Security

UICKeyChainStoreObjective-C

Forks235

Last commit10 months ago

A simple wrapper for Apple's Keychain APIs on iOS, watchOS, tvOS, and macOS, making secure storage as easy as NSUserDefaults.

#keychain#ios#biometric-authentication

#microsoft-office#libreoffice#windows-security

Forks378

Last commit2 years ago

HardenToolsGo

A Windows security tool that reduces the attack surface by disabling risky features in Windows, Office, Adobe Reader, and LibreOffice.

Forks258

Last commit8 months ago

Kube-ScoreGo

Static code analysis tool for Kubernetes YAML and Helm charts that provides recommendations to improve reliability and security.

#helm#devops#reliability

Express GatewayJavaScript

Forks197

Last commit14 days ago

A microservices API gateway built on Node.js and Express.js for securing and exposing services in cloud-native architectures.

#api-gateway#expressjs#express-gateway

Forks354

Dumb Password RulesNunjucks

A crowdsourced collection of websites with frustrating and counterproductive password requirements.

#hacktoberfest#passwords#password-policies

#keychain#ios#data-protection

Forks304

Last commit16 days ago

keychain-swiftSwift

A Swift library providing simple helper functions for securely storing text and data in the iOS/macOS Keychain.

Forks363

#hacktoberfest#api#communicate-passwords

passwordPusherRuby

Securely share passwords, text, files, and URLs via self-destructing links with full audit logs.

#php-security#waf#web-security

Forks445

Last commit8 hours ago

OpenRASPC++

Open source Runtime Application Self-Protection (RASP) solution that integrates security directly into application servers via instrumentation.

#expression-parser#policy-engine#macros

Forks621

Last commit6 months ago

cel-goGo

A non-Turing complete expression language for fast, safe, and portable evaluation with C-like syntax.

#team-collaboration#progressive-web-app#end-to-end-encryption

Forks273

Last commit8 days ago

PadlockJavaScript

A modern, open-source password manager for individuals and teams with end-to-end encryption and self-hosting capabilities.

Forks264

#keychain#ios#authentication

LocksmithSwift

A protocol-oriented Swift library for interacting with the iOS/macOS keychain with type-safe results.

Roave Security Advisories

Forks269

Last commit2 years ago

A Composer package that blocks installation of PHP dependencies with known security vulnerabilities.

#supply-chain-security#composer#devops

#iot#cryptography-api#rtos

Forks111

Last commit15 hours ago

wolfsslC

A lightweight, portable TLS/SSL library written in ANSI C for embedded systems, RTOS, and cloud applications.

#data-list#domain-names#dns

Forks968

Last commit11 hours ago

The Public Suffix ListGo

A comprehensive list of all known public suffixes (like .com, .co.uk) under which internet users can directly register domain names.

A curated list of SSH applications, libraries, and resources for developers and system administrators.

#mosh#devops#ssh-key

#lambda#ssh-security#ssh-certificate-authority

Forks173

Last commit2 years ago

blessPython

An SSH Certificate Authority that runs as an AWS Lambda function for ephemeral, IAM-controlled SSH access.

Forks228

#cybersecurity-labs#randomization#cybok

SecGenPython

A framework that generates randomly vulnerable virtual machines for security education, labs, and CTF events.

#dependency-checker#patch-management#bundler-audit

Forks328

Last commit7 days ago

bundle-auditRuby

A security audit tool for Ruby projects that checks Gemfile.lock for vulnerable gem versions and insecure sources.

Stars2.7k

Forks245

Last commit4 months ago

memguardGo

A Go library that creates a secure software enclave to protect sensitive data in memory from exposure and attacks.

#cold-boot-protection#crypto#data-protection

Stars2.7k

Forks133

Last commit5 days ago

AstraPython

An automated security testing framework for REST APIs that detects vulnerabilities like SQL injection, XSS, and CSRF.

#owasp#web-security#sdlc

Forks412

#dart#keepass#hacktoberfest

AuthPassDart

An open-source password manager built with Flutter, compatible with KeePass 2.x (KDBX 3 and KDBX 4) across all major platforms.

#httpclient#authentication#jwt

Forks272

Last commit7 days ago

angular2-jwtTypeScript

An Angular HTTP interceptor library for automatically attaching JSON Web Tokens (JWTs) to HttpClient requests.

#privacy-compliance#code-security#data-flow-analysis

Forks477

Last commit2 months ago

BearerGo

Static application security testing (SAST) tool that scans source code to discover, filter, and prioritize security and privacy risks.

#privacy-compliance#code-security#data-flow-analysis

Forks143

Last commit9 hours ago

BearerGo

A static application security testing (SAST) tool that scans source code to discover, filter, and prioritize security and privacy risks.

#hacktoberfest#kubernetes#security-scanning

Forks143

Last commit9 hours ago

KICSOpen Policy Agent

KICS is an open-source static analysis tool that finds security vulnerabilities, compliance issues, and misconfigurations in Infrastructure as Code.

KrakenD API Gateway (.5k)Go

Forks364

Last commit2 days ago

An ultra-high performance, stateless, declarative API Gateway written in Go for microservices and secure communications.

#api-gateway#reverse-proxy#high-performance

#kms#devops#secrets-management

Forks493

Last commit14 days ago

chamberGo

A CLI tool for managing secrets using AWS SSM Parameter Store and Secrets Manager as backends.

#ios#action-extension#retired-project

Forks183

Last commit2 months ago

1Password

A retired iOS action extension that enabled 1Password to fill credentials and other data into third-party apps.

#bot-protection#service-provider#composer

Forks312

Last commit4 years ago

captchaPHP

A Laravel service provider for generating and validating CAPTCHA images, including math-based challenges.

Elastic Detection RulesPython

Forks463

Last commit9 days ago

A public repository for developing, testing, and maintaining detection rules for Elastic Security's SIEM, with tools for Detections as Code.

#siem#security-automation#security

#security-training#social-engineering#self-hosted-security

Forks646

Last commit10 hours ago

King PhisherPython

A phishing campaign toolkit for simulating real-world attacks to test and promote user security awareness.

#spring-mvc#oauth#web-security

Forks578

Last commit13 days ago

pac4jJava

A comprehensive security framework for Java applications, supporting authentication, authorization, and integration with multiple protocols and frameworks.

#web-security#source-code-extraction#repository-recovery

Forks708

Last commit7 hours ago

git-dumperPython

A Python tool to dump a git repository from a website, even when directory listing is disabled.

#microsoft#peachpie#netstandard

Forks296

Last commit1 month ago

PeachPieC#

A modern PHP compiler and runtime for .NET/.NET Core, enabling PHP code to run within the .NET ecosystem.