1198 Open Source Security Software Projects
Free and open source security code projects including engines, APIs, generators, and tools.
Hack With Github Awesome Hacking 48663 ⭐
A collection of various awesome lists for hackers, pentesters and security researchers
The Book Of Secret Knowledge 58450 ⭐
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
Mitmproxy 25822 ⭐
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Payloadsallthethings 33824 ⭐
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stevenblack Hosts 19823 ⭐
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
API Security Checklist 16520 ⭐
Checklist of the most important security countermeasures when designing, testing, and releasing your API
Setup Ipsec Vpn 17245 ⭐
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
Cheatsheetseries 19621 ⭐
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Nginx Admins Handbook 12510 ⭐
How to improve NGINX performance, security, and other important things.
Google Tink 12024 ⭐
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
Docker Labs 10536 ⭐
This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome.
Ory Hydra 12059 ⭐
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
Gravitational Teleport 10913 ⭐
Certificate authority and access plane for SSH, Kubernetes, web apps, databases and desktops
Openzeppelin Contracts 15406 ⭐
OpenZeppelin Contracts is a library for secure smart contract development.
The Practical Linux Hardening Guide 8816 ⭐
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
Mailpile 8551 ⭐
A free & open modern, fast email client with user-friendly encryption and privacy features
Vuls 8926 ⭐
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Bettercap 10864 ⭐
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
Test Your Sysadmin Skills 8734 ⭐
A collection of Linux Sysadmin Test Questions and Answers. Test your knowledge and skills in different fields with these Q/A.
Awesome Security 7703 ⭐
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Dompurify 8335 ⭐
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
Wpscanteam Wpscan 6343 ⭐
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
My Arsenal Of Aws Security Tools 6624 ⭐
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Trivy 10174 ⭐
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Cleverhans 5389 ⭐
An adversarial example library for constructing attacks, building defenses, and benchmarking both
Capstone 5424 ⭐
Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings.
Moloch 5031 ⭐
Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.
Nishang 6061 ⭐
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
How To Secure Anything 6731 ⭐
How to systematically secure anything: a repository about security engineering
Onionshare 5025 ⭐
Securely and anonymously share files, host websites, and chat with friends using the Tor network
Security_monkey 4246 ⭐
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
Unicorn Engine Unicorn 5011 ⭐
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, X86)
Processhacker 6492 ⭐
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.
Docker Ipsec Vpn Server 4430 ⭐
Docker image to run an IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
Valet 3725 ⭐
Valet lets you securely store data in the iOS, tvOS, or macOS Keychain without knowing a thing about how the Keychain works. It’s easy. We promise.
Tutanota 4399 ⭐
Tutanota is an email service with a strong focus on security and privacy that lets you encrypt emails, contacts and calendar entries on all your devices.
Zeek 4235 ⭐
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
W3af 3829 ⭐
w3af: web application attack and audit framework, the open source web vulnerability scanner.