Most popular security repositories and open source projects

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

top25-parameter

For basic researches, top 25 vulnerability parameters that can be used...

226   1339   1339  

binaryalert

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

191   1338   1338  

DevSecOps

🔱 Collection and Roadmap for everyone who wants DevSecOps. Hope your...

266   1336   1336  

HummerRisk

HummerRisk 是云原生安全平台,包括混合云安全治理和容器云安全检测。

251   1334   1334  

opencve

CVE Alerting Platform

156   1331   1331  

rails-security-checklist

:key: Community-driven Rails Security Checklist (see our GitHub Issues...

97   1329   1329  

urlhunter

a recon tool that allows searching on URLs that are exposed via shorte...

110   1326   1326  

mutillidae

OWASP Mutillidae II is a free, open-source, deliberately vulnerable we...

433   1323   1323  

awesome-aws-security

Curated list of links, references, books videos, tutorials (Free or Pa...

297   1323   1323  

BinAbsInspector

BinAbsInspector: Vulnerability Scanner for Binaries

195   1318   1318  

wrongsecrets

Vulnerable app with examples showing how to not use secrets

446   1317   1317  

starboard

Moved to https://github.com/aquasecurity/trivy-operator

201   1315   1315  

SprayingToolkit

Scripts to make password spraying attacks against Lync/S4B, OWA & O365...

257   1314   1314  

flightsim

A utility to safely generate malicious network traffic patterns and ev...

144   1312   1312  

boopkit

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior priv...

145   1311   1311  

react-cool-starter

😎 🐣 A starter boilerplate for a universal web app with the best deve...

239   1310   1310  

AdvBox

Advbox is a toolbox to generate adversarial examples that fool neural...

257   1305   1305  

databunker

Secure Vault for Customer PII/PHI/PCI/KYC Records

83   1305   1305  

bc-csharp

BouncyCastle.NET Cryptography Library (Mirror)

486   1304   1304  

lunasec

LunaSec - Dependency Security Scanner that automatically notifies you...

158   1302   1302  

wp2static

WordPress static site generator for security, performance and cost ben...

247   1295   1295  

SwiftyRSA

RSA public/private key encryption in Swift

351   1290   1290  

hubcommander

A Slack bot for GitHub organization management -- and other things too

153   1289   1289  

keypatch

Multi-architecture assembler for IDA Pro. Powered by Keystone Engine.

352   1288   1288  

golang-tls

Simple Golang HTTPS/TLS Examples

153   1288   1288  

rustsec

RustSec API & Tooling

104   1286   1286  

container-security-checklist

Checklist for container security - devsecops practices

189   1285   1285  

w5

Security Orchestration, Automation and Response (SOAR) Platform. 安全...

195   1281   1281  

Spearmint

Testing, simplified. || An inclusive, accessibility-first GUI for gene...

180   1280   1280  

changeme

A default credential scanner.

254   1277   1277  

Flask-HTTPAuth

Simple extension that provides Basic, Digest and Token HTTP authentica...

228   1273   1273  

cfn_nag

Linting tool for CloudFormation templates

212   1273   1273  

ggshield

Find and fix 360+ types of hardcoded secrets and 70+ types of infrastr...

115   1271   1271  

BLUESPAWN

An Active Defense and EDR software to empower Blue Teams

169   1270   1270  

GitGot

Semi-automated, feedback-driven tool to rapidly search through troves...

197   1269   1269  

Damn-Vulnerable-GraphQL-Application

Damn Vulnerable GraphQL Application is an intentionally vulnerable imp...

203   1268   1268  

git-hound

Reconnaissance tool for GitHub code search. Scans for exposed API keys...

185   1267   1267  

needle

The iOS Security Testing Framework

293   1266   1266  

pocassist

全新的傻瓜式漏洞PoC测试框架

224   1264   1264  

log4j-scanner

log4j-scanner is a project derived from other members of the open-sour...

213   1263   1263  

intrigue-core

Discover Your Attack Surface!

271   1262   1262  

notes

Some public notes

83   1261   1261  

Seth

Perform a MitM attack and extract clear text credentials from RDP conn...

340   1261   1261  

PasswordPusher

🔐 An application to securely communicate passwords over the web. P...

265   1255   1255  

fuxi

Penetration Testing Platform

378   1252   1252  

stratus-red-team

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

132   1251   1251  

Windows-Optimize-Harden-Debloat

Enhance the security and privacy of your Windows 10 and Windows 11 dep...

91   1251   1251  

sudo_pair

Plugin for sudo that requires another human to approve and monitor pri...

49   1250   1250  

spring-boot

spring-boot 项目实践总结

474   1248   1248  

Interlace

Easily turn single threaded command line applications into a fast, mul...

179   1236   1236