Shell Security

Open-source Shell projects categorized as Security | Edit details

Top 23 Shell Security Projects

  • GitHub repo setup-ipsec-vpn

    Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

    Project mention: Well it's been sitting on my desk for years now | | 2021-09-19

    I use this one:

  • GitHub repo lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

    Project mention: T440p is a really nice machine. | | 2021-09-12
  • Nanos

    Run Linux Software Faster and Safer than Linux with Unikernels.

  • GitHub repo oss-fuzz

    OSS-Fuzz - continuous fuzzing for open source software.

    Project mention: FuzzBench: Open Fuzzer Benchmarking Platform and Service | | 2021-08-20
  • GitHub repo YubiKey-Guide

    Guide to using YubiKey for GPG and SSH

    Project mention: password management with pass and git | | 2021-09-19

    You can setup Yubikey with pass and store the private keys on the key itself. This requires quite some setup time.

  • GitHub repo my-arsenal-of-aws-security-tools

    List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

    Project mention: Aws Cloud Security | | 2021-07-12

    Your question is lacking some context or detail, none the less here is a great repo of AWS security tools to play with:

  • GitHub repo android-security-awesome

    A collection of android security related resources

  • GitHub repo docker-ipsec-vpn-server

    Docker image to run an IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

    Project mention: Docker hostname resolution within container running VPN server | | 2021-08-14

    I'm running an L2TP VPN server using this image: This works great, but while connected to the VPN, the docker hostname resolution doesn't work ( For example, if I run a container called "postgres", I can use that hostname from other containers to resolve the IP (e.g. for that container. Shouldn't I be able to use those same hostnames in my browser too while I'm connected to VPN?

  • Scout APM

    Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.

  • GitHub repo prowler

    Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls and many more additional checks that help on GDPR, HIPAA and other security frameworks.

    Project mention: What tooling is used for monitoring security policy in the cloud? | | 2021-08-22

    Set up Prowler on an EC2 instance and run it via cron job daily. Use the CISl2 group as a parameter and run this against all of your accounts. This will get you to a good starting point.

  • GitHub repo airgeddon

    This is a multi-use bash script for Linux systems to audit wireless networks.

    Project mention: v1s1t0r1sh3r3/airgeddon - This is a multi-use bash script for Linux systems to audit wireless networks. | | 2021-01-12
  • GitHub repo wstg

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Project mention: Ajuda em Cyber Segurança | | 2021-08-09
  • GitHub repo wireguard-docs

    📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients.

    Project mention: GitHub - pirate/wireguard-docs: 📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients. | | 2021-08-19
  • GitHub repo autoVPN

    Create On Demand Disposable OpenVPN Endpoints on AWS.

  • GitHub repo block

    Let's make an annoyance free, better open internet, altogether!

    Project mention: People may not be hiding effectively from Facebook | | 2021-09-19
  • GitHub repo Android-PIN-Bruteforce

    Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

    Project mention: Screen Broken, Need help unlocking device blindly. | | 2021-06-17

    Try looking up for screen rentals from repair shops, they rental may out displays for retrieving data. This might help as well

  • GitHub repo ufw-docker

    To fix the Docker and UFW security flaw without disabling iptables

    Project mention: Docker and UFW | | 2021-08-18
  • GitHub repo xiringuito

    SSH-based "VPN for poors"

    Project mention: Ask HN: Rewrite Project or Abandon It? | | 2021-01-05

    Hi people,

    I need your advice and opinion.

    I have a project on GitHub that I wasn't updating for a while:

    And it still works kinda OK for me, but technically it's a hard to maintain gibberish and I'm thinking about rewriting it in a statically compiled language, add unit testing and be able to incorporate different advanced features without making myself and others cry.

    HOWEVER: I doubt this makes sense and fear to just lose time on it.

    Could you please help me with a decision:

    If you think it's worth rewriting, add a GitHub star on

    If you think it's a pile of shite and it should die, no problem, just ignore it :)

    It already has 954 stars for now and if number of stars goes 1k+ this month, I'll rewrite it. If not, it would be a sign it's a [c/t]rap and I need to run away and forget ;)


  • GitHub repo sig-security

    🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

    Project mention: CNCF - Secure Supply Chain Assessment | | 2021-08-03

    Evaluating your supply chain security: a framework for supply chain evaluation

  • GitHub repo MemLabs

    Educational, CTF-styled labs for individuals interested in Memory Forensics

    Project mention: I saw my definition of a worst case scenario today, all because the client didn't want to spend a little bit of money a couple years ago. | | 2021-04-22

    I think your best bet to start today is to start looking at self-education options (all over youtube, reddit, google) and start shopping for jobs that either have big training budgets or are at a service provider/vendor that offers IR and try to move laterally within it. You'd be surprised by what you get from just shooting your shot. You could consider some really basic certs like Sec + (avoid CEH like the plague unless you're gov't.) or Blue Team Level 1. I like to watch guys like 13cubed, or the surviving digital forensics podcasts and courses. Also just stay aware of infosec news from sources like brian krebs or cyberwire daily. Some other things to think about are and for some good exercises. Don't feel bad for using walkthroughs your first few times. SANS 3 minutes max is also great for quick topics in DFIR

  • GitHub repo hblock

    Improve your security and privacy by blocking ads, tracking and malware domains.

    Project mention: Block ADS by yourself without using an Adblock. ¿How? | | 2021-06-27

    The hosts file (I'm talking about GNU/Linux) may be a bit confusing at first, but once you get used to it, it's a great system wide solution. You could also use a tool that uses the hosts file, which may make your life easier. I'd recommend hblock

  • GitHub repo hardening

    Hardening Ubuntu. Systemd edition.

    Project mention: Industry Standard Linux Hardening Script [Ubuntu Server] | | 2021-07-28

    Are there any Linux(Ubuntu Server in my case) hardening scripts that abides to any well known industry standards. I can only find some scripts on Github like this one -

  • GitHub repo htshells

    Self contained htaccess shells and attacks

    Project mention: Null | | 2021-01-13

    Found some GitHub issues [1] with something similar: an enterprise firewall blocking a repo because it contained the string "arglebargleglopglyf" [2] in some tests.

    The text was flagged as malicious because of its presence in the repo [3]. However, the whole point of the word in the htshells repo is that it's an invalid command that breaks Apache, so it could have been almost any random string.




  • GitHub repo wireguard-manager

    ✔️ wireguard-manager enables you to build and manage your own vpn under a minute.

    Project mention: Any guides to setup wireguard on a VPS? | | 2021-09-18

    This repo is a good place to start

  • GitHub repo kalitorify

    Transparent proxy through Tor for Kali Linux OS

    Project mention: kalitorify v1.26.2 - Shell script for transparent proxy through Tor network. | | 2021-09-14

    Pull requests

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-09-19.


What are some of the best open-source Security projects in Shell? This list will help you:

Project Stars
1 setup-ipsec-vpn 16,381
2 lynis 8,810
3 oss-fuzz 6,649
4 YubiKey-Guide 6,256
5 my-arsenal-of-aws-security-tools 6,244
6 android-security-awesome 5,490
7 docker-ipsec-vpn-server 4,206
8 prowler 3,891
9 airgeddon 3,631
10 wstg 3,577
11 wireguard-docs 3,099
12 autoVPN 1,948
13 block 1,717
14 Android-PIN-Bruteforce 1,575
15 ufw-docker 1,250
16 xiringuito 987
17 sig-security 931
18 MemLabs 835
19 hblock 832
20 hardening 790
21 htshells 747
22 wireguard-manager 656
23 kalitorify 610
Find remote jobs at our new job board There are 24 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives