Most popular security repositories and open source projects

auth0-socketio-jwt

Authenticate socket.io incoming connections with JWTs

207   1108   1108  

best-practices-badge

🏆Open Source Security Foundation (OpenSSF) Best Practices Badge (form...

205   1108   1108  

iOS

Most usable tools for iOS penetration testing

177   1108   1108  

Passhunt

Passhunt is a simple tool for searching of default credentials for net...

179   1105   1105  

awesome-he

✨ Awesome - A curated list of amazing Homomorphic Encryption librarie...

87   1105   1105  

writeups

180   1104   1104  

Goby

Attack surface mapping

136   1099   1099  

fleet

A flexible control server for osquery fleets

273   1096   1096  

toxic

A Tox-based instant messaging and video chat client

156   1095   1095  

envchain

Environment variables meet macOS Keychain and gnome-keyring <3

32   1092   1092  

usbrip

Tracking history of USB events on GNU/Linux

109   1090   1090  

cs-suite

Cloud Security Suite - One stop tool for auditing the security posture...

212   1087   1087  

repo-security-scanner

CLI tool that finds secrets accidentally committed to a git repo, eg p...

86   1086   1086  

cloudformation-guard

Guard offers a policy-as-code domain-specific language (DSL) to write...

150   1086   1086  

awesome-ethereum-security

A curated list of awesome Ethereum security references

163   1082   1082  

osv.dev

Open source vulnerability DB and triage service.

122   1077   1077  

labs

Vulnerability Labs for security analysis

460   1077   1077  

binserve

A fast production-ready static web server with TLS (HTTPS), routing, h...

68   1077   1077  

conpot

ICS/SCADA honeypot

385   1076   1076  

jazzer

Coverage-guided, in-process fuzzing for the JVM

147   1076   1076  

xiringuito

SSH-based "VPN for poors"

49   1071   1071  

cryptocat

Secure chat software for your computer.

205   1064   1064  

security-cheatsheets

🔒 A collection of cheatsheets for various infosec tools and topics.

545   1056   1056  

VHostScan

A virtual host scanner that performs reverse lookups, can be used with...

230   1056   1056  

vscan

开源、轻量、快速、跨平台 的网站漏洞扫描工具，帮助您快速检测网站安全隐...

192   1053   1053  

repokid

AWS Least Privilege for Distributed, High-Velocity Deployment

103   1050   1050  

jok3r

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

255   1050   1050  

uTox

µTox the lightest and fluffiest Tox client

196   1049   1049  

secureum-mind_map

Central Repository for the Epoch 0 coursework and quizzes. Contains al...

220   1039   1039  

amicontained

Container introspection tool. Find out what container runtime is being...

70   1036   1036  

local-php-security-checker

PHP security vulnerabilities checker

72   1034   1034  

homebridge-unifi-protect

:video_camera: Complete HomeKit integration for UniFi Protect with ful...

71   1032   1032  

auth

A GitHub Action for authenticating to Google Cloud.

214   1031   1031  

metta

An information security preparedness tool to do adversarial simulation...

152   1030   1030  

gsocket

Connect like there is no firewall. Securely.

96   1030   1030  

webauthn

WebAuthn (FIDO2) server library written in Go

161   1030   1030  

filterbypass

Browser's XSS Filter Bypass Cheat Sheet

215   1025   1025  

ssh-mitm

ssh mitm server for security audits supporting public key authenticati...

108   1025   1025  

bypass-firewalls-by-DNS-history

Firewall bypass script based on DNS history records. This script will...

253   1024   1024  

bylibrary

白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目

341   1024   1024  

mitaka

A browser extension for OSINT search

133   1024   1024  

terraform-aws-secure-baseline

Terraform module to set up your AWS account with the secure baseline c...

337   1021   1021  

featherduster

An automated, modular cryptanalysis tool; i.e., a Weapon of Math Destr...

141   1020   1020  

code6

码小六 - GitHub 代码泄露监控系统

195   1014   1014  

sleepy-puppy

Sleepy Puppy XSS Payload Management Framework

149   1013   1013  

pyrdp

RDP monster-in-the-middle (mitm) and library for Python with the abili...

211   1013   1013  

IdentityServer

The most flexible and standards-compliant OpenID Connect and OAuth 2.x...

220   1012   1012  

Application-Gateway

JANUSEC Application Gateway provides secure access, including reverse...

262   1008   1008  

matano

Open source cloud-native security lake platform (SIEM alternative) for...

44   1007   1007  

invisible_captcha

:honey_pot: Unobtrusive and flexible spam protection for Rails apps

59   1004   1004