Most popular security repositories and open source projects

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

rizin

UNIX-like reverse engineering framework and command-line toolset.

415   3055   3055  

dockle

Container Image Linter for Security, Helping build the Best-Practice D...

153   3050   3050  

itsdangerous

Safely pass trusted data to untrusted environments and back.

228   3041   3041  

hardentools

Hardentools simply reduces the attack surface on Microsoft Windows com...

254   3040   3040  

express-gateway

A microservices API Gateway built on top of Express.js

355   3023   3023  

jasypt-spring-boot

Jasypt integration for Spring boot

533   3015   3015  

dumb-password-rules

A compilation of sites with dumb password rules.

303   3013   3013  

neo

The multi-threaded frontend framework for ultra-fast, desktop-like ent...

166   3007   3007  

Portus

Authorization service and frontend for Docker registry (v2)

466   2998   2998  

inspec

InSpec: Auditing and Testing Framework

686   2997   2997  

LogonTracer

Investigate malicious Windows logon by visualizing and analyzing Windo...

475   2995   2995  

tcpdump

the TCPdump network dissector

887   2992   2992  

echidna

Ethereum smart contract fuzzer

406   2974   2974  

badssl.com

:lock: Memorable site for testing clients against bad SSL configs.

200   2962   2962  

zizmor

Static analysis for GitHub Actions

104   2959   2959  

kube-score

Kubernetes object analysis with recommendations for improved reliabili...

190   2958   2958  

Harden-Windows-Security

Harden Windows Safely, Securely using Official Supported Microsoft met...

233   2954   2954  

nanos

A kernel designed to run one and only one application in a virtualized...

148   2941   2941  

awesome-nodejs-security

Awesome Node.js Security resources

264   2909   2909  

ContainerSSH

ContainerSSH: Launch containers on demand

93   2907   2907  

openrasp

🔥Open source RASP solution

621   2900   2900  

streamalert

StreamAlert is a serverless, realtime data analysis framework which em...

329   2881   2881  

timesketch

Collaborative forensic timeline analysis

619   2856   2856  

user.js

user.js -- Firefox configuration hardening

238   2849   2849  

edb-debugger

edb is a cross-platform AArch32/x86/x86-64 debugger.

336   2843   2843  

OpenSC

Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend

784   2817   2817  

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timel...

241   2794   2794  

RE-iOS-Apps

A completely free, open source and online course about Reverse Enginee...

368   2792   2792  

Penetration-Testing-Tools

A collection of more than 170+ tools, scripts, cheatsheets and other l...

536   2785   2785  

GScan

本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Check...

630   2753   2753  

bless

Repository for BLESS, an SSH Certificate Authority that runs as a AWS...

227   2752   2752  

coreruleset

OWASP CRS (Official Repository)

415   2738   2738  

Awesome-Cybersecurity-Handbooks

A huge chunk of my personal notes since I started playing CTFs and wor...

365   2735   2735  

orbot-android

The Github home of Orbot: Tor on Android (Also available on gitlab!)

396   2733   2733  

filterlists

Collection of blocklists to fill in the gaps

76   2728   2728  

cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, ap...

243   2716   2716  

kubernetes-security-best-practice

Kubernetes Security - Best Practice Guide

249   2711   2711  

mcp-containers

Metorial MCP Containers - Containerized versions of hundreds of MCP se...

286   2710   2710  

bundler-audit

Patch-level verification for Bundler

237   2708   2708  

block

Let's make an annoyance free, better open internet, altogether!

202   2694   2694  

glauth

A lightweight LDAP server for development, home use, or CI

232   2685   2685  

nginx-tuning

NGINX tuning for best performance

403   2678   2678  

APT_REPORT

Interesting APT Report Collection And Some Special IOCs

531   2672   2672  

safe-rules

详细的C/C++编程规范指南,由360质量工程部编著,适用于桌面、服务端及嵌入...

310   2667   2667  

100-redteam-projects

Projects for security students

407   2661   2661  

memguard

Software sandbox for storage of sensitive information in memory.

131   2659   2659  

Scumblr

Web framework that allows performing periodic syncs of data sources an...

318   2646   2646  

Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for...

517   2620   2620  

pwndoc

Pentest Report Generator

473   2615   2615  

PasswordPusher

🔐 Securely share sensitive information with automatic expiration &...

413   2611   2611