Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀. Learn more →
Top 23 Security Open-Source Projects
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.Project mention: Cloned my Drive to a larger Driver But can't use the Space | reddit.com/r/linux4noobs | 2022-09-06
A collection of various awesome lists for hackers, pentesters and security researchersProject mention: i'm literally so far behind compared to everyone else! | reddit.com/r/Hacking_Tutorials | 2022-11-27
Delete the most useless function ever: context switching.. Zigi monitors Jira and GitHub updates, pings you when PRs need approval and lets you take fast actions - all directly from Slack! Plus it reduces cycle time by up to 75%.
List of Computer Science courses with video lectures.Project mention: Looking for a YouTube playlist for learning compsci | reddit.com/r/cscareerquestions | 2022-11-10
There's no one playlist that will have all content but here's a good resource https://github.com/Developer-Y/cs-video-courses
Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPSProject mention: How to add free SSL to django Website hosted on AWS with Ubuntu Apache! | reddit.com/r/django | 2022-11-30
Hey OP, I don’t know if you have solved the issue, i usually use https://caddyserver.com which takes care of ssl generation automatically. Check if that helps for you :)
A list of useful payloads and bypass for Web Application Security and Pentest/CTFProject mention: I am doing the eCPPT | reddit.com/r/eLearnSecurity | 2022-11-29
An open-source x64/x32 debugger for windows.Project mention: Is there a tool that can show you an EIP trace of a game? | reddit.com/r/REGames | 2022-11-30
If you want to also do dynamic analysis (debugging) you can use https://x64dbg.com.
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.Project mention: Help with random values in query string | reddit.com/r/scrapy | 2022-12-01
MITM proxy or ZAP are good at those kinds of tricks
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.
Metasploit FrameworkProject mention: Using metasploit to stage your own payloads | dev.to | 2022-12-01
Take a look at the source for stager_sock_reverse - the stager for linux/x64/shell/reverse_tcp.
Set up a personal VPN in the cloudProject mention: What’s the best selfhosted VPN? | reddit.com/r/selfhosted | 2022-11-29
Automatic SQL injection and database takeover toolProject mention: sqlmap | reddit.com/r/HackProtectSlo | 2022-09-26
Namestitev: git clone --depth 1 https://github.com/sqlmapproject/sqlmap.git sqlmap-dev Uporaba: python sqlmap.py -h python sqlmap.py -hh
⚙️ NGINX config generator on steroids 💉Project mention: On Hacktoberfest | reddit.com/r/programming | 2022-10-31
It'd be weird to exclude any repositories, even the sponsors' ones. Like, sure, it's an ad for them (so is wearing a t-shirt with their logo), but at the same time, they maintain some cool projects, like digitalocean/nginxconfig.io. It'd be a shame if people who genuinely want to improve this tool wouldn't get rewarded for that, only because it's DigitalOcean's.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.Project mention: Permissions (access control) in web apps | dev.to | 2022-11-30
OWasp cheat sheet on how to do ACL in Web App.
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.Project mention: Interesting Confirmation on Apple Wanting to Collect 30% on Decentralized Transactions... Not Possible. | reddit.com/r/Superstonk | 2022-12-01
Not bad.. I am too stingy to operate a Raspberry 24/7 (would cost me somewhere around 5€ per month on electricity alone) so I'm just using a modified hosts list on my operating systems: https://github.com/StevenBlack/hosts and UBlockMatrix
OpenZeppelin Contracts is a library for secure smart contract development.Project mention: Idea: A smart contract that will lock your crypto until x day, so it can only be spent when kids grow older | reddit.com/r/CryptoCurrency | 2022-11-21
Example : https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/governance/TimelockController.sol
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2Project mention: IIIT JABALPUR HOSTEL'S ETHERNET | reddit.com/r/JEENEETards | 2022-11-16
Guide to securing and improving privacy on macOSProject mention: “Confirm that you’re not a robot” malware | reddit.com/r/MacOS | 2022-11-28
SQL powered operating system instrumentation, monitoring, and analytics.Project mention: Osquery | news.ycombinator.com | 2022-11-26
Checklist of the most important security countermeasures when designing, testing, and releasing your APIProject mention: API Security Checklist | reddit.com/r/devopspro | 2022-11-27
UNIX-like reverse engineering framework and command-line toolsetProject mention: Introducing YaRadare - YARA scanning for cloud-native apps (containers) | reddit.com/r/cybersecurity | 2022-07-07
Liberating Web Analytics. Star us on Github? +1. Matomo is the leading open alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!Project mention: Do all sites with analytics need cookie warnings? | reddit.com/r/webdev | 2022-11-17
Matomo analytics can be set to be GDPR compliant without the need of user consent (so CCPA compliant too, I guess). https://matomo.org/
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)Project mention: Standard container sizes | reddit.com/r/kubernetes | 2022-11-11
Anyone tried using https://github.com/docker-slim/docker-slim To minify an image?..
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and moreProject mention: Is OPA Gatekeeper the best solution for writing policies for k8s clusters? | reddit.com/r/kubernetes | 2022-11-10
The Single Sign-On Multi-Factor portal for web appsProject mention: A way for the users to connect to all services seamlesly ? | reddit.com/r/unRAID | 2022-11-29
Write Clean Python Code. Always.. Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
Security related posts
Large (huge) performance boost by completely disabling Pocket. It is like I have a new, different web browser. - I tested this in stable, beta, developer, and nightly.
1 project | reddit.com/r/firefox | 1 Dec 2022
Using metasploit to stage your own payloads
1 project | dev.to | 1 Dec 2022
crypto: NEW Data - star count:372.0
1 project | reddit.com/r/algoprojects | 1 Dec 2022
1 project | reddit.com/r/firewalla | 1 Dec 2022
What are some fun cybersecurity-related coding projects?
2 projects | reddit.com/r/cybersecurity | 30 Nov 2022
Securely share images
5 projects | reddit.com/r/selfhosted | 30 Nov 2022
Help with random values in query string
2 projects | reddit.com/r/scrapy | 1 Dec 2022
A note from our sponsor - Scout APM
scoutapm.com | 1 Dec 2022
What are some of the best open-source Security projects? This list will help you:
|21||Lean and Mean Docker containers||15,525|