C Security

Open-source C projects categorized as Security | Edit details

Top 23 C Security Projects

  • GitHub repo radare2

    UNIX-like reverse engineering framework and command-line toolset

    Project mention: That took a wild turn | reddit.com/r/ProgrammerHumor | 2021-04-15

    True story: there is a project called Radare2 (or r2) which recently has been forked as Rizin. The reasons for the fork were many, but one of the things they changed was renaming occurrences in code of words like "anal", "sex", etc.

  • GitHub repo OpenVPN

    OpenVPN is an open source VPN daemon

    Project mention: DN VPN Cheat Sheet | reddit.com/r/u_Chris_Talks_Football | 2021-09-20

    My VPN server uses Open VPN and it currently runs on a Synology NAS, but it used to run on a Raspberry Pi and that is what I would recommend. Others will recommend Wire Guard, and that is also a good option.

  • Nanos

    Run Linux Software Faster and Safer than Linux with Unikernels.

  • GitHub repo system-bus-radio

    Transmits AM radio on computers without radio transmitting hardware.

    Project mention: Computers should expose their internal workings as a 6th sense | news.ycombinator.com | 2021-08-29
  • GitHub repo capstone

    Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings. (by aquynh)

    Project mention: Capstone Disassembler Framework | news.ycombinator.com | 2021-03-05
  • GitHub repo processhacker

    A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

    Project mention: Potential Fix - for Civ6 Crash to Desktop on Ryzen CPU During End Turn | reddit.com/r/CivVI | 2021-08-04

    I've gotten the priority to stick by using Process Hacker. Once I had the game launched in full mode (I actually disable the launcher personally), I opened up process hacker, set CivVI to "Above Normal" priority, and selected the "Save for CivilizationVI.exe" option. On subsequent launches it kept the same priority.

  • GitHub repo Unicorn Engine

    Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, X86)

    Project mention: Unicorn – lightweight multi-platform, multi-architecture CPU emulator framework | news.ycombinator.com | 2021-09-11
  • GitHub repo OSSEC

    OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

    Project mention: Intrusion detection software? | reddit.com/r/selfhosted | 2021-09-22

    WAZUH (fork of OSSEC would be my first choice when it comes to Linux based HIDS (host based), and Snort or Suricata if you are looking for NIDS (network based). As well as Lynis for ensuring the setup of the host is as you intended.

  • Scout APM

    Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.

  • GitHub repo motion

    Motion, a software motion detector. Home page: https://motion-project.github.io/ (by Motion-Project)

    Project mention: Thanks wyze for not alerting me when a thief actually broke into our property. But yeah love the wind blowing the trees, bunny rabbits and nothing happening alerts. 👍 | reddit.com/r/wyzecam | 2021-09-08

    It is indeed annoying. My old jerry-rigged set up (Motion Project, old Android phone, and a 10 y.o. netbook) was able to filter blowing trees, clouds, birds, etc way better than my Wyzecam V3 can. As they say, if you want something done right, you gotta do it yourself, but until we get RTSP we can't do it ourselves.

  • GitHub repo Wazuh

    Wazuh - The Open Source Security Platform

    Project mention: Intrusion detection software? | reddit.com/r/selfhosted | 2021-09-22

    WAZUH (fork of OSSEC would be my first choice when it comes to Linux based HIDS (host based), and Snort or Suricata if you are looking for NIDS (network based). As well as Lynis for ensuring the setup of the host is as you intended.

  • GitHub repo honggfuzz

    Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

    Project mention: 60x speed-up of Linux “perf” | news.ycombinator.com | 2021-09-09

    Here's the libbfd-based code in case anyone would like to port it, it's basically addr2line.


  • GitHub repo Suricata

    Suricata git repository maintained by the OISF

    Project mention: Intrusion detection software? | reddit.com/r/selfhosted | 2021-09-22

    WAZUH (fork of OSSEC would be my first choice when it comes to Linux based HIDS (host based), and Snort or Suricata if you are looking for NIDS (network based). As well as Lynis for ensuring the setup of the host is as you intended.

  • GitHub repo OpenSC

    Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend

    Project mention: Dev Tools I Can't Appreciate Enough | dev.to | 2021-05-18

    1- PKCS11-Tools by OpenSC

  • GitHub repo pycryptodome

    A self-contained cryptographic library for Python

    Project mention: Picocrypt - A FOSS 3MB Encryption Tool! | reddit.com/r/privacytoolsIO | 2021-03-19

    I know what you mean and I understand your concern. As it currently stands, I can say with a high level of confidence (although not complete) that Picocrypt is very secure. That's because Picocrypt uses ChaCha20, which is a simple cipher to implement correctly and without errors. It's extensively documented. I have a solid understanding of cryptography and I carefully choose a Python cryptography library with over 1k stars do implement ChaCha20. I know that there's a lot of responsibility when making security software, which is why I'm accepting donations to get Picocrypt audited as soon as possible (ideally within a year). Thanks for your feedback, I appreciate it.

