Top 23 C Security Projects

Security

• Add a project

1. Nginx

   1 126 26,808 8.8 C

   The official NGINX Open Source repository.

   

   Project mention: Deploying a Simple Flask API Using Gunicorn, Supervisor & Nginx | dev.to | 2025-04-30

   Nginx: A reverse proxy to handle client requests and route them to Gunicorn.

2. InfluxDB

   www.influxdata.com featured

   InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

   

3. radare2

   2 9 21,639 9.9 C

   UNIX-like reverse engineering framework and command-line toolset

   

4. systeminformer

   3 29 11,814 10.0 C

   A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com

   

   Project mention: Show HN: Appstat – Process Monitor for Windows | news.ycombinator.com | 2025-03-04

   For advanced end users? why would they ditch: https://systeminformer.sourceforge.io/ ?

5. OpenVPN

   4 82 11,787 9.4 C

   OpenVPN is an open source VPN daemon

   

6. nmap

   5 27 11,055 9.3 C

   Nmap - the Network Mapper. Github mirror of official SVN repository.

   

   Project mention: 6 Powerful Free Security Tools That Will Surprise You | dev.to | 2024-10-09

   Tool Link: https://github.com/nmap/nmap

7. Unicorn Engine

   6 19 8,143 9.4 C

   Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)

   

   Project mention: Unicorn Engine 2.1.2 | news.ycombinator.com | 2025-02-13

8. capstone

   7 11 7,991 9.1 C

   Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

   

   Project mention: Capstone Disassembler Framework | news.ycombinator.com | 2024-09-25

   It just updated to the nearly latest LLVM, so that argument is void: https://github.com/capstone-engine/capstone/blob/next/docs/c...

9. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

10. tpotce

    8 31 7,812 9.0 C

    🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

    

11. system-bus-radio

    9 20 6,598 5.8 C

    Transmits AM radio on computers without radio transmitting hardware.

    

    Project mention: Transmits AM radio on computers without radio transmitting hardware (Airgap) | news.ycombinator.com | 2024-07-18

12. aircrack-ng

    10 5 5,993 8.2 C

    WiFi security auditing tools suite

    

13. AFLplusplus

    11 17 5,686 9.5 C

    The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

    

    Project mention: Fuzzing between the lines in popular barcode software | news.ycombinator.com | 2024-10-31

    > Surprisingly, libFuzzer struggled to figure out that input should be of size 1024 and couldn’t start fuzzing.

    Is this surprising? Does libFuzzer support Redqueen or laf-intel like AFL++ [0][1] which will pick up on any comparisons (like a comparison to size=1024) and fuzz with that?

    0: https://github.com/AFLplusplus/AFLplusplus/blob/stable/instr...

    1: https://github.com/AFLplusplus/AFLplusplus/blob/stable/instr...

14. Suricata

    12 26 5,241 9.9 C

    Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

    

    Project mention: What is a Denial of Service (DoS) Attack? A Comprehensive Guide | dev.to | 2025-04-28

    Suricata - High-performance Network IDS, IPS, and Network Security Monitoring engine.

15. OSSEC

    13 14 4,714 4.6 C

    OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

    

    Project mention: The Impact of Open-Source Tools in Cyber Warfare: A Deep Dive | dev.to | 2025-03-06

    Open-source tools have led to a significant transformation in cyber warfare for two primary reasons: cost-effectiveness and community-driven innovation. Tools such as SQLmap and Aircrack-ng exemplify how attackers exploit vulnerabilities, making it easier for individuals with limited resources to engage in cyber exploits. Conversely, defensive tools like Snort and OSSEC empower security professionals to monitor networks and system logs, helping organizations detect and mitigate breaches in real time. The evolution does not stop at merely having access to these tools but extends to how continuously they are updated and improved. The community-driven nature of open-source software encourages ongoing enhancements and shared knowledge. This, however, is paired with increased risk. With any tool that is available to all, the challenge of distinguishing ethical use from malicious intent becomes prominent, placing a heavier burden on security professionals to adapt and be vigilant.

16. tetragon

    14 11 3,943 9.9 C

    eBPF-based Security Observability and Runtime Enforcement

    

17. openssh-portable

    15 51 3,347 9.6 C

    Portable OpenSSH

    

    Project mention: 20 years of Git. Still weird, still wonderful | news.ycombinator.com | 2025-04-07

    Oh yeah, SSH signing is incredible. I've also migrated to it and didn't look back.

    A couple of differences:

    - it's possible to specify signing keys in a file inside the repository, and configure git to verify on merge (https://github.com/wiktor-k/ssh-signing/). I'm using that for my dot config repo to make sure I'm pulling only stuff I committed on my machines.

