Security
Showing 36 of 400 projects
An open-source, Google Zanzibar-inspired database for storing and querying fine-grained authorization data at scale.
A customizable, easy-to-use Capture The Flag framework for running cybersecurity competitions.
A static analysis tool for detecting bugs and undefined behavior in C and C++ code.
A next-generation web scanner that identifies websites and their technologies using over 1800 plugins with configurable aggression levels.
A community-curated collection of payloads, tools, and techniques for bug bounty hunters and security researchers.
Open-source platform for IT and security teams to manage and secure thousands of computers across diverse environments.
A curated collection of security hardening guides, best practices, checklists, benchmarks, and tools for various systems and services.
An open-source platform for collecting, storing, sharing, and acting upon cybersecurity threat intelligence and indicators.
A static analysis framework for Solidity and Vyper smart contracts that detects vulnerabilities, enhances code comprehension, and enables custom analyses.
A lightweight LDAP authentication server with a web UI, designed for simple user management in self-hosted environments.
A reconnaissance tool that finds potentially sensitive files in public GitHub repositories for security analysis.
An unsupervised coverage-guided kernel fuzzer for finding bugs in operating system kernels like Linux, Windows, and BSD variants.
A ready-to-use and customizable user management system for FastAPI applications.
A GitHub Action for executing remote SSH commands securely in CI/CD workflows.
A composable, all-in-one mail server that implements SMTP, IMAP, DKIM, SPF, DMARC, and more in a single daemon.
A tool for visual inspection of websites across many hosts, providing an overview of HTTP-based attack surfaces.
An open-source authorization service inspired by Google Zanzibar for building fine-grained, scalable access control systems.
A Go client implementation for the OAuth 2.0 authorization framework.
SSH2 client and server modules written in pure JavaScript for Node.js.
Rack middleware for blocking and throttling abusive requests in Ruby web applications.
An authorization library for Ruby and Ruby on Rails that centralizes permission logic and restricts resource access.
An authorization library for Ruby and Ruby on Rails that centralizes permission logic and restricts resource access.
A simple yet powerful ACMEv2 client for Windows to automate SSL/TLS certificate creation, installation, and renewal.
A curated list of awesome information security courses, training resources, and hands-on labs for cybersecurity professionals and students.
An intentionally vulnerable Kubernetes cluster environment for hands-on security training and practice.
Automatic TLS certificate issuance and renewal for Go programs, enabling fully-managed HTTPS with a single line of code.
An open-source implementation of Google's Zanzibar authorization system, providing a scalable and customizable permission server.
A comprehensive Python library for building OAuth and OpenID Connect clients and servers, with built-in JOSE support.
Reference C implementation of Argon2, the memory-hard password hashing function that won the Password Hashing Competition.
A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
A static code analyzer that detects security and compliance violations in Infrastructure as Code before provisioning cloud infrastructure.
A static code analyzer that detects security and compliance violations in Infrastructure as Code before provisioning cloud infrastructure.
A mature low-level Linux container runtime focused on system containers with strong security features and kernel integration.
A flexible and versatile OAuth 2.0/OpenID Connect stack for implementing client, server, and token validation in .NET applications.
A high-performance, flexible authorization/permission engine inspired by Google Zanzibar for fine-grained access control.
A curated list of awesome projects, tutorials, and resources related to eBPF (extended Berkeley Packet Filter).
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.