Security

django-guardianPython

Adds per-object permissions to Django's authorization system, enabling fine-grained access control.

PHP EncryptionPHP

A secure and easy-to-use PHP library for encrypting data with keys or passwords.

StegcloakJavaScript

A pure JavaScript steganography module that hides secrets inside text using invisible unicode characters, secured with passwords and encryption.

vulscanLua

An Nmap NSE script that transforms nmap into a vulnerability scanner using offline vulnerability databases.

FigaroRuby

Simple, Heroku-friendly Rails app configuration using ENV and a single YAML file.

scansJavaScript

An open-source Cloud Security Posture Management (CSPM) tool that scans AWS, Azure, GCP, Oracle, and GitHub for security misconfigurations.

node-oidc-providerJavaScript

OpenID Certified OAuth 2.0 Authorization Server implementation for Node.js with extensive spec support.

bluemondayGo

A fast, configurable HTML sanitizer for Go that scrubs user-generated content of XSS attacks using an allowlist policy.

JWTRuby

A Ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT) standard for secure token encoding and decoding.

sozuRust

A lightweight, fast, always-up HTTP reverse proxy built in Rust, configurable at runtime without reloading.

SWAG (Secure Web Application Gateway)Dockerfile

A Docker container providing a secure Nginx web server and reverse proxy with automated SSL certificates and fail2ban protection.

RizinC

A reverse engineering framework and command-line toolset for binary analysis, disassembly, debugging, and forensic tasks.

BouncerPHP

An elegant, framework-agnostic package for managing roles and abilities in Laravel using Eloquent models.

oathkeeperGo

A cloud native Identity & Access Proxy (IAP) and Access Control Decision API that authenticates, authorizes, and mutates HTTP requests.

recaptchaPHP

A PHP client library for Google's reCAPTCHA service to verify user responses and protect websites from spam.

ChainsawRust

A fast, standalone tool for rapid threat hunting and forensic analysis of Windows event logs and other forensic artefacts.

rate-limiter-flexibleJavaScript

Atomic and non-atomic counters and rate limiting tools for Node.js, Deno, and browsers to protect from DoS and brute force attacks.

BitwardenTypeScript

A cross-platform desktop application for managing passwords and sensitive data, built with Electron and Angular.

CorazaGo

An open-source, enterprise-grade Web Application Firewall library written in Go, compatible with ModSecurity SecLang rulesets.

rageRust

A Rust implementation of the age file encryption tool, offering simple, secure encryption with small explicit keys and UNIX-style composability.

awesome-cve-poc

A curated collection of proof-of-concept exploits for Common Vulnerabilities and Exposures (CVEs).

osoRust

A batteries-included framework for building authorization in your application with a declarative policy language.

embaShell

An open-source firmware security analyzer for embedded Linux devices, performing extraction, static/dynamic analysis, SBOM generation, and vulnerability reporting.

KeyBoxJava

A modern, web-based SSH console and key management tool that functions as a secure bastion host.

Anti Corruption Layer Pattern

A collection of reusable, vendor-neutral, and industry-specific solution architecture patterns for building enterprise software systems.

API-led Connectivity pattern

A collection of reusable, vendor-neutral, industry-specific, and vendor-specific solution architecture patterns for building enterprise software systems.

LighthouseRust

An open-source Ethereum consensus client written in Rust, designed for security and performance on the Ethereum proof-of-stake network.

FluentFTPC#

A fully managed, high-performance FTP and FTPS client library for .NET and .NET Standard, optimized for speed.

Deepfence SecretScannerGo

A standalone tool that finds unprotected secrets like passwords and API keys in container images and file systems.

OpenSKRust

An open-source implementation of FIDO2 and U2F security keys written in Rust, enabling custom hardware authentication devices.

HonggfuzzC

A security-oriented, feedback-driven, evolutionary software fuzzer that uses hardware and software code coverage to find bugs.

TimesketchPython

An open-source tool for collaborative forensic timeline analysis, enabling teams to organize, annotate, and investigate timelines together.

HTML PurifierPHP

A standards-compliant HTML filtering library for PHP that removes malicious code while preserving safe markup.

NotaryGo

A client and server implementation of The Update Framework (TUF) for securing software distribution and updates.

CSS-KeyloggingCSS

Chrome extension and Express server demonstrating a CSS-based keylogging attack on password inputs.

svix-webhooksRust

An open-source webhooks service that handles deliverability, retries, and security with a single API call.