    - SSH has TPM key support via PKCS11 or external agents, this makes it possible to easily roll out hardware backed keys

    - SSH signatures have context separation, that is it's not possible to take your SSH commit signature and repurpose it (unlike OpenPGP)

    - due to SSH keys being small the policy file is also small and readable, compare https://github.com/openssh/openssh-portable/blob/master/.git... with equivalent OpenPGP https://gitlab.com/sequoia-pgp/sequoia/-/blob/main/openpgp-p...

18. HyperDbg

    16 7 3,228 9.5 C

    State-of-the-art native debugging tools

    

    Project mention: HyperDbg: A debugger designed for analyzing, fuzzing and reversing | news.ycombinator.com | 2024-11-15

19. honggfuzz

    17 5 3,180 7.0 C

    Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

    

20. unikraft

    18 29 3,107 9.4 C

    A next-generation cloud native kernel designed to unlock best-in-class performance, security primitives and efficiency savings.

    

    Project mention: The SeL4 Microkernel: An Introduction [pdf] | news.ycombinator.com | 2025-03-23

    Jochen Liedtke became a professor in 1999 in Karlsruhe, sadly he passed away only shortly after in 2001. I don't know if his successor Bellosa still does research on L4. There was the L4Ka project which appears to be completed. In the bachelor lecture on OS by him it's not part of the curriculum.

    Rittinghaus, alumni of Bellosa, is involved with Unikraft [0], which was featured a couple of times on hn, and is using unikernel technology.

    [0] https://unikraft.org/

21. pycryptodome

    19 8 2,999 9.0 C

    A self-contained cryptographic library for Python

    

22. rizin

    20 48 2,900 9.8 C

    UNIX-like reverse engineering framework and command-line toolset.

    

    Project mention: QNX is now free for anything non-commercial, plus there's an RPi image | news.ycombinator.com | 2024-11-07

23. tcpdump

    21 4 2,898 9.4 C

    the TCPdump network dissector

    

    Project mention: Debug & Chill #1 | dev.to | 2025-02-13

    tcpdump is a personal favorite for troubleshooting network issues because it lets you watch packets in real time. I ran it on both VMs while attempting the curl command again. On the Client side, I could see a SYN packet being sent, but it never appeared on the Server side. If packets aren’t arriving, you need to figure out where they’re getting dropped.

24. nanos

    22 30 2,780 8.9 C

    A kernel designed to run one and only one application in a virtualized environment

    

    Project mention: OS for Secure Containers? | news.ycombinator.com | 2024-09-04

    Going to toot my own horn here but if you're looking for something like a container with a security focus that is precisely what https://nanos.org was built for. No users, no login/ssh, no ability to run other programs other than the one that is already running. It kills off entire CWE's such as CWE-77/CWE-78 and neutralizes a large amount of nasty payloads forcing attackers to put in the work. It has all the same security features you'll find in linux (aslr, stack exec off, rodata no exec, etc.) but more.

    A go unikernel deployed in this manner might have 5 files on the fs so you don't have a half-dozen interpreters or live off the land binary type stuff. Beware though that not all unikernels are built the same way and don't share the same security profiles as nanos.

    At the end of the day though if security is a driving force containers are simply not built for that. Just the other day CVE-2024-45310 landed and a few weeks ago we had CVE-2024-42472 in flakpak (a continuation of the bubblewrap stuff).

    People are probably going to jump in here and mention gvisor and firecracker. Note that firecracker is really a machine monitor replacement and most payloads are still running a linux guest (although nanos can work here). Gvisor does deal with the security issue well enough but at the cost of performance if you don't have access to hw virtualization.

25. OpenSC

    23 8 2,739 9.5 C

    Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend

    

26. SaaSHub

    www.saashub.com featured

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    

C Security related posts

• The Beauty of Having a Pi-Hole

  2 projects | news.ycombinator.com | 5 May 2025

• I can't pay rent because devs just don't care

  1 project | news.ycombinator.com | 29 Apr 2025

• What is a Denial of Service (DoS) Attack? A Comprehensive Guide

  1 project | dev.to | 28 Apr 2025

• 🛡️ Top 10 Free Penetration Testing Tools Every Security Team Should Use in 2025

  5 projects | dev.to | 28 Apr 2025

• Want to Know Where Popular Web Technologies Serve Websites on Red Hat Linux? Let’s Break It Down!

  4 projects | dev.to | 12 Apr 2025

• Landrun: Sandbox any Linux process using Landlock, no root or containers

  11 projects | news.ycombinator.com | 22 Mar 2025

• The Impact of Open-Source Tools in Cyber Warfare: A Deep Dive

  6 projects | dev.to | 6 Mar 2025
• A note from our sponsor - InfluxDB
  www.influxdata.com | 12 May 2025

  InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now. Learn more →

Index

Sponsored

InfluxDB – Built for High-Performance Time Series Workloads

InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

www.influxdata.com

Do not miss the trending C projects with our weekly report!