Most popular security repositories and open source projects

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, o...

5957   66889   66889  

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and secu...

7688   49459   49459  

x64dbg

An open-source x64/x32 debugger for windows.

1796   38257   38257  

caddy

Fast, multi-platform web server with automatic HTTPS

2998   37343   37343  

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and...

9529   34864   34864  

cs-video-courses

List of Computer Science courses with video lectures.

5003   33627   33627  

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration tes...

3227   26055   26055  

algo

Set up a personal VPN in the cloud

2031   24618   24618  

hosts

🔒 Consolidating and extending hosts files from several well-curated so...

1779   20076   20076  

security-guide-for-developers

Security Guide for Developers (实用性开发人员安全须知)

1545   20065   20065  

CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collecti...

2821   19911   19911  

macOS-Security-and-Privacy-Guide

Guide to securing and improving privacy on macOS

1353   18862   18862  

osquery

SQL powered operating system instrumentation, monitoring, and analytic...

2264   18667   18667  

setup-ipsec-vpn

Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPs...

4834   17417   17417  

API-Security-Checklist

Checklist of the most important security countermeasures when designin...

2033   16998   16998  

matomo

Liberating Web Analytics. Star us on Github? +1. Matomo is the leading...

2303   16333   16333  

openzeppelin-contracts

OpenZeppelin Contracts is a library for secure smart contract developm...

8082   16138   16138  

radare2

UNIX-like reverse engineering framework and command-line toolset

2635   15828   15828  

nginxconfig.io

⚙️ NGINX config generator on steroids 💉

1112   15262   15262  

nginx-admins-handbook

How to improve NGINX performance, security, and other important things...

1015   12547   12547  

docker-slim

DockerSlim (docker-slim): Don't change anything in your Docker contain...

462   12420   12420  

hacker101

Source code for Hacker101.com - a free online web and mobile security...

2427   12344   12344  

hydra

OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cl...

1184   12304   12304  

How-To-Secure-A-Linux-Server

An evolving how-to guide for securing a Linux server.

804   12144   12144  

keepassxc

KeePassXC is a cross-platform community-driven port of the Windows app...

987   12109   12109  

tink

Tink is a multi-language, cross-platform, open source library that pro...

1067   12090   12090  

cilium

eBPF-based Networking, Security, and Observability

1569   11837   11837  

authelia

The Single Sign-On Multi-Factor portal for web apps

617   11819   11819  

cutter

Free and Open Source Reverse Engineering Platform powered by rizin

917   11350   11350  

teleport

Certificate authority and access plane for SSH, Kubernetes, web apps,...

1063   11082   11082  

bettercap

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnais...

1125   10970   10970  

trivy

Scanner for vulnerabilities in container images, file systems, and Git...

1023   10910   10910  

keeweb

Free cross-platform password manager compatible with KeePass

952   10717   10717  

labs

This is a collection of tutorials for learning how to use Docker with...

5197   10597   10597  

wifiphisher

The Rogue Access Point Framework

2332   10515   10515  

secguide

面向开发人员梳理的代码安全指南

1498   10417   10417  

routersploit

Exploitation Framework for Embedded Devices

2149   9998   9998  

sops

Simple and flexible tool for managing secrets

582   9624   9624  

zaproxy

The OWASP ZAP core project

1835   9236   9236  

gitleaks

Scan git repos (or files) for secrets using regex and entropy 🔑

846   9143   9143  

javascript-obfuscator

A powerful obfuscator for JavaScript and Node.js

1065   9042   9042  

vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPr...

1002   8976   8976  

the-practical-linux-hardening-guide

This guide details creating a secure Linux production system. OpenSCAP...

525   8903   8903  

test-your-sysadmin-skills

A collection of Linux Sysadmin Test Questions and Answers. Test your k...

1105   8895   8895  

helmet

Help secure Express apps with various HTTP headers

350   8780   8780  

social-analyzer

API, CLI & Web App for analyzing & finding a person's profile across +...

626   8667   8667  

IdentityServer4

OpenID Connect and OAuth 2.0 Framework for ASP.NET Core

3450   8591   8591  

Mailpile

A free & open modern, fast email client with user-friendly encryption...

1046   8560   8560  

DOMPurify

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HT...

544   8466   8466  

hacker-roadmap

A collection of hacking tools, resources and references to practice et...

1031   8143   8143