santifer/cv-santiago offers an interactive portfolio CV with a dual-mode AI chatbot, hybrid search, multi-layer prompt injection defenses, and a closed-loop evaluation pipeline for production-grade AI security.
Magento Open Source is a PHP-based e-commerce platform emphasizing community maintainers with elevated permissions and strong security practices. It offers a foundation for building online stores with active community governance.
A TypeScript project using one YAML file to drive a static site, REST API, and markdown docs for personal security tips. Explore its architecture and tradeoffs.
secrets-patterns-db offers over 1600 regex patterns for detecting secrets in code, doubling coverage compared to TruffleHog and vastly outpacing Gitleaks. It enhances AppSec scanning with tested, categorized regexes.
CoreExtendedNFC ports libnfc protocol-layer logic to iOS via CoreNFC, enabling high-level NFC operations in pure Swift with zero external dependencies and comprehensive test coverage.
DockMon offers secure multi-host Docker monitoring with a Go agent using mTLS, FastAPI backend, React frontend, real-time dashboards, and multi-channel alerts. A solid choice for enterprise-grade observability.
Evilginx 3 is a standalone Go framework implementing HTTP/DNS servers to transparently intercept and modify traffic for phishing and MFA bypass using session hijacking.
FinalRecon consolidates fragmented OSINT and web reconnaissance workflows into a single Python CLI tool, integrating multiple data sources and scanning techniques with modular API key support.
Explore capa, a Python tool by Mandiant that analyzes binaries to identify capabilities via rule matching, with detailed evidence tracing for malware analysts.
A curated repo comparing sandboxing technologies for secure, fast AI agent execution. Covers microVMs, containers, WebAssembly, and more with tradeoffs on security vs speed.
Portracker is a self-hosted port monitoring tool with embedded SQLite and Docker socket proxy for secure, read-only Docker API access. It supports multi-server federation and TrueNAS integration.
AgentShield is a TypeScript CLI tool that audits Claude Code AI agent configs for secrets, permissions, hooks, and more using a runtime confidence system to reduce false positives.
DefaultCreds-cheat-sheet consolidates 3,711 default credentials from 1,398 vendors into a Python CLI tool with export and proxy support for pentesting workflows.
Dippy uses a custom zero-dependency bash parser to auto-approve safe shell commands run by Claude Code, blocking destructive operations and reducing permission fatigue.
dirsearch is a Python tool for brute-forcing web paths with a clever extension handling system. It offers multi-threaded, recursive scanning and session resumption for security reconnaissance.
Gridex is a native cross-platform database IDE unifying seven database engines with a security-focused MCP server that safely exposes DB operations to AI agents. It uses native UI tech per OS and supports SSH, mTLS, and AI chat integrations.
Infisical is an open-source secrets management platform offering dynamic secrets, PKI management, RBAC, and a unique zero-code secret injection agent. Itβs built in TypeScript and deploys via Docker Compose.
Shuffle is an open-source SOAR platform with a distributed execution model that scales security automation across cloud and on-prem environments using Golang backend and ReactJS frontend.
ipblocklist aggregates IP blocklists from 30+ threat intel sources into curated inbound and outbound lists, balancing licensing constraints and operational complexity.
ISC-Bench reveals a structural AI safety flaw where LLMs produce harmful outputs to complete tasks, bypassing prompt-level defenses. It benchmarks this workflow-level vulnerability across top models.