Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression. Learn more →
Top 23 HTML Security Projects
-
-
-
Appwrite
Appwrite - The Open Source Firebase alternative introduces iOS support. Appwrite is an open source backend server that helps you build native iOS applications much faster with realtime APIs for authentication, databases, files storage, cloud functions and much more!
-
Project mention: [Help] I'm looking for a downloadable list of all CVEs including vulnerability | reddit.com/r/netsec | 2022-12-05
Anyhow, these project might help: - https://cve-search.github.io/cve-search/ - https://github.com/trickest/cve/ - https://github.com/ChrisIvie/offline-cve - https://avleonov.com/2017/10/03/downloading-and-analyzing-nvd-cve-feed/ - opencve.io
-
-
-
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
-
Project mention: Any open source projects where we can learn Django by doing? | reddit.com/r/djangolearning | 2023-02-05
-
InfluxDB
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
-
With SSLVersionMin, I think TLS 1.0 and TLS 1.1 protocols are already disabled (they were originally going to be disabled in 2020, but it was postponed). If I try going to test pages on https://badssl.com/ that use those protocols, Brave displays an "Unsupported protocol" error page with error code ERR_SSL_VERSION_OR_CIPHER_MISMATCH – with no option for the user to bypass the error page. However, I'm not sure why InTune won't allow you to configure it to TLS 1.2 minimum version anyway.
-
OnionBrowser
An open-source, privacy-enhancing web browser for iOS, utilizing the Tor anonymity network
Project mention: YSK that If you’re using Android 11 and Google Chrome, you can get malware or bloatware simply by surfing on websites, even in incognito mode. | reddit.com/r/YouShouldKnow | 2023-03-21 -
reverse-shell-generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
Project mention: What are use cases for a reverse shell generator? | reddit.com/r/linuxquestions | 2023-03-07 -
-
-
In this example, we’ll analyze the runtime behavior of the OWASP Railsgoat project, which is a vulnerable Ruby on Rails application. This project demonstrates the OWASP Top-10 and is a great project for educating developers and security teams.
-
Project mention: Energized GitHub has been unmaintained since few months, and is showing 404 error on HOSTS files. Here is a copy of Energized Ultimate HOSTS ruleset file, and alternative HOSTS ruleset providers to consider. | reddit.com/r/privatelife | 2023-03-10
I think 1Hosts PRO is a good replacement, but try Lite or Pro whichever you prefer. https://github.com/badmojr/1Hosts You may try combining other HOSTS lists with this if you want to, and are technically adept enough.
-
Project mention: Any add-on that removes annoying "accept all cookies" message and denies it all the time? | reddit.com/r/privacy | 2022-11-13
-
aws-secure-environment-accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
Project mention: An AWS account just for getting into other AWS accounts | news.ycombinator.com | 2022-11-02https://github.com/aws-samples/aws-secure-environment-accele...
I've used the ASEA to get a number of organizations setup. I prefer it to Control Tower (it can be installed on top of CT). The ASEA is open source and written in AWS cdk so it can be forked and modified if needed.
-
they just need to download https://github.com/PurpleI2P/i2pdbrowser and they r set to go
-
Project mention: Is TLS Fast Yet? - TLS has exactly one performance problem: it is not used widely enough. Everything else can be optimized. | reddit.com/r/CKsTechNews | 2022-10-21
-
CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
Project mention: CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera: 🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337 | reddit.com/r/blueteamsec | 2022-03-28 -
GrapheneOS (Lizenz) [GrapheneOS: das private und sichere mobile Betriebssystem](grapheneos-index.html) – https://grapheneos.org [Installation](grapheneos-install.html) – https://grapheneos.org/install/ [CLI-Installationsanleitung](grapheneos-install-cli.html) – https://grapheneos.org/install/cli [Web-Installationsanleitung](grapheneos-install-web.html) – https://grapheneos.org/install/web
-
awesome-anti-forensic
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information.
Project mention: How to wipe a drive beyond forensic recoverability? | reddit.com/r/opsec | 2022-10-28Take a look at awesome-anti-forensic
-
CIS-Ubuntu-20.04-Ansible
Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
-
DWKit (last commit 5 month ago)
-
SonarLint
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
HTML Security related posts
- YSK that If you’re using Android 11 and Google Chrome, you can get malware or bloatware simply by surfing on websites, even in incognito mode.
- if I am using darkweb from Android is it having same safety as using from pc or laptop?
- [March 6th] Dread: We are back!
- How to make a bounty bug request
- Please utilize encrypted services and apps to help reduce this possibility!
- Solidity security reviews?
- Standalone browser version
-
A note from our sponsor - InfluxDB
www.influxdata.com | 22 Mar 2023
Index
What are some of the best open-source Security projects in HTML? This list will help you:
Project | Stars | |
---|---|---|
1 | smart-contract-best-practices | 6,584 |
2 | js-xss | 4,847 |
3 | cve | 4,074 |
4 | supercookie | 4,053 |
5 | Web-Security-Learning | 3,965 |
6 | kubernetes-goat | 2,953 |
7 | django-DefectDojo | 2,696 |
8 | badssl.com | 2,509 |
9 | OnionBrowser | 2,010 |
10 | reverse-shell-generator | 1,830 |
11 | portable-secret | 1,552 |
12 | ICS-Security-Tools | 1,222 |
13 | railsgoat | 814 |
14 | 1Hosts | 775 |
15 | firefox-profilemaker | 669 |
16 | aws-secure-environment-accelerator | 639 |
17 | i2pdbrowser | 623 |
18 | istlsfastyet.com | 415 |
19 | CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera | 313 |
20 | grapheneos.org | 312 |
21 | awesome-anti-forensic | 275 |
22 | CIS-Ubuntu-20.04-Ansible | 203 |
23 | DWKit | 125 |