security

A fast, parallel test case minimization tool.

Modern Python library for HTTP security headers with safe defaults, configurable presets, and first-class ASGI/WSGI middleware (FastAPI, Django, Flask...

🛡 Automatically configure your app to follow OWASP security patterns and principles by using HTTP Headers and Middleware

A laboratory for learning secure web and mobile development in a practical manner.

A collective list of public APIs for use in security. Contributions welcome

Vulnerability Patterns Detector for C# and VB.NET

Monitor your local neighbourhood's bluetooth activity

secureCodeBox (SCB) - continuous secure delivery out of the box

:key: Hash type identifier (CLI & lib)

XToolBox - A collection of 150+ Windows 10/11 optimization and tweaking apps!

Apache Block Bad Bots, (Referer) Spam Referrer Blocker, Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites, Wordpress Theme Detector...

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primari...

Privacy-first, end-to-end encrypted Mail, Pages, Drive, and Calendar.

Free Elasticsearch security plugin and Kibana security plugin: super-easy Kibana multi-tenancy, Encryption, Authentication, Authorization, Auditing

Awesome Python Security resources 🕶🐍🔐

A security scanner for your LLM agentic workflows

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

Pytools: Some useful tools written by pure python.

Generate links that users can use to submit messages encrypted with your public key.

The LinuxBoot project is working to enable Linux to replace your firmware on all platforms.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Ansible Role - Security

🔑 Free Offline-first Password Manager

Open-Source Security Architecture | 开源安全架构

Infosec Wordlists and more.

Platform-Agnostic Security Tokens implementation in GO (Golang)

一个方便安全研究人员获取每日安全日报的爬虫和推送程序，目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区以及绿盟、腾讯玄...

Pure PHP polyfill for ext/sodium

Simple Android PDF viewer based on pdf.js and content providers. The app doesn't require any permissions. The PDF stream is fed into the sandboxed Web...

(Formerly Solium) Code quality & Security Linter for Solidity

Project Calico's per-host agent Felix, responsible for programming routes and security policy.

A vulnerable version of Rails that follows the OWASP Top 10

Dangerously fast DNS/network/port scanner

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

A stupid game for learning about containers, capabilities, and syscalls.

Open Source Tripwire®

[DEPRECATED] Detect threats with log data and improve cloud security posture

The Hitchhiker’s Guide to Online Anonymity

HULK DoS tool ported to Go with some additional features.

A memory scanning evasion technique

Run programs on linux with selectively restricted permissions.

🦄🔒 Awesome list of secrets in environment variables 🖥️

ZAP Add-ons

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Java RMI Vulnerability Scanner

NetCat for Windows

Digital Forensics Investigation Platform

OpenZeppelin Contracts written in Cairo for Starknet, a decentralized ZK Rollup

Smart Contract Weakness Classification and Test Cases

Automated HTTP Request Repeating With Burp Suite