Top 3063 security open source projects

A light script for you to setup shadowsocks-libev server with high-speed connections and newest powerful features

Create the smallest and secured golang docker image based on scratch

An open-source, standards-compliant, and flexible OpenID Connect and OAuth 2.x framework for ASP.NET Core

Deception based detection techniques mapped to the MITRE’s ATT&CK framework

A collection of kubernetes-related diagrams

UNIX-like reverse engineering framework and command-line toolset

Cameradar hacks its way into RTSP videosurveillance cameras

Store SSH keys in the Secure Enclave

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Call for WPA3 - what's wrong with WPA2 security and how to fix it

Firefox extension to automatically open websites in a container

Two Factor Authentication Java code implementing the Time-based One-time Password Algorithm

A shared preference implementation for confidential data in Android. Per default uses AES-GCM, BCrypt and HKDF as cryptographic primitives. Uses the concept of device fingerprinting combined with optional user provided passwords and strong password hashes.

The source for this module has moved to the Helmet repository.

The Leading Security Assessment Framework for Android.

Shaming sites with dumb password rules.

Penetration testing and auditing toolkit for Android apps.

Firefox's Lockwise app for iOS

HackerOne "in scope" domains

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

Fast Advanced Spam Analysis Tool

检测当前app是否运行在VirtualApp虚拟机中

Fuzz your Rust code with Google-developed Honggfuzz !

Phishing on Twitter

A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the attacker toward your honeypots

DNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Security scanner for your Terraform code

Kubernetes Security - Best Practice Guide

Fast and powerful SSL/TLS scanning library.

Passbolt CE Backend, a JSON API written with Cakephp

An Ansible playbook to provision a host for penetration testing and CTF challenges

dynamic crawler for web vulnerability scanner

CLI to integrate continuous fuzzing with Fuzzit

AWS Identity and Access Management Visualizer and Anomaly Finder

A zero-configuration (IoT) firewall

📦 The fastest and simplest packet manipulation lib for Python

A modern and easy-to-use cryptographic library for .NET Core based on libsodium

Fast, secure JSON library with tight ZIO integration.

Wazuh - Kibana plugin

LibScout: Third-party library detector for Java/Android apps

An OSINT tool to find contacts in order to report security vulnerabilities.

Binary Analysis Next Generation (BANG)

The RPKI-to-Router server used at Cloudflare

Awesome Java Security Resources 🕶☕🔐

A microservices API Gateway built on top of Express.js

CTF竞赛权威指南

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Wazuh - Docker containers

📋 A simple website launch checklist to keep track of the most important enrichment possibilities for a website.

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

🎯 Open Redirect Payload List

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.

The premier osquery fleet manager.

LSpider 一个为被动扫描器定制的前端爬虫

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

Bromite a Chromium fork with ad blocking and privacy enhancements; take back your browser!

Have fun injecting SQL into a Ruby on Rails application!

Surveillance Detection and Mapping App

Active Directory password filter featuring breached password checking and custom complexity rules