| 05/29 | 9 |
Let's Encrypt client and ACME library written in Go.
|
| 06/03 | 8 |
Vulnerability scanner for container images and filesystems.
|
| 06/02 | 8 |
High-performance authorization engine for modeling and enforcing fine-grained access control inspired by Google Zanzibar.
|
| 06/02 | 8 |
Cloud-native policy-as-code engine that scans infrastructure, containers, Kubernetes, cloud services, and code for vulnerabilities and misconfigurations.
|
| 06/02 | 8 |
Cloud-native graph-based query language for querying and discovering infrastructure assets across clouds, containers, and services.
|
| 06/01 | 8 |
Comprehensive security scanner for vulnerabilities, misconfigurations, and secrets across various targets.
|
| 06/01 | 8 |
Inspects Go source code for security issues by scanning the AST and SSA representations.
|
| 06/03 | 7 |
Proxy that secures and simplifies access to infrastructure with outbound-only connections and integrated SSO.
|
| 06/03 | 7 |
Privacy-first hybrid static-analysis tool for Python, TypeScript, and Go that detects dead code, secrets, and security vulnerabilities.
|
| 06/02 | 7 |
Securely share sensitive information with automatic expiration and deletion after a set number of views or duration.
|
| 06/02 | 7 |
Secret management platform for syncing secrets and configurations across teams and infrastructure while preventing leaks.
|
| 06/01 | 7 |
Powerful tool for discovering, classifying, validating, and analyzing leaked credentials.
|
| 06/01 | 7 |
Desktop proxy enabling scalable tool discovery, major token savings, and quarantine of malicious upstream servers for AI agents.
|
| 05/29 | 7 |
Platform for managing, structuring, visualizing, and sharing cyber threat intelligence using a STIX2-based knowledge schema.
|
| 05/28 | 7 |
Comprehensive security platform for managing and securing Kubernetes environments throughout the development and deployment lifecycle.
|
| 05/28 | 7 |
Community curated templates for the nuclei engine to identify security vulnerabilities in applications.
|
| 05/30 | 6 |
Enterprise-grade software supply chain security tool with real-time malicious package detection and policy as code support.
|
| 05/29 | 6 |
Common code library shared by Sigstore infrastructure and Go clients providing signing interfaces and OpenID Connect support.
|
| 05/29 | 6 |
Security scanner for AI agent skills and MCP servers that detects prompt injection, data exfiltration, and supply-chain attacks via local static analysis.
|
| 05/28 | 6 |
Automatically apply security best practices to GitHub Actions workflows, Dockerfiles, and dependency configurations.
|
| 06/03 | 5 |
Autonomous AI-driven penetration testing platform that performs multi-mode scans, discovers zero-day vulnerabilities, and generates PDF reports with live dashboard alerts.
|
| 06/02 | 5 |
End-to-end field-level encryption for TypeScript apps with zero-knowledge key management and searchable encrypted queries.
|
| 06/01 | 5 |
JavaScript libraries for interacting with Sigstore signing and verification services.
|
| 06/01 | 5 |
Transparent searchable encryption for existing PostgreSQL databases without SQL changes.
|
| 05/30 | 5 |
Set of over 1500 AppArmor profiles to confine core Linux system services, desktop environments, and user processes.
|
| 05/29 | 5 |
Tool for database anonymization and synthetic data generation.
|
| 05/28 | 5 |
Security-first personal AI assistant runtime providing multi-provider model access and multi-channel messaging integrations with local-first data control.
|
| 06/03 | 4 |
Bluetooth device discovery service built on BlueZ that tracks classic and LE devices and uses Ubertooth where available.
|
| 06/02 | 4 |
Edge virtualization engine providing hardware-assisted virtualization and resource partitioning for on-premises edge devices.
|
| 05/30 | 4 |
Modern automation platform for security and IT engineers with YAML templates, no-code workflows, lookup tables, and case management.
|
| 05/28 | 4 |
Collection of plugins that extend the Wazuh dashboard with UI panels for security events, integrity, vulnerability, and compliance monitoring.
|
| 06/02 | 3 |
Web-based badging system and criteria for assessing and encouraging best practices in FLOSS projects.
|
| 05/30 | 3 |
High-fidelity vulnerability scanner combining deterministic native scans and AI-driven agentic code audits.
|
| 05/29 | 3 |
Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.
|