Best Open Source security Libraries
A curated list of the most popular GitHub repositories tagged with security. Select any project to visualize its architecture and dive into the codebase using RepoMind's AI engine.
#1trimstray/the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
#2Hack-with-Github/Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
#3swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
#4Developer-Y/cs-video-courses
List of Computer Science courses with video lectures.
#5caddyserver/caddy
Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
#6x64dbg/x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
#7mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
#8QuivrHQ/quivr
Opiniated RAG for integrating GenAI in your apps 🧠 Focus on your product rather than the RAG. Easy integration in existing products with customisation! Any LLM: GPT4, Groq, Llama. Any Vectorstore: PGVector, Faiss. Any Files. Anyway you want.
#9GyulyVGC/sniffnet
Comfortably monitor your Internet traffic 🕵️♂️
#10aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
#11Lissy93/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
#12OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
#13trailofbits/algo
Set up a personal VPN in the cloud
#14StevenBlack/hosts
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
#15nginx/nginx
The official NGINX Open Source repository.
#16digitalocean/nginxconfig.io
⚙️ NGINX config generator on steroids 💉
#17hwdsl2/setup-ipsec-vpn
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
#18projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
#19OpenZeppelin/openzeppelin-contracts
OpenZeppelin Contracts is a library for secure smart contract development.
#20authelia/authelia
The Single Sign-On Multi-Factor portal for web apps, now OpenID Certified™
#21community-scripts/ProxmoxVE
Proxmox VE Helper-Scripts (Community Edition)
#22keepassxreboot/keepassxc
KeePassXC is a cross-platform community-driven port of the Windows application “KeePass Password Safe”.
#23Infisical/infisical
Infisical is the open-source platform for secrets, certificates, and privileged access management.
#24gitleaks/gitleaks
Find secrets with Gitleaks 🔑
#25trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
#26imthenachoman/How-To-Secure-A-Linux-Server
An evolving how-to guide for securing a Linux server.
#27cilium/cilium
eBPF-based Networking, Security, and Observability
#28shieldfy/API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
#29radareorg/radare2
UNIX-like reverse engineering framework and command-line toolset
#30osquery/osquery
SQL powered operating system instrumentation, monitoring, and analytics.
#31slimtoolkit/slim
Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
#32drduh/macOS-Security-and-Privacy-Guide
Community guide to securing and improving privacy on macOS.
#33matomo-org/matomo
Empowering People Ethically 🚀 — Matomo is hiring! Join us → https://matomo.org/jobs Matomo is the leading open-source alternative to Google Analytics, giving you complete control and built-in privacy. Easily collect, visualise, and analyse data from websites & apps. Star us on GitHub ⭐️ – Pull Requests welcome!
#34FallibleInc/security-guide-for-developers
Security Guide for Developers
#35getsops/sops
Simple and flexible tool for managing secrets
#36Lissy93/personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
#37chaitin/SafeLine
SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.
#38goauthentik/authentik
The authentication glue you need.
#39gravitational/teleport
The easiest, and most secure way to access and protect all of your infrastructure.
#40Atlas-OS/Atlas
🚀 An open and lightweight modification to Windows, designed to optimize performance, privacy and usability.
#41bee-san/RustScan
🤖 The Modern Port Scanner 🤖
#42bettercap/bettercap
The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.
#43rizinorg/cutter
Free and Open Source Reverse Engineering Platform powered by rizin
#44eosphoros-ai/DB-GPT
AI Native Data App Development framework with AWEL(Agentic Workflow Expression Language) and Agents
#45twpayne/chezmoi
Manage your dotfiles across multiple diverse machines, securely.
#46wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
#47zaproxy/zaproxy
The ZAP by Checkmarx Core project
#48cryptomator/cryptomator
Cryptomator for Windows, macOS, and Linux: Secure client-side encryption for your cloud storage, ensuring privacy and control over your data.
#49wifiphisher/wifiphisher
The Rogue Access Point Framework
#50Hacker0x01/hacker101
Source code for Hacker101.com - a free online web and mobile security class.