Search Results for "security" - Page 47
Sort By:
Showing 10950 open source projects for "security"
View related business solutions-
Forever Free Full-Stack Observability | Grafana CloudBuilt on open standards like Prometheus and OpenTelemetry, Grafana Cloud includes Kubernetes Monitoring, Application Observability, Incident Response, plus the AI-powered Grafana Assistant. Get started with our generous free tier today.
-
Secure File Transfer for Windows with Cerberus by RedwoodCerberus supports unlimited users and connections on a single IP, with built-in encryption, 2FA, and a browser-based web client — all deployable in under 15 minutes with a 25-day free trial.
-
1
Mysti
AI coding dream team of agents for VS Code
...Instead of replacing the tools developers already use, it integrates with popular CLI-based coding assistants and routes work through a single, consistent UI inside the editor. The experience is organized around “personas” that change how the assistant approaches a task, such as architecture, debugging, security review, performance tuning, or refactoring, which helps structure the AI’s behavior for different goals. It also supports a brainstorm-style workflow where using more than one backend can produce competing solutions and then synthesize a best answer. Mysti is designed for speed and convenience with quick actions, toolbar persona switching, and a saved conversation history so work is not lost between sessions. -
2
Secure OpenClaw
A personal 24x7 AI assistant like OpenClaw
...It leverages Claude and other models to interpret messages and is built to manage persistent memory, scheduled reminders, and integration with hundreds of third-party apps to automate workflows without leaving your chat. The design emphasizes security and autonomy by allowing you to maintain ownership of your data and run the system within your trusted environment, while still harnessing advanced AI capabilities. -
3
Signal Server
Server supporting the Signal Private Messenger applications on Android
...Although cryptographic operations and message confidentiality are managed by the client side using the Signal Protocol, the server ensures message routing, user registration, and group updates without having access to the decrypted contents. Its codebase is public to ensure transparency and auditability for a security-focused community willing to inspect how message metadata and delivery mechanisms are implemented. -
4
Lumo Android App
Android application for Proton Lumo
Lumo Android App is the official Android client implementation of Lumo, a privacy-first AI assistant created by Proton that lets users interact with an intelligent chatbot securely and confidentially on mobile devices. Lumo is designed so that every conversation remains encrypted and private, meaning chats are not logged, tracked, or used to train external large language models, and all interactions are protected with zero-access encryption so only the user can read them. The Android app... -
Custom VMs From 1 to 96 vCPUs With 99.95% UptimeLive migration and automatic failover keep workloads online through maintenance. One free e2-micro VM every month.
-
5
Proton Drive for iOS
iOS client for end-to-end encrypted cloud storage
Proton Drive for iOS is the official iPhone and iPad client repository for Proton’s end-to-end encrypted cloud storage service, intended to securely back up and share files within the Proton ecosystem. The project is built around Apple’s native toolchain and is designed to be opened as an Xcode workspace, reflecting a production-grade iOS app structure with standard signing and provisioning requirements. It includes a stated trust model section, reinforcing that the client is meant to be... -
6
Kohaku
Privacy-first tooling for the Ethereum ecosystem
Kohaku is an open-source initiative by the Ethereum Foundation aimed at bringing privacy-by-default tooling into the Ethereum ecosystem. It comprises an SDK of privacy primitives, a reference wallet implementation (browser extension), and a collaboration platform for existing wallet teams to adopt composable privacy building blocks. The project recognizes that privacy leaks in Ethereum go beyond just on-chain visibility — they include RPC endpoints exposing IPs, address reuse across dApps,... -
7
Best-websites-a-programmer-should-visit
Some useful websites for programmers
...Rather than being a random bookmark dump, it organizes resources into practical categories such as algorithms, competitive programming, reading materials, podcasts, newsletters, interview prep, design, security, performance, and more. The list aims to reduce the “what should I learn next?” friction by pointing you to high-signal, time-tested tutorials, references, and tools. Because it spans beginner to advanced topics, you can use it as an on-ramp when starting out and as a roadmap for deeper specialization later. It also surfaces non-code essentials like productivity, writing, and career guidance, acknowledging that strong developers need more than syntax. ... -
8
JsAction
JsAction is a small event delegation library
JSAction is a JavaScript framework developed by Google that provides a structured, event-driven architecture for managing user interactions in large-scale web applications. It simplifies event handling by declaratively binding actions to DOM elements through HTML attributes, enabling clean separation between markup and behavior. JSAction helps improve performance, maintainability, and reliability by minimizing the use of inline scripts and global event listeners. It is especially useful in... -
9
Honggfuzz
Security oriented software fuzzer
honggfuzz is a general-purpose, high-performance fuzzer that mixes coverage feedback with practical crash triage to uncover memory-safety and logic bugs. It supports multiple fuzzing modes—stdin, file, and networking—so targets can be exercised the same way they run in production. Instrumentation via compiler hooks or hardware/perf counters guides mutations toward previously unseen edges, while persistent mode keeps the target process alive to amortize startup costs. The tool integrates... -
Train ML Models With SQL You Already KnowBuild and deploy ML models using familiar SQL. Automate data prep with built-in Gemini. Query 1 TB and store 10 GB free monthly.
-
10
syzkaller
syzkaller is an unsupervised coverage-guided kernel fuzzer
syzkaller is Google’s coverage-guided, feedback-driven kernel fuzzer designed to uncover reliability and security bugs in operating system kernels at scale. It automatically generates, mutates, and minimizes system call programs, then drives them through a specialized executor (syz-executor) to exercise deep kernel paths. The system integrates tightly with sanitizers such as KASAN, KMSAN, KCSAN, and UBSAN to surface memory safety, concurrency, and undefined behavior issues with actionable reports. ... -
11
LitterBox
A secure sandbox environment for malware developers and red teamers
...The README frames typical use cases: testing evasion, validating detections, analyzing behavior, and keeping sensitive tooling in-house. Repo metadata and author pages highlight an active security-tools ecosystem around the maintainer, with CI and pull-request activity suggesting ongoing development. The project positions itself as a safe proving ground to reduce surprises in the field while minimizing operational risk. For teams exploring MCP integrations, notes mention pairing with LLM agents for assisted analysis. -
12
Granite 3.0 Language Models
New set of lightweight state-of-the-art, open foundation models
...Documentation highlights the capability mix (reasoning, tool use, code) and points to model artifacts and guidance for evaluation. Activity on the project shows an evolving codebase with open pull requests and standard GitHub project structure for issues and security visibility. In practice, this is a hub for acquiring Granite 3.0 variants and understanding how to integrate them into applications. -
13
PowerUpSQL
A PowerShell toolkit for attacking SQL Server
...It bundles a wide range of functions that help enumerate SQL Server instances, configuration settings, and potentially risky features so operators and testers can quickly understand an instance's security posture. The project is aimed at internal penetration testers and red-teamers but is also useful for database administrators and defenders who want to inventory SQL Server attack surface and hunt for misconfigurations. PowerUpSQL can surface things like weak configuration flags, dangerous surface (for example, features that may enable code execution from SQL), credential material exposed in configuration, and cross-instance trust relationships such as linked servers. ... -
14
Ubicloud
Open source alternative to AWS. Elastic compute, block storage
...Ubicloud emphasizes transparency and openness: APIs, orchestration, and management layers are open, enabling users to audit and customize their infrastructure instead of relying on proprietary platforms. The system is designed to run workloads in a multi-tenant fashion, providing container and VM orchestration, security isolation, and billing mechanisms. It also addresses portability, encouraging workloads that can move seamlessly between providers in the network. Ultimately, Ubicloud envisions reducing vendor lock-in and creating a more democratic cloud marketplace by combining open-source infrastructure management with federated governance. -
15
Clouddriver
Read and write operations across cloud providers
Clouddriver is the cloud-provider integration layer of Spinnaker, exposing a uniform API and cache for infrastructure resources across multiple clouds. It discovers and tracks entities such as server groups, load balancers, security groups, images, and instances, normalizing them so higher-level services can reason consistently. The service also brokers mutating operations—like creating server groups or resizing clusters—by translating Spinnaker requests into provider-specific calls. A scalable caching subsystem maintains near-real-time views of accounts and regions to keep UI and pipelines responsive. ... -
16
Vanilla.PDF
Cross-platform SDK for creating and modifying PDF documents
...Vanilla.PDF supports advanced PDF features such as adding CMS (PKCS#7) digital signatures, modifying content streams and metadata, and working with encryption and permissions based on standard PDF security models. It includes tools for parsing PDF internals like cross-reference tables and objects, providing fine-grained document analysis capabilities. The project is unit-tested with continuous integration pipelines, supporting sanitizers for enhanced code quality and stability. -
17
APIPark
APIPark is the #1 open-source AI Gateway and Developer Portal
APIPark is an open-source, all-in-one AI gateway and API developer portal, that helps developers and enterprises easily manage, integrate, and deploy AI services. No matter which AI model you use, APIPark provides a one-stop integration solution. It unifies the management of all authentication information and tracks the costs of API calls. Standardize the request data format for all AI models. When switching AI models or modifying prompts, it won’t affect your app or microservices,... -
