#
Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
Here are 577 public repositories matching this topic...
How to improve NGINX performance, security, and other important things.
nginx
http
security
snippets
performance
reference
notes
https
best-practices
handbook
ssllabs
nginx-proxy
cheatsheet
openresty
tengine
hacks
nginx-configuration
-
Updated
Jun 9, 2020 - Shell
A collection of android security related resources
-
Updated
Jun 12, 2020 - Shell
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
security
auditing
cloud
aws-lambda
incident-response
iam
dfir
cloudtrail
aws-infrastructure
security-tools
aws-inventory
-
Updated
Jun 11, 2020 - Shell
Docker image to run an IPsec VPN server, with IPsec/L2TP and Cisco IPsec
-
Updated
Jun 8, 2020 - Shell
This is a multi-use bash script for Linux systems to audit wireless networks.
linux
bash
enterprise
security
hacking
wireless
aircrack
handshake
pentesting
denial-of-service
wps
sslstrip
beef
evil-twin
sniffing
pixie-dust
wep
5ghz
wpa-wpa2
pmkid
-
Updated
Jun 14, 2020 - Shell
shuffle2
commented
Apr 23, 2020
https://github.com/pirate/wireguard-docs/blob/master/README.md#dns-2
Currently it is described as if the setting will be somehow pushed/shared with peers. This is not the case. Instead, DNS servers listed in this key will just be populated on the local interface.
You don't have the time to watch all the WWDC session videos yourself? No problem I extracted the gist for you 🥳
macos
swift
security
ios
design
apple
networking
authentication
tvos
watchos
safari
session
nfc
videos
wwdc
darkmode
universallinks
swiftui
notarization
ipados
-
Updated
Apr 30, 2020 - Shell
Create On Demand Disposable OpenVPN Endpoints on AWS.
-
Updated
Apr 4, 2020 - Shell
sathish804
commented
Aug 26, 2019
museadmin
commented
Nov 23, 2018
At the moment EC2 audit is raising an issue that I cannot investigate because of the lack of detail:
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has an exposed enpoint
Warning: VPC has en exposed enpoint
Warni
OSX and iOS related security tools
-
Updated
Sep 16, 2019 - Shell
Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.
-
Updated
Feb 10, 2020 - Shell
WireGuard VPN server installer
-
Updated
Feb 16, 2020 - Shell
A Suricata based IDS/IPS distro
-
Updated
Jun 2, 2020 - Shell
grep rough audit - source code auditing tool
-
Updated
May 26, 2020 - Shell
woodruffw
commented
Jan 27, 2020
.well-known (RFC) is becoming an increasingly popular destination for stashing site-wide metadata. Some of that metadata is relevant to site security or may unintentionally leak information, so we should scan it.
Some starting points:
- Presence of/interesting things in an MTA-STS policy (RFC)
- This might be
Open
WAF detection
5
7
Hardening Ubuntu. Systemd edition.
shell
security
ubuntu
systemd
hardening
ubuntu-server
security-hardening
information-security
security-automation
security-tools
security-compliance
-
Updated
Jun 14, 2020 - Shell
Improve your security and privacy by blocking ads, tracking and malware domains.
shell
dns
security
tracking
privacy
protection
malware
ads
ad-blocker
unified-hosts
hosts
dnsmasq
adblock
ransomware
blocker
hostsfile
advertisements
trackers
adblocker
trojans
-
Updated
May 22, 2020 - Shell
6
smp4488
commented
Feb 14, 2019
So I took a shot at trying to get this to work with IP V6 addresses with no luck. If I disable the ufw service i'm able to access my site using the V6 address, but when I enable ufw the connection times out. I found /etc/ufw/after6.rules and tried to modify it to work, but I must be doing something wrong. My guess is it's something with the V6 subnet.
# BEGIN UFW AND DOCKER
*filter
:ufw6-u
Kubernetes security notes and best practices
kubernetes
checklist
security
best-practices
kubernetes-cluster
attacker
vulnerabilities
kubernetes-security
-
Updated
Apr 24, 2020 - Shell
Scripts built from our Guide to User Data Security
-
Updated
Oct 21, 2018 - Shell
Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP. https://www.whonix.org
open-source
security
encryption
irc
debian
virtualization
anonymity
tor-network
i2p
physical-isolation
hide-real-ip
privacy-protection
dns-leak-prevention
-
Updated
Jun 14, 2020 - Shell
Useful tools and scripts during Penetration Testing engagements
-
Updated
Mar 22, 2020 - Shell
linux
shell
bash
security
tool
configuration
linux-distribution
ddos-attacks
shell-script
shellscript
shell-scripts
linux-app
bash-script
linux-desktop
linux-server
linux-security-module
anti-ddos
security-tools
linux-security
anti-ddos-protection
-
Updated
Jan 19, 2020 - Shell
Transparent proxy through Tor for Kali Linux OS
-
Updated
Mar 11, 2020 - Shell
- Wikipedia
- Wikipedia
Security apps
WhiteSource Bolt
Detect open source vulnerabilities in real time with suggested fixes for quick remediation
Renovate
Keep dependencies up-to-date with automated Pull Requests
BackHub
Reliable GitHub repository backup, set up in minutes
Snyk
Find, fix (and prevent!) known vulnerabilities in your code
GuardRails
GuardRails provides continuous security feedback for modern development teams
Dependabot Preview
Automated dependency updates for Ruby, JavaScript, Python, Go, PHP, Elixir, Rust, Java and .NET
Sonatype DepShield
Monitor your open source components for security vulnerabilities - goodbye muda, hello kaizen
LGTM
Find and prevent zero-days and other critical bugs, with customizable alerts and automated code review
It'd be helpful if there was a check for ELB and ALBs that have either no listeners or no instances in their target pool. The check is similar to an unused security group although their are more financial penalties for having idle ELB and ALBs.