  • GitHub repo openssh-portable

    Portable OpenSSH

    Project mention: The pitfalls of using SSH-agent, or how to use an agent safely | news.ycombinator.com | 2021-09-18

    I've seen several systems that wrap the ssh binary to allow different agents to be forwarded to different hosts. Personally I think this is unwieldy -- it really should be something which is built into ssh directly.

    Running multiple agents is also a bit ugly, especially if you are trying to consolidate your keys with an agent integrated with your desktop environment, which I think is the most common use case.

    FWIW my proposal for fixing it is https://github.com/openssh/openssh-portable/pull/233 but it isn't the most elegant solution either I guess. It doesn't seem to have picked up much interest so I don't think it's likely to ever be merged (at least in its current form) which is fine. Hopefully some tamed version of agent forwarding appears directly in openssh someday, either as a simple key filter or something more complicated like guardian-agent

  • GitHub repo c-toxcore

    The future of online communications.

    Project mention: Why developers use IRC instead of XMPP? | reddit.com/r/i2p | 2021-06-28

    They're vulnerable to Key-Change-Interception attacks in a case where a key is stolen from somebody who you're already contacted with. That's a pretty big "if" for people who's concern is dragnet surveillance and not targeted surveillance. https://github.com/TokTok/c-toxcore/issues/426 Also up-to-date Tox clients have a fix for it, apparently, looks like they're holding off on closing the issue until every official client has the fix.

  • GitHub repo Themis

    Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

    Project mention: Backstage: cryptographic R&D internship at Cossack Labs | dev.to | 2021-05-12

    Now, the real world work starts. We introduce interns to the world of popular cryptographic libraries, help them to make their first OSS contributions, and let them practice with our cryptographic library Themis which provides a high-level crypto API on 14 languages.

  • GitHub repo wolfssl

    The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!

    Project mention: 5 horrific techniques that will make your co-developers really hate your code | reddit.com/r/programming | 2021-07-01

    Ugh. No kidding.

  • GitHub repo tracee

    Linux Runtime Security and Forensics using eBPF

    Project mention: Found malware on my system... can anyone tell me what it is? (or where better to ask) | reddit.com/r/linuxquestions | 2021-08-13

    Besides opensnitch to monitor outbound connections you can use https://github.com/aquasecurity/tracee/tree/main/tracee-ebpf or the bpfcc-tools (apt install bpfcc-tools, opensnoop-bpfcc, execsnoop-bpfcc, tcpconnect-bpfcc, etc) to monitor the system, just in case there's something still running.

  • GitHub repo rizin

    UNIX-like reverse engineering framework and command-line toolset.

    Project mention: Unfuck: A utility for deobfuscating Python 2.7 bytecode | news.ycombinator.com | 2021-08-12
  • GitHub repo envchain

    Environment variables meet macOS Keychain and gnome-keyring <3

    Project mention: How to Handle Secrets on the Command Line | news.ycombinator.com | 2021-06-13

    You have envchain to store secrets as ENV variables in your keyring and execute commands:


    Not really something you would use for production web apps, I think envconsul covers that usecase:


  • GitHub repo nanos

    A kernel designed to run one and only one application in a virtualized environment

    Project mention: Simple Deno HTTP server running in Nanos unikernel | dev.to | 2021-08-25

    This short post shows how to get a self-executable Deno HTTP server to run in Nanos using Ops.

  • GitHub repo orbot

    The Github home of Orbot: Tor on Android (Also available on gitlab!)

    Project mention: Is there a way to set a proxy ONLY for specific apps on android? | reddit.com/r/privacytoolsIO | 2021-05-27

    https://github.com/guardianproject/orbot for the non-go on Play Store. You can also isntall Aurora Store to avoid Google and install Orbot from there.

  • GitHub repo hardened_malloc

    Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability / integration over time.

    Project mention: How do you 'harden' your Android? | reddit.com/r/privacytoolsIO | 2021-09-20

    I opted for https://grapheneos.org and it works great. I highly recommend checking it out if you want a privacy and security oriented version of Android.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-09-22.


What are some of the best open-source Security projects in C? This list will help you:

Project Stars
1 radare2 14,906
2 OpenVPN 6,244
3 system-bus-radio 5,797
4 capstone 5,173
5 processhacker 5,167
6 Unicorn Engine 4,613
7 OSSEC 3,523
8 motion 2,755
9 Wazuh 2,593
10 honggfuzz 2,338
11 Suricata 2,153
12 OpenSC 1,727
13 pycryptodome 1,697
14 openssh-portable 1,580
15 c-toxcore 1,560
16 Themis 1,351
17 wolfssl 1,266
18 tracee 1,247
19 rizin 1,019
20 envchain 933
21 nanos 919
22 orbot 745
23 hardened_malloc 581
Find remote jobs at our new job board 99remotejobs.com. There are 25 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives