SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 Security Open-Source Projects
-
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
-
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
-
x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
-
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
-
hosts
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
-
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
-
keepassxc
KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
8. Security Knowledge Base: - Utilize resources like The-book-of-secret-knowledge (e.g., https://github.com/trimstray/the-book-of-secret-knowledge) and Awesome-Hacking (e.g., https://github.com/Hack-with-Github/Awesome-Hacking) to build a knowledge base. - Extract relevant security information and create a structured knowledge base within SecurIoT. - Implement functionality to query and retrieve security information from the knowledge base. - Thoroughly test the knowledge base integration, ensuring accurate retrieval of security knowledge.
8. Security Knowledge Base: - Utilize resources like The-book-of-secret-knowledge (e.g., https://github.com/trimstray/the-book-of-secret-knowledge) and Awesome-Hacking (e.g., https://github.com/Hack-with-Github/Awesome-Hacking) to build a knowledge base. - Extract relevant security information and create a structured knowledge base within SecurIoT. - Implement functionality to query and retrieve security information from the knowledge base. - Thoroughly test the knowledge base integration, ensuring accurate retrieval of security knowledge.
course Computer science is very wast field the fundamental remains same, learn basic fundamentals, data structures, concepts of object oriented programming.
Also https://github.com/swisskyrepo/PayloadsAllTheThings I'm sure there's a few test php files in here for filter bypasses too
However, it's very unlikely that .NET developers will directly expose their Kestrel-based web apps to the internet. Typically, we use other popular web servers like Nginx, Traefik, and Caddy to act as a reverse-proxy in front of Kestrel for various reasons:
Metasploit
sqlmap
Project mention: Show HN: WireHole New UI Makes Managing WireGuard Clients Easy | news.ycombinator.com | 2023-10-27
Cross Site Scripting Prevention Cheat Sheet from OWASP Cheat Sheet Series
Not by default but a blocklist can be found here https://github.com/StevenBlack/hosts
Project mention: Blockchain transactions decoding: making wallet activity understandable | dev.to | 2023-10-27Lets look the events of Open Zeppelin’s ERC20 token contract:
Project mention: Can't get it to run after installation, although running vpn from this pi before | /r/pivpn | 2023-12-06I can't connect to VPN. I have run VPN on this Raspberry Pi via IPsec. All of a sudden it stopped working. I tried installing IPsec on another Raspberry Pi, with no success, the same problem. I can't connect.
Perhaps the OP means OsQuery: https://github.com/osquery/osquery
OsQuery is an SQLite extension consisting of hundreds of virtual tables
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Trivy Owner/Maintainer: Aqua Security Age: First released on GitHub on May 7th, 2019 License: Apache License 2.0 backward-compatible with tfsec
In this article we'll be using Keycloak to secure a Vue.js Web application. We're going to leverage oidc-client-ts to integrate OIDC authentication with the Vue app. The oidc-client-ts package is a well-maintained and used library. It provides a lot of utilities for building out a fully production app.
It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.
Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...
Project mention: KeePassXC Issue: [Passkeys] should never be exported in clear text | news.ycombinator.com | 2024-03-13
Security related posts
- Show HN: Horus – An OSINT / digital forensics tool built in Python
- How to Implement Rate Limiting in Express for Node.js
- A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons
- SQL Injection Isn't Dead Yet
- Sandboxing All the Things with Flatpak and BubbleBox
- Tracking Snoop Dogg's $4M Crypto Wallet with My New Open Source Tool!
- Sensible configuration for NextDNS tracker and ad blocking
-
A note from our sponsor - SaaSHub
www.saashub.com | 19 Apr 2024
Index
What are some of the best open-source Security projects? This list will help you:
Project | Stars | |
---|---|---|
1 | the-book-of-secret-knowledge | 128,453 |
2 | Awesome-Hacking | 77,002 |
3 | cs-video-courses | 64,694 |
4 | PayloadsAllTheThings | 56,534 |
5 | Caddy | 53,568 |
6 | x64dbg | 43,128 |
7 | mitmproxy | 34,277 |
8 | Metasploit | 32,746 |
9 | SQLMap | 30,495 |
10 | algo | 28,273 |
11 | nginxconfig.io | 27,027 |
12 | CheatSheetSeries | 26,411 |
13 | hosts | 25,413 |
14 | openzeppelin-contracts | 24,079 |
15 | setup-ipsec-vpn | 23,944 |
16 | API-Security-Checklist | 21,956 |
17 | OSQuery | 21,324 |
18 | trivy | 21,222 |
19 | macOS-Security-and-Privacy-Guide | 20,863 |
20 | Keycloak | 19,762 |
21 | radare2 | 19,558 |
22 | authelia | 19,459 |
23 | keepassxc | 19,071 |