The Top 1,715 Security Open Source Projects

Awesome Open Source

Awesome Open Source

Combined Topics

The Top 1,715 Security Open Source Projects

Categories > Security > Security

Awesome Hacking ⭐41,587

A collection of various awesome lists for hackers, pentesters and security researchers

X64dbg ⭐35,909

An open-source x64/x32 debugger for windows.

The Book Of Secret Knowledge ⭐35,188

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Caddy ⭐31,019

Fast, multi-platform web server with automatic HTTPS

Mitmproxy ⭐20,747

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Set up a personal VPN in the cloud

Security Guide For Developers ⭐19,376

Security Guide for Developers (实用性开发人员安全须知)

Payloadsallthethings ⭐19,284

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Macos Security And Privacy Guide ⭐17,474

Guide to securing and improving privacy on macOS

Osquery ⭐17,367

SQL powered operating system instrumentation, monitoring, and analytics.

Hosts ⭐16,491

Consolidating and extending hosts files from several well-curated sources. You can optionally pick extensions to block pornography, social media, and other categories.

Cs Video Courses ⭐15,477

List of Computer Science courses with video lectures.

Api Security Checklist ⭐15,184

Checklist of the most important security countermeasures when designing, testing, and releasing your API

Setup Ipsec Vpn ⭐14,698

Scripts to build your own IPsec VPN server, with IPsec/L2TP and Cisco IPsec on Ubuntu, Debian and CentOS

Cheatsheetseries ⭐14,207

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Radare2 ⭐13,480

UNIX-like reverse engineering framework and command-line toolset

Nginx Admins Handbook ⭐11,868

How to improve NGINX performance, security, and other important things.

Hacker101 ⭐11,655

Source code for Hacker101.com - a free online web and mobile security class.

Nginxconfig.io ⭐11,240

⚙️ NGINX config generator on steroids 💉

Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.

How To Secure A Linux Server ⭐10,708

An evolving how-to guide for securing a Linux server.

OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.

This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome.

Keeweb ⭐9,386

Free cross-platform password manager compatible with KeePass

Wifiphisher ⭐9,384

The Rogue Access Point Framework

Docker Slim ⭐9,383

DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

Openzeppelin Contracts ⭐8,775

OpenZeppelin Contracts is a library for secure smart contract development.

Teleport ⭐8,774

Secure Access for Developers that doesn't get in the way.

Routersploit ⭐8,692

Exploitation Framework for Embedded Devices

Cutter ⭐8,585

Free and Open Source Reverse Engineering Platform powered by radare2

The Practical Linux Hardening Guide ⭐8,409

This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).

Mailpile ⭐8,259

A free & open modern, fast email client with user-friendly encryption and privacy features

Bettercap ⭐8,158

The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and MITM attacks.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Zaproxy ⭐7,973

The OWASP ZAP core project

Helmet ⭐7,697

Help secure Express apps with various HTTP headers

Identityserver4 ⭐7,362

OpenID Connect and OAuth 2.0 Framework for ASP.NET Core

Test Your Sysadmin Skills ⭐6,997

A collection of Linux Sysadmin Test Questions and Answers. Test your knowledge and skills in different fields with these Q/A.

Cilium ⭐6,990

eBPF-based Networking, Security, and Observability

Gitleaks ⭐6,757

Scan git repos for secrets using regex and entropy 🔑

Awesome Security ⭐6,268

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Dompurify ⭐6,194

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

Keychainaccess ⭐5,988

Simple Swift wrapper for Keychain that works on iOS, watchOS, tvOS and macOS.

Brakeman ⭐5,938

A static analysis security vulnerability scanner for Ruby on Rails applications

Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

Oss Fuzz ⭐5,685

OSS-Fuzz - continuous fuzzing of open source software.

Simple and flexible tool for managing secrets

Fail2ban ⭐5,585

Daemon to ban hosts that cause multiple authentication errors

Graylog2 Server ⭐5,536

Free and open source log management

Javascript Obfuscator ⭐5,512

A powerful obfuscator for JavaScript and Node.js

Awesome Web Security ⭐5,501

🐶 A curated list of Web Security materials and resources.

Opensnitch ⭐5,480

OpenSnitch is a GNU/Linux port of the Little Snitch application firewall

A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI

Openvpn ⭐5,413

OpenVPN is an open source VPN daemon

Spring Security ⭐5,412

Spring Security

Universal Radio Hacker: Investigate Wireless Protocols Like A Boss

Wpscan ⭐5,320

WPScan is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test the security of their WordPress websites.

My Arsenal Of Aws Security Tools ⭐5,286

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Gophish ⭐5,213

Open-Source Phishing Toolkit

Awesome Ctf ⭐5,176

A curated list of CTF frameworks, libraries, resources and softwares

Yubikey Guide ⭐5,113

Guide to using YubiKey for GPG and SSH

Pyre Check ⭐5,045

Performant type-checking for python.

Android Security Awesome ⭐4,998

A collection of android security related resources

System Bus Radio ⭐4,983

Transmits AM radio on computers without radio transmitting hardware.

Dirsearch ⭐4,901

Web path scanner

Gitrob ⭐4,884

Reconnaissance tool for GitHub organizations

Cleverhans ⭐4,839

An adversarial example library for constructing attacks, building defenses, and benchmarking both

Kubernetes clusters for the hobbyist.

Cryptomator ⭐4,745

Multi-platform transparent client-side encryption of your files in the cloud

Damn Vulnerable Web Application (DVWA)

Monero ⭐4,649

Monero: the secure, private, untraceable cryptocurrency

How To Secure Anything ⭐4,589

How to systematically secure anything: a repository about security engineering

Nmap - the Network Mapper. Github mirror of official SVN repository.

Nishang ⭐4,557

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Capstone ⭐4,556

Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.

Arkime ⭐4,483

Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Clusterfuzz ⭐4,381

Scalable fuzzing infrastructure.

An Efficient Enterprise-class Container Engine

Awesome Appsec ⭐4,334

A curated list of resources for learning about application security

Let's Encrypt client and ACME library written in Go

Security 101 For Saas Startups ⭐4,276

security tips for startups

Autosploit ⭐4,261

Automated Mass Exploiter

Onionshare ⭐4,227

Securely and anonymously share files, host websites, and chat with friends using the Tor network

Security_monkey ⭐4,076

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

Cloudmapper ⭐3,986

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

Unicorn ⭐3,930

Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)

Processhacker ⭐3,917

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

Awesome Threat Intelligence ⭐3,908

A curated list of Awesome Threat Intelligence resources

Smart Contract Best Practices ⭐3,880

A guide to smart contract security best practices

Awesome Incident Response ⭐3,833

A curated list of tools for incident response

Maltrail ⭐3,792

Malicious traffic detection system

Aquatone ⭐3,788

A Tool for Domain Flyovers

Quasar ⭐3,778

Remote Administration Tool for Windows

Golang security checker

✔️ Secure, simple key-value storage for Android

Docker Ipsec Vpn Server ⭐3,719

Docker image to run an IPsec VPN server, with IPsec/L2TP and Cisco IPsec

Tutanota ⭐3,599

Tutanota is an email client with a strong focus on security and privacy that lets you encrypt emails on all your devices.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

1-100 of 1,715 projects