Top 23 Shell Security Projects

Security

• Add a project

1. setup-ipsec-vpn

   1 34 26,164 7.9 Shell

   Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

   

2. InfluxDB

   www.influxdata.com featured

   InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

   

3. lynis

   2 73 14,153 8.8 Shell

   Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

   

   Project mention: Lynis – Security auditing and hardening tool, for Unix-based systems | news.ycombinator.com | 2024-11-07

4. nginx-admins-handbook

   3 1 13,659 2.2 Shell

   How to improve NGINX performance, security, and other important things.

   

   Project mention: Full Stack Developer's Roadmap 🗺 | dev.to | 2025-01-04

   ☄️ Nginx Handbook 💡 Apache 💥 Caddy

5. oss-fuzz

   4 31 11,027 9.9 Shell

   OSS-Fuzz - continuous fuzzing for open source software.

   

6. my-arsenal-of-aws-security-tools

   5 6 9,175 1.0 Shell

   List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

   

7. Sn1per

   6 5 8,711 6.0 Shell

   Attack Surface Management Platform

   

8. awesome-hacker-search-engines

   7 19 8,668 8.2 Shell

   A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

   

   Project mention: Hacker Search Engines | news.ycombinator.com | 2025-01-27

9. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

10. android-security-awesome

    8 2 8,576 6.1 Shell

    A collection of android security related resources

    

11. airgeddon

    9 10 6,905 9.3 Shell

    This is a multi-use bash script for Linux systems to audit wireless networks.

    

12. docker-ipsec-vpn-server

    10 14 6,763 7.2 Shell

    Docker image to run an IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

    

13. reconftw

    11 3 6,232 9.1 Shell

    reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

    

14. ufw-docker

    12 65 5,227 5.4 Shell

    To fix the Docker and UFW security flaw without disabling iptables

    

15. wireguard-docs

    13 10 4,811 4.1 Shell

    📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients.

    

16. Android-PIN-Bruteforce

    14 24 4,275 0.0 Shell

    Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

    

17. securityonion

    15 7 3,693 9.9 Shell

    Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

    

18. EMBA

    16 49 2,968 9.9 Shell

    EMBA - The firmware security analyzer

    

19. block

    17 95 2,598 9.4 Shell

    Let's make an annoyance free, better open internet, altogether!

    

20. content

    18 10 2,421 10.0 Shell

    Security automation content in SCAP, Bash, Ansible, and other formats (by ComplianceAsCode)

    

    Project mention: Rocky Linux from CIQ – Hardened | news.ycombinator.com | 2025-03-21

    I cannot speak for AlmaLinux, but it's incorrect to say they're not compatible. They are most definitely still compatible with the upstream distributions. Yes, they have made some changes that make them quite different from the upstreams, but this was their choice and it works for their community and their overall goals. I personally don't see any issues with what they've chosen to do, but that's my extremely narrow view as all clients I work for only use RHEL or Ubuntu.

    In regards to STIG, this makes me think of the "scap-security-guide" package that helps the openscap package run tests for compliance like PCI-DSS and HIPPA (among other things). While it is true that we mark ourselves as a "derivative" of RHEL in that package, it doesn't mean we have any certifications or the like and we certainly do not claim to have such certifications. The only thing we actually have officially is a CIS benchmark set at cisecurity.org.

    AlmaLinux on the other hand appears to be upstreaming themselves into the content itself, which I think is pretty cool (https://github.com/ComplianceAsCode/content/tree/master/prod...). I've always wanted to see Rocky Linux do the same thing for the past few years, but I don't know what it would take. I've asked our security team some weeks back to look into what has to be done, so maybe something will happen. I just know it will take a long, long time to get things figured out either way. (As much as I'd like to look into it myself and work with the security team, I just don't have the time in between my personal life, day job, and the project.)

21. SSH-Snake

    19 7 2,079 7.2 Shell

    SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

    

22. autoVPN

    20 0 2,013 0.0 Shell

    Create On Demand Disposable OpenVPN Endpoints on AWS.

    

23. Shuffle

    21 5 1,936 9.8 Shell

    Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

    

    Project mention: Show HN: Open-source security automation platform | news.ycombinator.com | 2024-07-22

24. hblock

    22 29 1,807 5.7 Shell

    Improve your security and privacy by blocking ads, tracking and malware domains.

    

25. wireguard-manager

    23 20 1,737 5.1 Shell

    ✔️ WireGuard-Manager is an innovative tool designed to streamline the deployment and management of WireGuard VPNs. Emphasizing user-friendliness and security, it simplifies the complexities of VPN configuration, offering a robust yet accessible solution for both personal and professional use.

    

26. SaaSHub

    www.saashub.com featured

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    

Shell Security related posts

• Rocky Linux from CIQ – Hardened

  1 project | news.ycombinator.com | 21 Mar 2025

• Understanding the SLSA framework

  4 projects | dev.to | 21 Mar 2025

• One-Click Setup for SSH Login, Password Policy, IP Ban Configuration, and Custom Admin User Creation

  6 projects | dev.to | 6 Feb 2025

• Top-3 Helm Plugins: Helm Secrets, Helm Diff and Helm Git

  3 projects | dev.to | 30 Nov 2024

• Instalar BeEF en Kali Linux 2024

  4 projects | dev.to | 5 Oct 2024

• This URL is also malicious(?!) shell script

  1 project | news.ycombinator.com | 3 Oct 2024

• Securing your Cloud Infrastructure: A comprehensive guide to hardening, scaling, automating and monitoring your servers

  2 projects | dev.to | 26 Aug 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 12 May 2025

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

InfluxDB – Built for High-Performance Time Series Workloads

InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

www.influxdata.com

Do not miss the trending Shell projects with our weekly report!