Top 23 Security Open-Source Projects
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.Project mention: Linux networking tool with simpler understanding... | reddit.com/r/coolguides | 2021-04-28
An open-source x64/x32 debugger for windows.Project mention: Kifflom? | reddit.com/r/chiliadmystery | 2021-04-26
Scout APM - Leading-edge performance monitoring starting at $39/month. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
Fast, multi-platform web server with automatic HTTPSProject mention: Running Ghost in Production With Docker and Caddy Server | reddit.com/r/docker | 2021-05-11
It will also use SSL/TLS, using Caddy (still with Docker).
A list of useful payloads and bypass for Web Application Security and Pentest/CTFProject mention: Big list of HTTP static server one-liners | news.ycombinator.com | 2021-05-12
Metasploit FrameworkProject mention: NetMotion Mobility CVE-2021-26914 exploit: vuln from Feb... Being exploited en mass in 3..2..1 | reddit.com/r/blueteamsec | 2021-05-11
List of Computer Science courses with video lectures.Project mention: Can anyone recommend any deep web sites that hosts certificate courses from reputable universities for free? Or any edtech sites on the deep web. Thanks. | reddit.com/r/deepweb | 2021-05-12
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.Project mention: Beware of Applications Misusing Root Stores | news.ycombinator.com | 2021-05-10
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Set up a personal VPN in the cloudProject mention: Any good VPN providers allowing "custom dns" in .conf? | reddit.com/r/WireGuard | 2021-05-06
Automatic SQL injection and database takeover toolProject mention: sqlmap cannot find inject on the testfire.net | reddit.com/r/Kalilinux | 2021-05-12
I found the same question on GitHub, but the payload given in the answer doesn't work.
Guide to securing and improving privacy on macOSProject mention: Security | reddit.com/r/macbookpro | 2021-05-11
SQL powered operating system instrumentation, monitoring, and analytics.Project mention: Is there a way to scan a network for computers running specific software (Java in this case) | reddit.com/r/sysadmin | 2021-04-26
Many options exist. OSQuery is one, and it's free, and it can be used to grab a bunch of other system information which might be useful at a later date. https://osquery.io/
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.Project mention: Jumping ship to debian | reddit.com/r/debian | 2021-05-11
If you don't want the full Pi-Hole, you could just use one of StevenBlack's hosts file. https://github.com/StevenBlack/hosts
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.Project mention: Proxy for protection | reddit.com/r/networking | 2021-04-01
The other thing you want to do is learn what the possible attacks are, and how to mitigate them. Owasp has some great resources for starters: https://owasp.org/www-project-top-ten/ https://cheatsheetseries.owasp.org/
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2Project mention: VPN Setup Help/Speed | reddit.com/r/HomeNetworking | 2021-04-29
UNIX-like reverse engineering framework and command-line toolsetProject mention: That took a wild turn | reddit.com/r/ProgrammerHumor | 2021-04-15
True story: there is a project called Radare2 (or r2) which recently has been forked as Rizin. The reasons for the fork were many, but one of the things they changed was renaming occurrences in code of words like "anal", "sex", etc.
An evolving how-to guide for securing a Linux server.Project mention: Strange requests from the other side of the planet?! | reddit.com/r/HomeServer | 2021-05-09
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.Project mention: Storing Sensitive Information in Django | reddit.com/r/django | 2021-03-14
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.Project mention: User account over Internet | reddit.com/r/linuxadmin | 2021-05-10
If you just have some services/users at a remote location that you want to authenticate/authorize using your existing user directory, I’d recommend using OAuth2/OpenID Connect over https. This has the added benefit of enabling users to enroll multi-factor, federating with other identity providers (if you want), is more future proof (LDAP isn’t cloud native/friendly), and can be exposed to the Internet without the need of a VPN relatively safely. Another benefit is support for remote users and SaaS - for example, enabling users working from home to authenticate to SaaS applications using their directory login (without SSL/agent-VPNs or punching holes in firewall). Examples include: Okta(free tier permits 2000 monthly active users), Keycloak,Dex,ory.sh.
OpenZeppelin Contracts is a library for secure smart contract development.Project mention: Templates for Bep20/ERC20 Tokens? | reddit.com/r/cryptodevs | 2021-05-11
You should check out OpenZeppelins Smart Contract project (https://github.com/OpenZeppelin/openzeppelin-contracts) as well as Dapphub Dappsys (http://dapp.tools/dappsys/).
Free cross-platform password manager compatible with KeePassProject mention: Store all passwords in the same Excel... what could go wrong!? | reddit.com/r/sysadmin | 2021-04-13
It's open source and built with security in mind https://keeweb.info/
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)Project mention: Tiny Container Challenge: Building a 6kB Containerized HTTP Server! | reddit.com/r/docker | 2021-04-22
I still have to try it, but maybe docker-slim could help make it even smaller!
This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome.Project mention: How to “dockerize” existing web apps (“php + mySQL” app, and “node.js + express + mongodb” app) | reddit.com/r/docker | 2021-03-11
You can find some intro and tutorials to catch up on docker https://github.com/docker/labs
The Rogue Access Point FrameworkProject mention: Create a Wi-Fi hotspot for data interception | reddit.com/r/Hacking_Tutorials | 2021-02-10
You could do almost the same thing with this https://github.com/wifiphisher/wifiphisher, it's a great tool to clone a wifi asking you the password while disauth the original hostpot.
What are some of the best open-source Security projects? This list will help you:
|21||Lean and Mean Docker containers||9,962|