18
Inferable
Inferable is a developer-first AI automation platform
Create your first AI automation in 60 seconds. Inferable seamlessly integrates with your existing codebase and infrastructure, allowing you to create powerful AI automation without compromising on control or security. Works with your existing codebase. Integrates with your existing services via opt-in. Enforce determinism through source code. Create and manage automation programmatically. You own the computer, in your own infrastructure. Inferable comes out of the box with delightful DX to kickstart your AI automation journey. We bring the best in class vertically integrated LLM orchestration. ... -
19
OpenRewrite
Automated mass refactoring of source code
The OpenRewrite project is a mass source code refactoring ecosystem. Reduce 1000s of hours of static code analysis fixes to minutes. Turn a four-month migration project into four hours of work. Patch security vulnerabilities across 100s of repositories at once. OpenRewrite automates code refactoring and remediation tasks for you, enabling developers to deliver more business value. OpenRewrite's refactoring engine and recipes will always be open-source. Build tool plugins like OpenRewrite Gradle Plugin and OpenRewrite Maven Plugin help you run these recipes on one repository at a time. ... -
20
DefraDB
DefraDB is a Peer-to-Peer Edge Database
...It's the core data storage system for the Source Network Ecosystem, built with IPFS/IPLD, LibP2P, CRDTs, and Semantic web3 properties. DefraDB is a user-centric database that prioritizes data ownership, personal privacy, and information security. Its data model, powered by the convergence of MerkleCRDTs and the content-addressability of IPLD, enables a multi-write-master architecture. It features DQL, a query language compatible with GraphQL but providing extra convenience. By leveraging peer-to-peer networking it can be deployed nimbly in novel topologies. Access control is determined by a relationship-based DSL, supporting document or field-level policies, secured by the SourceHub network. ... -
21
SCS
HTTP Session Management for Go
...Easy to extend and customize. Communicate session tokens to/from clients in HTTP headers or request/response bodies. SCS implements a session management pattern following the OWASP security guidelines. Session data is stored on the server, and a randomly-generated unique session token (or session ID) is communicated to and from the client in a session cookie. Most applications will use the LoadAndSave() middleware. This middleware takes care of loading and committing session data to the session store, and communicating the session token to/from the client in a cookie as necessary. -
22
Elasticsearch Exporter
Elasticsearch stats exporter for Prometheus
Prometheus exporter for various metrics about Elasticsearch, written in Go. The exporter fetches information from an Elasticsearch cluster on every scrape, therefore having a too short scrape interval can impose load on ES master nodes, particularly if you run with --es.all and --es.indices. We suggest you measure how long fetching /_nodes/stats and /_all/_stats takes for your ES cluster to determine whether your scraping interval is too short. As a last resort, you can scrape this exporter... -
23
jwt-go
Go of JSON Web Tokens
...So we will support a major version of Go until there are two newer major releases. We no longer support building jwt-go with unsupported Go versions, as these contain security vulnerabilities that will not be fixed. In short, it's a signed JSON object that does something useful (for example, authentication). It's commonly used for Bearer tokens in Oauth 2. A token is made of three parts, separated by .'s. The first two parts are JSON objects, that have been base64url encoded. The last part is the signature, encoded the same way. ... -
24
Octokit
Ruby toolkit for the GitHub API
...Access tokens have access scopes that allow for more granular access to API resources. For instance, you can grant a third party access to your gists but not your private repositories. Two-Factor Authentication brings added security to the account by requiring more information to login. -
25
Slither
Static Analyzer for Solidity
...Slither is fast and precise; it can find real vulnerabilities in a few seconds without user intervention. It is highly customizable and provides a set of APIs to inspect and analyze Solidity code easily. We use it in all of our security reviews. Now you can integrate it into your code-review process. We are open sourcing the core analysis engine of Slither. This core provides advanced static-analysis features, including an intermediate representation (SlithIR) with taint tracking capabilities on top of which complex analyses (“detectors”) can be built.
