Top 3063 security open source projects

WordPress plugin that provides instant switching between user accounts.

OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.

Protect pages from access with a universal username/password

Run an isolated instance of a tor network in Docker containers

Generate a CAA policy

An app showcase of some techniques to improve Android app security

WALKOFF-enabled applications. #nsacyber

Security issues in Ethereum demonstrated in mocha tests. The fix is also demonstrated

Deploy a Cloudflare Worker to sanely score users' new passwords with zxcvbn AND check for matches against haveibeenpwned's 7.8+ billion breached accounts

Sources for the GrapheneOS website.

A collection of awesome videos, articles, books and resources about ARM exploitation.

nray distributed port scanner

Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.

.NET Standard 1.3 implementation of the Noise Protocol Framework (revision 33 of the spec)

GUI based offensive penetration testing tool (Open Source)

Minimal code to connect to a CEF debugger.

Node.js rate limit requests by key with atomic increments in single process or distributed environment.

🛡 I2P: End-to-End encrypted and anonymous Internet

Symfony Password strength and blacklisting validator bundle

Play2 module for rate limiting, based on token bucket algorithm

Bash glue to encrypt and hide files

An IRC based tool for testing the capabilities of a botnet.

A proof of concept to show how easy it is to get coarse location of the user without using Core Location

Security checks pack for Burp Suite

Secure storage for personal records built to comply with GDPR

XRay is a tool for recon, mapping and OSINT gathering from public networks.

A framework for pentesters that facilitates evil twin attacks as well as exploiting other wifi vulnerabilities

A Symfony demo application with basic user management

Generate seccomp profiles from go binaries

Assesses CPU security of embedded devices. #nsacyber

Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website

Signature Transparency Log

Secure wrapper for accessing HTTPS resources with file_get_contents() for PHP 5.3+.

IPv6Tools is a robust modular framework that enables the ability to visually audit an IPv6 enabled network.

Extra rules for https://github.com/StevenBlack/hosts project

Collaborative forensic timeline analysis

GitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)

Curated List of Privacy Respecting Services and Software

License: Mozilla Public License 2.0

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

An open-source, privacy-enhancing web browser for iOS, utilizing the Tor anonymity network

Interactive CTF Exploration Tool

Role and Attribute based Access Control for Node.js

Argus static analysis framework

Enhanced account switching for AWS, supports Yubikey as MFA source

Self-contained API keys via cryptographic signatures

Comae Hibernation File Decompressor

Recieive telegram notfications when user connect to a server

Detecting Lateral Movement with Machine Learning

A PHP dependency vulnerabilities scanner based on the Security Advisories Database.

Send encrypted PGP messages with one click

OpenBSM open audit implementation

Free cross-platform password manager compatible with KeePass

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

Indicator Extractor

🤙 Security Trivia that rare people know.

A new Symfony user bundle

A binary analysis framework