Security

#sql-injection#web-security#xss

Last commit2 years ago

Web SecurityPython

A curated collection of web security resources, tools, and research materials for learning penetration techniques.

Stars13.4k

Forks1.8k

Last commit2 days ago

RoutersploitPython

An open-source exploitation framework dedicated to embedded devices for penetration testing and vulnerability assessment.

#vulnerability-assessment#routersploit#router-exploitation-framework

A free and open-source network discovery and security auditing tool for mapping networks and identifying services.

#vulnerability-assessment#osx#network-discovery

Stars13.0k

Forks2.8k

Last commit2 days ago

KeeWebHTML

A free, cross-platform password manager compatible with KeePass databases, available as a web app and desktop application.

#keepass#desktop-application#open-source

Stars12.9k

Forks1.1k

Last commit29 days ago

MVT (Mobile Verification Toolkit)Python

A forensic toolkit for gathering and analyzing traces on Android and iOS devices to identify potential spyware compromise.

#forensics-tools#digital-forensics#mobile-security

A community guide to using YubiKey as a smart card for GnuPG and SSH with hardware-secured cryptographic keys.

#gpg-configuration#gpg#remote-access

Stars12.4k

#container-security#vulnerability#sbom-analysis

GrypeGo

A vulnerability scanner for container images, filesystems, and SBOMs to detect known security issues.

Stars12.3k

Forks806

Last commit13 hours ago

GrypeGo

A vulnerability scanner for container images, filesystems, and SBOMs to detect known security issues.

#container-security#vulnerability#sbom-analysis

Stars12.3k

Forks806

Last commit13 hours ago

Open Policy AgentGo

An open-source, general-purpose policy engine for unified, context-aware policy enforcement across the stack.

#declarative#policy-engine#cncf

Stars11.8k

#steganography#security#security-tools

Last commit11 hours ago

Awesome CTFJavaScript

A curated list of Capture The Flag (CTF) frameworks, libraries, resources, software, and tutorials for security enthusiasts.

Stars11.6k

#forensics-tools#cryptography-tools#pentesting-tools

Last commit1 year ago

CTFJavaScript

A curated list of Capture The Flag (CTF) frameworks, libraries, resources, software, and tutorials for security enthusiasts.

Stars11.6k

#lumen#stateless-authentication#authentication

Last commit1 year ago

JWT AuthPHP

A Laravel and Lumen package for JSON Web Token authentication, providing stateless API authentication.

Stars11.5k

Forks1.5k

Last commit3 months ago

SimpleX ChatHaskell

A private messaging platform with no user identifiers, using disposable relay nodes for metadata protection.

#chat#chat-bots#haskell

Stars11.2k

Forks618

Last commit7 hours ago

Futurice iOS Good Practices

A comprehensive collection of iOS development best practices, covering architecture, tools, security, and deployment.

#apple#provisioning-profiles#deployment

Stars11.0k

#security-tuning#reverse-proxy#plugin-system

Last commit2 years ago

BunkerWebPython

An open-source, next-generation Web Application Firewall (WAF) that integrates as a reverse proxy to make web services secure by default.

Stars10.6k

Forks616

Last commit16 hours ago

Bunkerized-nginxPython

An open-source, next-generation Web Application Firewall (WAF) based on NGINX that makes web services secure by default.

#security-tuning#reverse-proxy#devops

Stars10.6k

Forks616

Last commit16 hours ago

CryptoSwiftSwift

A comprehensive collection of cryptographic algorithms implemented in pure Swift for Apple platforms and Linux.

#cipher#ios#hashing

Stars10.6k

Forks1.8k

Awesome Threat Intelligence

SigmaPython

A generic and open signature format for describing log event detections, shareable across SIEM systems.

#signatures#yaml#siem

Stars10.5k

Forks2.6k

Last commit5 days ago

Sigma RulesPython

A generic and open signature format for describing log event detections, shareable across SIEM systems.

#signatures#yaml#siem

Stars10.5k

Forks2.6k

Last commit5 days ago

A curated list of awesome open-source threat intelligence resources, including feeds, tools, platforms, and standards.

#cyber-threats#hacktoberfest#security-feeds

Stars10.3k

Forks1.8k

Last commit5 days ago

NishangPowerShell

A PowerShell framework for offensive security, penetration testing, and red teaming with scripts for all phases.

#lateral-movement#redteam#antivirus-bypass

Stars9.9k

Forks2.5k

Last commit2 years ago

VeraCryptC

Open-source disk encryption software with enhanced security features, based on TrueCrypt.

#full-disk-encryption#open-source#data-protection

Stars9.9k

#version-control#transparent-encryption#developer-tools

Last commit14 hours ago

git-cryptC++

Transparently encrypts specific files in git repositories, allowing secure storage of secrets alongside public code.

Stars9.7k

Forks534

Last commit8 months ago

codeqlCodeQL

Standard libraries and queries for CodeQL, powering GitHub Advanced Security and static application security testing.

#codeql#vulnerability-detection#security

Stars9.7k

Forks2.0k

Last commit3 hours ago

legoGo

A Let's Encrypt/ACME client and library written in Go for automatic certificate management.

#devops#rfc8555#certificate-management

Stars9.6k

Forks1.1k

Last commit3 days ago

Docker bench securityShell

A script that checks for dozens of common best-practices around deploying Docker containers in production.

#container-security#audit#security

A free, open-source WordPress security scanner for professionals and site maintainers to test website vulnerabilities.

#vulnerability-assessment#web-security#wpvulndb

Stars9.6k

Forks1.3k

Last commit1 day ago

Android SecurityMakefile

A comprehensive, curated collection of tools, research, and resources for Android application security analysis and reverse engineering.

#vulnerability-assessment#mobile-security#android

Stars9.5k

android-security-awesomeMakefile

Last commit

A comprehensive, curated collection of tools, research, and resources for Android application security analysis and penetration testing.

#vulnerability-assessment#mobile-security#android

A PKI/TLS toolkit for signing, verifying, and bundling TLS certificates, available as a CLI tool and HTTP API server.

#ocsp#certificate-management#certificate-authority

Stars9.4k

Forks1.1k

#multi-honeypot#honeypot#self-hosted-security

T-PotShell

An all-in-one, optionally distributed, multi-architecture honeypot platform with 20+ honeypots, visualization via Elastic Stack, and live attack maps.

Stars9.3k

Forks1.4k

Last commit13 hours ago

ObjectionPython

A runtime mobile exploration toolkit powered by Frida for security assessment of iOS and Android apps without jailbreak.

#runtime-analysis#mobile-security#pentest

Stars9.2k

Forks979

Last commit3 days ago

Sealed SecretsGo

A Kubernetes controller and tool for encrypting Secrets into SealedSecrets that can be safely stored in Git.

#devops#controller#kubernetes-secrets

Stars9.1k

Forks775

Last commit3 days ago

jwt-goGo

A Go implementation of JSON Web Tokens (JWT) for signing, verifying, parsing, and generating tokens.

#oauth2#auth#authentication

Stars9.1k

Forks430

Last commit4 days ago

Incident Response

A curated list of tools and resources for digital forensics and incident response (DFIR) teams.

#digital-forensics#security-automation#incident-response-tooling

Stars9.1k

Forks1.7k