Security

OTP-JavaJava

A lightweight Java library for generating and verifying HOTP and TOTP one-time passwords compliant with RFC 4226 and RFC 6238.

djwtTypeScript

A lightweight library for creating and verifying JSON Web Tokens (JWT) in Deno and browser environments.

greywallGo

A container-free, deny-by-default sandbox for AI coding agents, enforcing kernel-level filesystem, network, and syscall isolation on Linux and macOS.

RVDPython

An open-source archive for robot vulnerabilities and bugs, using a robot-specific scoring system.

crowdsec-blocklist-importPython

Import 28+ threat intelligence feeds into CrowdSec with automatic deduplication, normalization, and real-time sync.

Private-Composer-InstallerPHP

A Composer plugin that replaces sensitive tokens in private package URLs with environment variables, keeping secrets out of version control.

ldap2pgGo

A Swiss-army knife to synchronize PostgreSQL roles and privileges from YAML or LDAP.

kube-forensicsGo

A Kubernetes operator that creates checkpoint snapshots of running pods for offline forensic analysis after security incidents.

SecureDefaultsSwift

A lightweight wrapper for UserDefaults that adds AES-256 encryption to secure stored data in iOS/macOS apps.

TannerPython

A remote data analysis and classification service that evaluates HTTP requests and emulates vulnerabilities for honeypot systems.

PETEPJava

An open-source Java proxy for penetration testing, enabling traffic analysis and modification of TCP/UDP application protocols.

Escape Graphinder - GraphQL Subdomain EnumerationPython

A tool that extracts all GraphQL endpoints from a given domain using subdomain enumeration, script analysis, and brute force.

shellclearRust

A Rust CLI tool that finds and clears sensitive data from shell history to enhance command-line security.

oidccErlang

An OpenID Connect certified client library for Erlang and Elixir applications.

PCLCryptoC#

A .NET library providing cryptographic APIs that delegate to platform-native implementations for portable libraries.

JOSESwiftSwift

A Swift framework for implementing JOSE standards (JWS, JWE, JWK) to sign, encrypt, and represent cryptographic keys.

zxcvbn-iosObjective-C

A realistic password strength estimation library for iOS, using pattern matching and conservative entropy calculations.

bcryptPascal

A Delphi library for securely hashing and verifying passwords using the BCrypt algorithm.

BCrypt.NET-CoreC#

A .NET Core port of BCrypt.net for secure password hashing with enhanced features and compatibility.

KaliumJava

Java binding to the libsodium library for modern, secure cryptography and networking operations.

pandectClojure

A fast and easy-to-use Clojure library for message digests, checksums, HMAC, and digital signatures.

super-regexJavaScript

A JavaScript library that adds timeout protection to regular expressions to prevent ReDoS attacks.

LogESPPython

An open-source SIEM system built with Python Django for log management, risk assessment, and asset tracking.

Android Mobile Device HardeningPython

A Python tool for automating Android device security hardening, malware detection, and privacy protection via ADB.

aws-php-sns-message-validatorPHP

A standalone PHP library to validate incoming HTTP(S) POST messages as authentic Amazon SNS notifications.

jwtCrystal

A comprehensive JSON Web Token (JWT) implementation for the Crystal programming language.

terraform-aws-ssh-bastion-serviceHCL

A Terraform module to deploy a stateless, containerized SSH bastion service on AWS with IAM-based authentication.

Flask-BootstrapJavaScript

A Flask app template with integrated SQLAlchemy, authentication, and Bootstrap frontend for building secure web applications.

cefdebugC

A minimal command-line utility for connecting to and exploiting exposed CEF/Electron debuggers during security assessments.

Jwks RSAJava

A Java library for retrieving JSON Web Keys from a JWKS endpoint to verify JWT signatures.

ChamberRuby

A convention-based Ruby library for managing application configuration with automatic encryption and organization.

tfmaskGo

A command-line utility to mask sensitive output from terraform plan and terraform apply commands.

simple-scryptGo

A Go library providing a convenient wrapper for secure password hashing using the scrypt key derivation function.

eos-vmC++

A low-latency, high-performance, and extensible WebAssembly backend library designed for blockchain and embedded applications.

EVM Security

A curated list of resources for understanding and securing the Ethereum Virtual Machine (EVM) ecosystem.

algorand-walletSwift

Open-source mobile wallet for the Algorand blockchain, focused on security and user experience.