Most popular security repositories and open source projects

ssh-mitm ssh-mitm Python

SSH-MITM - ssh audits made simple

1.4k 154 1.4k

otpauth hectorm JavaScript

One Time Password (HOTP/TOTP) library for Node.js, Deno, Bun and browsers.

1.4k 84 1.4k

Tongsuo Tongsuo-Project C

铜锁/Tongsuo is a Modern Cryptographic Primitives and Protocols Library

1.4k 246 1.4k

tailcall tailcallhq Rust

High Performance GraphQL Runtime

1.4k 256 1.4k

dockovpn dockovpn Shell

🔐 Out of the box stateless openvpn-server docker image which starts in less than 2 seconds

1.4k 277 1.4k

qtap qpoint-io C

Qtap: An eBPF agent that captures pre-encrypted network traffic, providing rich context about egress connections and their originating processes.

1.4k 52 1.4k

clairvoyance nikitastupin Python

Obtain GraphQL API schema even if the introspection is disabled

1.4k 127 1.4k

wrongsecrets OWASP Java

Vulnerable app with examples showing how to not use secrets

1.4k 547 1.4k

security-guard symfony PHP

Symfony Security Component - Guard

1.4k 10 1.4k

cross-platform-node-guide ehmicky JavaScript

📗 How to write cross-platform Node.js code

1.4k 77 1.4k

FiercePhish Raikia PHP

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sen...

1.4k 258 1.4k

secure-ios-app-dev felixgr

Collection of the most common vulnerabilities found in iOS applications

1.4k 105 1.4k

git-hound tillson Go

Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.

1.4k 202 1.4k

LME cisagov Shell

Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting,...

1.4k 140 1.4k

AdvBox advboxes Jupyter Notebook

Advbox is a toolbox to generate adversarial examples that fool neural networks in PaddlePaddle、PyTorch、Caffe2、MxNet、Keras、TensorFlow and Advbox c...

1.4k 267 1.4k

databunker securitybunker Go

Secure Vault for Customer PII/PHI/PCI/KYC Records

1.4k 90 1.4k

awesome-lists mthcht YARA

Awesome Security lists for SOC/CERT/CTI

1.4k 173 1.4k

mintotp susam Python

Minimal TOTP generator in 20 lines of Python

1.4k 93 1.4k

high-assurance-rust tnballo Rust

A free book about developing secure and robust systems software.

1.4k 39 1.4k

needle ReversecLabs Python

The iOS Security Testing Framework

1.4k 291 1.4k

security-cheatsheets andrewjkerr

🔒 A collection of cheatsheets for various infosec tools and topics.

1.4k 528 1.4k

awesome-vulnerable-apps vavkamil

Awesome Vulnerable Applications

1.4k 211 1.4k

oss-fuzz-gen google Python

LLM powered fuzzing via OSS-Fuzz.

1.4k 215 1.4k

Khepri geemion C++

Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++.

1.4k 193 1.4k

cloudformation-guard aws-cloudformation Rust

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Template...

1.4k 195 1.4k

starboard aquasecurity Go

Superseded by https://github.com/aquasecurity/trivy-operator

1.4k 199 1.4k

magisk-frida ViRb3 Shell

🔐 Run frida-server on boot with Magisk, always up-to-date

1.4k 168 1.4k

AIL-framework CIRCL Python

AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

1.4k 286 1.4k

rails-security-checklist eliotsykes Ruby

:key: Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

1.4k 93 1.4k

advertorch BorealisAI Jupyter Notebook

A Toolbox for Adversarial Robustness Research

1.4k 201 1.4k

flightsim alphasoc Go

A utility to safely generate malicious network traffic patterns and evaluate controls.

1.4k 145 1.4k

AutoBlue-MS17-010 3ndG4me Python

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

1.4k 330 1.4k

username-anarchy urbanadventurer Ruby

Username tools for penetration testing

1.4k 159 1.4k

Windows-Optimize-Harden-Debloat simeononsecurity PowerShell

Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to ind...

1.4k 95 1.4k

python_sec bit4woo

python安全和代码审计相关资料收集 resource collection of python security and code review

1.4k 324 1.4k

ctf-skills ljagiello Python

Agent skills for solving CTF challenges - web exploitation, binary pwn, crypto, reverse engineering, forensics, OSINT, and more

1.4k 187 1.4k

fuxi jeffzh3ng Python

Penetration Testing Platform

1.3k 371 1.3k

beagle yampelo Python

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

1.3k 149 1.3k

pdfrip mufeedvh Rust

A multi-threaded PDF password cracking utility equipped with commonly encountered password format builders and dictionary attacks.

1.3k 139 1.3k

cwe_checker fkie-cad Rust

cwe_checker finds vulnerable patterns in binary executables

1.3k 142 1.3k

best-practices-badge coreinfrastructure Ruby

🏆Open Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)

1.3k 225 1.3k

golang-tls denji

Simple Golang HTTPS/TLS Examples

1.3k 158 1.3k

php-casbin php-casbin PHP

An authorization library that supports access control models like ACL, RBAC, ABAC in PHP .

1.3k 136 1.3k

usbguard USBGuard C++

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use...

1.3k 151 1.3k