Top 23 Security Open-Source Projects

• the-book-of-secret-knowledge

  47 128,453 3.4

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Project mention: Cyber Security iPhone Application Idea | /r/iOSDevelopment | 2023-07-03

8. Security Knowledge Base: - Utilize resources like The-book-of-secret-knowledge (e.g., https://github.com/trimstray/the-book-of-secret-knowledge) and Awesome-Hacking (e.g., https://github.com/Hack-with-Github/Awesome-Hacking) to build a knowledge base. - Extract relevant security information and create a structured knowledge base within SecurIoT. - Implement functionality to query and retrieve security information from the knowledge base. - Thoroughly test the knowledge base integration, ensuring accurate retrieval of security knowledge.

• Awesome-Hacking

  12 77,002 0.0

  A collection of various awesome lists for hackers, pentesters and security researchers

  

Project mention: Cyber Security iPhone Application Idea | /r/iOSDevelopment | 2023-07-03

8. Security Knowledge Base: - Utilize resources like The-book-of-secret-knowledge (e.g., https://github.com/trimstray/the-book-of-secret-knowledge) and Awesome-Hacking (e.g., https://github.com/Hack-with-Github/Awesome-Hacking) to build a knowledge base. - Extract relevant security information and create a structured knowledge base within SecurIoT. - Implement functionality to query and retrieve security information from the knowledge base. - Thoroughly test the knowledge base integration, ensuring accurate retrieval of security knowledge.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• cs-video-courses

  58 64,694 7.3

  List of Computer Science courses with video lectures.

Project mention: Need advice | /r/PAK | 2023-07-12

course Computer science is very wast field the fundamental remains same, learn basic fundamentals, data structures, concepts of object oriented programming.

• PayloadsAllTheThings

  34 56,534 8.6 Python

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Project mention: php shell not executed in wordpress | /r/hacking | 2023-12-08

Also https://github.com/swisskyrepo/PayloadsAllTheThings I'm sure there's a few test php files in here for filter bypasses too

• Caddy

  401 53,568 9.4 Go

  Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

  

Project mention: How to securely reverse-proxy ASP.NET Core web apps | dev.to | 2024-04-04

However, it's very unlikely that .NET developers will directly expose their Kestrel-based web apps to the internet. Typically, we use other popular web servers like Nginx, Traefik, and Caddy to act as a reverse-proxy in front of Kestrel for various reasons:

• x64dbg

  32 43,128 9.1 C++

  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

  

Project mention: we need a 2015E revival. | /r/oldrobloxrevivals | 2023-12-07

• mitmproxy

  152 34,277 9.4 Python

  An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

  

Project mention: Ask HN: Fiddler Alternatives | news.ycombinator.com | 2024-03-14

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• Metasploit

  117 32,746 10.0 Ruby

  Metasploit Framework

  

Project mention: Best Hacking Tools for Beginners 2024 | dev.to | 2024-02-01

Metasploit

• SQLMap

  40 30,495 8.7 Python

  Automatic SQL injection and database takeover tool

  

Project mention: Best Hacking Tools for Beginners 2024 | dev.to | 2024-02-01

sqlmap

• algo

  155 28,273 6.7 Jinja

  Set up a personal VPN in the cloud

  

Project mention: Show HN: WireHole New UI Makes Managing WireGuard Clients Easy | news.ycombinator.com | 2023-10-27

• nginxconfig.io

  5 27,027 6.3 JavaScript

  ⚙️ NGINX config generator on steroids 💉

  

• CheatSheetSeries

  49 26,411 9.1 Python

  The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

  

Project mention: Next.js: consequence of AppRouter on your CSP | dev.to | 2024-03-07

Cross Site Scripting Prevention Cheat Sheet from OWASP Cheat Sheet Series

• hosts

  306 25,413 9.5 Python

  🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

Project mention: Does PiHole block porn? | /r/pihole | 2023-12-06

Not by default but a blocklist can be found here https://github.com/StevenBlack/hosts

• openzeppelin-contracts

  233 24,079 9.5 JavaScript

  OpenZeppelin Contracts is a library for secure smart contract development.

  

Project mention: Blockchain transactions decoding: making wallet activity understandable | dev.to | 2023-10-27

Lets look the events of Open Zeppelin’s ERC20 token contract:

• setup-ipsec-vpn

  34 23,944 8.3 Shell

  Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

Project mention: Can't get it to run after installation, although running vpn from this pi before | /r/pivpn | 2023-12-06

I can't connect to VPN. I have run VPN on this Raspberry Pi via IPsec. All of a sudden it stopped working. I tried installing IPsec on another Raspberry Pi, with no success, the same problem. I can't connect.

• API-Security-Checklist

  4 21,956 5.8

  Checklist of the most important security countermeasures when designing, testing, and releasing your API

  

• OSQuery

  44 21,324 9.0 C++

  SQL powered operating system instrumentation, monitoring, and analytics.

  

Project mention: Ask HN: SQLite in Production? | news.ycombinator.com | 2024-04-07

Perhaps the OP means OsQuery: https://github.com/osquery/osquery

OsQuery is an SQLite extension consisting of hundreds of virtual tables

• trivy

  82 21,222 9.7 Go

  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  

Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16

Trivy Owner/Maintainer: Aqua Security Age: First released on GitHub on May 7th, 2019 License: Apache License 2.0 backward-compatible with tfsec

• macOS-Security-and-Privacy-Guide

  25 20,863 9.6 Python

  Guide to securing and improving privacy on macOS

Project mention: Hardening macOS | /r/MacOS | 2023-07-03

• Keycloak

  229 19,762 10.0 Java

  Open Source Identity and Access Management For Modern Applications and Services

  

Project mention: Securing Vue Apps with Keycloak | dev.to | 2024-04-03

In this article we'll be using Keycloak to secure a Vue.js Web application. We're going to leverage oidc-client-ts to integrate OIDC authentication with the Vue app. The oidc-client-ts package is a well-maintained and used library. It provides a lot of utilities for building out a fully production app.

• radare2

  9 19,558 9.9 C

  UNIX-like reverse engineering framework and command-line toolset

  

• authelia

  174 19,459 9.9 Go

  The Single Sign-On Multi-Factor portal for web apps

  

Project mention: Keycloak SSO with Docker Compose and Nginx | news.ycombinator.com | 2024-02-11

It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.

Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...

• keepassxc

  512 19,071 8.7 C++

  KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.

  

Project mention: KeePassXC Issue: [Passkeys] should never be exported in clear text | news.ycombinator.com | 2024-03-13

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Security related posts

• Show HN: Horus – An OSINT / digital forensics tool built in Python
  1 project | news.ycombinator.com | 17 Apr 2024
• How to Implement Rate Limiting in Express for Node.js
  4 projects | dev.to | 17 Apr 2024
• A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons
  6 projects | dev.to | 16 Apr 2024
• SQL Injection Isn't Dead Yet
  2 projects | dev.to | 15 Apr 2024
• Sandboxing All the Things with Flatpak and BubbleBox
  4 projects | news.ycombinator.com | 14 Apr 2024
• Tracking Snoop Dogg's $4M Crypto Wallet with My New Open Source Tool!
  1 project | dev.to | 13 Apr 2024
• Sensible configuration for NextDNS tracker and ad blocking
  1 project | news.ycombinator.com | 13 Apr 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 19 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com