptcha

A configurable, accessible, and secure visual CAPTCHA solution with support for multiple front-end and back-end frameworks.

#jquery#web-security#anti-bot

Stars400

Forks43

Last commit5 years ago

HeimdallSwift

A Swift wrapper around iOS Security framework for RSA/AES encryption, decryption, signing, and keychain key-pair management.

#keychain#ios#rsa-encryption

Stars399

Forks64

Last commit5 years ago

Software Assurance Maturity ModelJavaScript

A framework to help organizations formulate and implement a strategy for software security tailored to their specific risks.

#maturity-models#security#maturity-model

Stars398

Forks129

Last commit4 years ago

EOS Smart Contract Development Security Best Practices

A comprehensive guide to security best practices and known vulnerabilities for EOS smart contract developers.

#dapp-security#eos#vulnerability-analysis

Stars392

Forks72

Last commit10 months ago

noble-ciphersTypeScript

Audited, minimal JavaScript implementation of Salsa20, ChaCha, and AES encryption algorithms.

#cipher#webcrypto#encryption

Stars392

Forks25

Last commit4 days ago

GorillaRust

A versatile Rust tool for generating and mutating wordlists using patterns, web scraping, and password formats.

#cracking#hash#infosec

Stars392

Forks22

Last commit4 months ago

github-authRuby

A command-line tool for managing SSH keys from GitHub users to enable secure pair programming sessions.

#github-integration#developer-tools#ssh-key-management

Stars390

Forks17

Last commit7 years ago

TOPasscodeViewControllerObjective-C

A customizable modal passcode input and validation view controller for iOS apps requiring extra security.

#ios#touch-id#authentication

Stars390

Forks93

Last commit2 years ago

HIBAC

A flexible authorization layer for OpenSSH certificate-based authentication using host identities and grants.

#devops#openssh#authorization

Stars388

Forks18

Last commit1 year ago

sshcommandShell

A tool that simplifies running single commands over SSH and manages authorized keys for secure remote execution.

#devops#cli-tool#security

Stars388

Forks49

Last commit7 days ago

Center for Threat Informed Defense Security Stack MappingsPython

A collection of native security controls for major cloud platforms mapped to MITRE ATT&CK techniques to enable threat-informed defense decisions.

A lightweight static analyzer for developers that finds code patterns across multiple programming languages.

#multi-language#developer-tools#terraform-security

Stars386

Forks13

Last commit2 years ago

two-factor-bundlePHP

Two-factor authentication bundle for Symfony applications, supporting TOTP, Google Authenticator, and email codes.

#totp#authentication#two-factor-authentication

Stars386

Forks107

Last commit4 years ago

ParsePHP

A static security scanner for PHP code that identifies potential vulnerabilities without executing the code.

#command-line-tool#vulnerability-detection#security

Stars382

Forks41

Last commit7 years ago

Import a GPG KeyTypeScript

A GitHub Action to import a GPG private key into a runner's keychain for signing commits, tags, and pushes.

#actions#gnupg2#devops

Stars380

Forks95

Last commit11 days ago

terrahelpGo

A command-line utility written in Go that provides encryption, decryption, and masking functionality for Terraform state and output.

#devops#vault#cli-tool

Stars379

Forks39

Last commit3 years ago

lua-lockboxLua

A collection of cryptographic primitives and protocols written in pure Lua for cross-platform reference implementations.

#encryption#security#lua-library

Stars375

Forks70

Last commit2 years ago

cotpRust

A command-line TOTP/HOTP authenticator with strong encryption, import capabilities, and an interactive dashboard.

#totp#xchacha20-poly1305#authentication

Stars374

Forks27

Last commit10 days ago

V0ltPython

A Python toolkit for security Capture The Flag (CTF) challenges, providing utilities for crypto, shellcodes, and network connections.

#security#python3#python-toolkit

Stars373

Forks100

Last commit8 years ago

guardian_dbElixir

A Guardian extension that tracks JWT tokens in a database to enable immediate revocation and prevent replay attacks.

#database#elixir#authentication

Stars373

Forks89

Last commit10 months ago

MonbanRuby

A simple and extensible user authentication library for Ruby on Rails applications.

#warden#authentication#user-management

Stars372

Forks19

Last commit6 years ago

Google Cloud Security AnalyticsPython

A community-driven collection of pre-built security analytics queries and rules for auditing and threat detection in Google Cloud.

#security-analytics#yara-l#log-analytics

A Java bytecode analyzer that detects and blocks forbidden API calls during builds with Ant, Maven, or Gradle.

#gradle#build-tools#static-code-analysis

Stars369

Forks37

Last commit8 months ago

tfmcpRust

An experimental CLI tool that enables AI assistants to manage and operate Terraform environments via the Model Context Protocol (MCP).

#devops#cli-tool#security

Stars368

Forks30

Last commit2 months ago

VökuróPHP

A sample application demonstrating Phalcon Framework features including ACL, authentication, and security.

#sample#demo#caching

Stars368

Forks190

Last commit2 years ago

noCAPTCHAPHP

A PHP helper package for integrating Google's reCAPTCHA v2 and v3 with easy setup and Laravel support.

#bot-protection#laravel#recaptcha

Stars365

Forks55

Last commit2 years ago

Credential DiggerPython

A GitHub scanning tool that identifies hardcoded credentials and filters false positives using machine learning models.

#hardcoded-credentials#regex#vscode-extension

Stars364

Forks54

Last commit3 months ago

PE-PackerC

A packer for Windows x86 executable files that transforms and encrypts PE files to obstruct reverse engineering.

#pe#assembly#educational

Stars364

Forks54

Last commit1 year ago

HawkeyeJavaScript

A security scanning CLI tool that detects vulnerabilities, secrets, and outdated dependencies across multiple programming languages.

#multi-language#pre-commit-hooks#secret-detection

Stars362

Forks86

Last commit4 years ago

PreviousPage 19 of 29Next

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub