API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
lunasec-io/lunasec688日前1.4k
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
heroku/react-refetch690日前3.4k
A simple, declarative, and composable way to fetch data for React components
proyecto26/react-native-inappbrowser688日前1.2k
📱InAppBrowser for React Native (Android & iOS) 🤘
react-native-google-signin/google-signin688日前3.0k
Google Sign-in for your React Native applications
robsontenorio/vue-api-query694日前1.6k
💎 Elegant and simple way to build requests for REST API
dgrubelic/vue-authenticate702日前1.4k
Simple Vue.js authentication library
public-apis/public-apis685日前279.6k
A collective list of free APIs
neovim/neovim685日前74.0k
Vim-fork focused on extensibility and usability
tiangolo/fastapi685日前68.3k
FastAPI framework, high performance, easy to learn, fast to code, ready for production
hoppscotch/hoppscotch685日前58.9k
👽 Open source API development ecosystem - https://hoppscotch.io
strapi/strapi685日前58.9k
🚀 Strapi is the leading open-source headless CMS. It’s 100% JavaScript/TypeScript, fully customizable and developer-first.
ocornut/imgui685日前54.1k
Dear ImGui: Bloat-free Graphical User interface for C++ with minimal dependencies
slatedocs/slate686日前35.7k
Beautiful static documentation for your API
Kong/insomnia685日前32.4k
The open-source, cross-platform API client for GraphQL, REST, WebSockets, SSE and gRPC. With Cloud, Local and Git storage.
trpc/trpc685日前31.7k
🧙♀️ Move Fast and Break Nothing. End-to-end typesafe APIs made easy.
hasura/graphql-engine685日前30.7k
Blazing fast, instant realtime GraphQL APIs on your DB with fine grained access control, also trigger webhooks on database events.
ccxt/ccxt685日前30.5k
A JavaScript / TypeScript / Python / C# / PHP cryptocurrency trading API with support for more than 100 bitcoin/altcoin exchanges
Binaryify/NeteaseCloudMusicApi685日前30.3k
网易云音乐 Node.js API service
QuivrHQ/quivr685日前28.0k
Your GenAI Second Brain 🧠 A personal productivity assistant (RAG) ⚡️🤖 Chat with your docs (PDF, CSV, ...) & apps using Langchain, GPT 3.5 / 4 turbo, Private, Anthropic, VertexAI, Ollama, LLMs, that you can share with users ! Local & Private alternative to OpenAI GPTs & ChatGPT powered by retrieval-augmented generation.
littlecodersh/ItChat685日前24.8k
A complete and graceful API for Wechat. 微信个人号接口、微信机器人及命令行微信,三十行即可自定义个人号机器人。
directus/directus685日前24.7k
The Modern Data Stack 🐰 — Directus is an instant REST+GraphQL API and intuitive no-code data collaboration app for any SQL database.
PostgREST/postgrest685日前21.8k
REST API for any Postgres database
bitwarden/server685日前14.0k
The core infrastructure backend (API, database, Docker, etc).
getsops/sops685日前14.7k
Simple and flexible tool for managing secrets
apereo/cas685日前10.5k
Apereo CAS - Identity & Single Sign On for all earthlings and beyond.
prowler-cloud/prowler685日前9.2k
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
pedroslopez/whatsapp-web.js685日前12.9k
A WhatsApp client library for NodeJS that connects through the WhatsApp Web browser app
yagop/node-telegram-bot-api685日前7.8k
Telegram Bot API for NodeJS
radareorg/radare2685日前19.3k
UNIX-like reverse engineering framework and command-line toolset
facebook/pyre-check685日前6.6k
Performant type-checking for python.
ajinabraham/nodejsscan687日前2.3k
nodejsscan is a static security code scanner for Node.js applications.
crev-dev/cargo-crev685日前2.0k
A cryptographically verifiable code review system for the cargo (Rust) package manager.
bit4woo/python_sec689日前1.3k
python安全和代码审计相关资料收集 resource collection of python security and code review
x64dbg/x64dbg685日前42.7k
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
monero-project/monero685日前8.4k
Monero: the secure, private, untraceable cryptocurrency
sammchardy/python-binance685日前5.6k
Binance Exchange API python implementation for automated trading
kemalcr/kemal689日前3.6k
Fast, Effective, Simple Web Framework
Developer-Y/cs-video-courses685日前63.4k
List of Computer Science courses with video lectures.
apex/up687日前8.8k
Deploy infinitely scalable serverless apps, apis, and sites in seconds to AWS.
pennersr/django-allauth685日前8.7k
Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.
jsdoc/jsdoc686日前14.6k
An API documentation generator for JavaScript.
oldratlee/translations686日前6.8k
🐼 Chinese translations for classic software development resources
firezone/firezone685日前6.0k
WireGuard®-based zero trust access platform that supports OIDC authentication, user/group sync, and requires zero firewall configuration.
absinthe-graphql/absinthe686日前4.2k
The GraphQL toolkit for Elixir
ueberauth/guardian686日前3.4k
Elixir Authentication
unicorn-engine/unicorn685日前7.0k
Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)
microsoft/rushstack686日前5.5k
Monorepo for tools developed by the Rush Stack community
OpenZeppelin/openzeppelin-contracts685日前23.7k
OpenZeppelin Contracts is a library for secure smart contract development.
web3/web3.js685日前18.3k
Collection of comprehensive TypeScript libraries for Interaction with the Ethereum JSON RPC API and utility functions.
Consensys/smart-contract-best-practices686日前7.2k
A guide to smart contract security best practices
capstone-engine/capstone685日前6.9k
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), BPF, Ethereum VM, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
jaredhanson/passport685日前22.2k
Simple, unobtrusive authentication for Node.js.
graphile/crystal685日前12.3k
🔮 Graphile's Crystal Monorepo; home to Grafast, PostGraphile, pg-introspection, pg-sql2 and much more!
arkenfox/user.js685日前8.8k
Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening
jofpin/trape686日前7.8k
People tracker on the Internet: OSINT analysis and research tool by Jose Pino
michenriksen/gitrob685日前5.8k
Reconnaissance tool for GitHub organizations
eth0izzle/shhgit689日前3.8k
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
caddyserver/caddy685日前52.3k
Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
simplex-chat/simplex-chat685日前5.0k
SimpleX - the first messaging platform operating without user identifiers of any kind - 100% private by design! iOS, Android and desktop apps 📱!
hjdhjd/homebridge-unifi-protect685日前1.3k
:video_camera: Complete HomeKit integration for all UniFi Protect device types with full support for most features including HomeKit Secure Video, and more. https://homebridge.io
mitmproxy/mitmproxy684日前33.6k
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
go-chi/chi684日前16.6k
lightweight, idiomatic and composable router for building Go HTTP services
Peergos/Peergos685日前1.8k
A p2p, secure file storage, social network and application protocol
paularmstrong/normalizr685日前21.0k
Normalizes nested JSON according to a schema
tiangolo/full-stack-fastapi-postgresql684日前14.6k
Full stack, modern web application generator. Using FastAPI, PostgreSQL as database, Docker, automatic HTTPS and more.
r-spacex/SpaceX-API684日前10.2k
:rocket: Open Source REST API for SpaceX launch, rocket, core, capsule, starlink, launchpad, and landing pad data.
simov/grant687日前4.0k
OAuth Proxy
animir/node-rate-limiter-flexible685日前2.8k
Atomic counters and rate limiting tools. Limit resource access at any scale.
ladjs/lad687日前2.3k
Node.js framework made by a former @expressjs TC and @koajs team member. Built for @forwardemail, @spamscanner, @breejs, @cabinjs, and @lassjs.
tymondesigns/jwt-auth685日前11.1k
🔐 JSON Web Token Authentication for Laravel & Lumen
matomo-org/matomo684日前18.8k
Liberating Web Analytics. Star us on Github? +1. Matomo is the leading open alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. We love Pull Requests!
jedisct1/piknik693日前2.4k
Copy/paste anything over the network.
trimstray/nginx-admins-handbook684日前13.3k
How to improve NGINX performance, security, and other important things.
JFreegman/toxic691日前1.1k
A Tox-based instant messaging and video chat client
authorizerdev/authorizer684日前1.3k
Your data, your control. Fully open source, authentication and authorization. No lock-ins. Deployment in Railway in 120 seconds || Spin a docker image as a micro-service in your infra. Built in login page and Admin panel out of the box.
ImranR98/Obtainium684日前4.2k
Get Android App Updates Directly From the Source.
trevorhobenshield/twitter-api-client684日前1.2k
Implementation of X/Twitter v1, v2, and GraphQL APIs
yokoffing/Betterfox684日前3.2k
Firefox user.js for speed, privacy, and security. Your favorite browser, but better.
build-trust/ockam684日前4.3k
Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
ever-co/ever-traduora684日前1.9k
Ever® Traduora™ - Open Translation Management Platform
nmap/nmap684日前8.9k
Nmap - the Network Mapper. Github mirror of official SVN repository.
vector4wang/spring-boot-quick684日前2.4k
:herb: 基于springboot的快速学习示例,整合自己遇到的开源框架,如:rabbitmq(延迟队列)、Kafka、jpa、redies、oauth2、swagger、jsp、docker、k3s、k3d、k8s、mybatis加解密插件、异常处理、日志输出、多模块开发、多环境打包、缓存cache、爬虫、jwt、GraphQL、dubbo、zookeeper和Async等等:pushpin:
janishar/nodejs-backend-architecture-typescript684日前2.5k
Node.js Backend Architecture Typescript - Learn to build a backend server for production ready blogging platform like Medium and FreeCodeCamp. Main Features: Role based, Express.js, Mongoose, Redis, Mongodb, Joi, Docker, JWT, Unit Tests, Integration Tests.
developit/express-es6-rest-api690日前2.5k
:battery: Starter project for an ES6 RESTful Express API.
danielfsousa/express-rest-boilerplate686日前2.3k
⌛️ Express starter for building RESTful APIs
osquery/osquery685日前20.9k
SQL powered operating system instrumentation, monitoring, and analytics.
cilium/cilium684日前17.9k
eBPF-based Networking, Security, and Observability
bettercap/bettercap684日前15.4k
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
linkedin/school-of-sre684日前7.6k
At LinkedIn, we are using this curriculum for onboarding our entry-level talents into the SRE role.
astrit/css.gg684日前9.5k
700+ Pure CSS, SVG, PNG & Figma UI Icons Available in SVG Sprite, styled-components, NPM & API and 6000 glyphs
exiftool/exiftool684日前2.7k
ExifTool meta information reader/writer
HariSekhon/DevOps-Bash-tools685日前2.3k
1000+ DevOps Bash Scripts - AWS, GCP, Kubernetes, Docker, CI/CD, APIs, SQL, PostgreSQL, MySQL, Hive, Impala, Kafka, Hadoop, Jenkins, GitHub, GitLab, BitBucket, Azure DevOps, TeamCity, Spotify, MP3, LDAP, Code/Build Linting, pkg mgmt for Linux, Mac, Python, Perl, Ruby, NodeJS, Golang, Advanced dotfiles: .bashrc, .vimrc, .gitconfig, .screenrc, tmux..
hexsum/Mojo-Webqq707日前1.7k
【重要通知:WebQQ将在2019年1月1日停止服务,此项目目前已停止维护,感谢大家四年来的一路陪伴】使用Perl语言(不会没关系)编写的smartqq/webqq客户端框架(非GUI),可通过插件提供基于HTTP协议的api接口供其他语言或系统调用
pirate/wireguard-docs684日前4.3k
📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients.
GyulyVGC/sniffnet684日前12.9k
Application to comfortably monitor your Internet traffic 🕵️♂️
RustScan/RustScan684日前11.7k
🤖 The Modern Port Scanner 🤖
evilsocket/opensnitch684日前9.4k
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
gravitl/netmaker684日前8.7k
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
apache/apisix684日前13.4k
The Cloud-Native API Gateway
jopohl/urh684日前10.2k
Universal Radio Hacker: Investigate Wireless Protocols Like A Boss
dicebear/dicebear684日前6.4k
DiceBear is an avatar library for designers and developers. 🌍
a54552239/pearProject695日前1.8k
pear,梨子,轻量级的在线项目/任务协作系统,远程办公协作
presidentbeef/brakeman684日前6.9k
A static analysis security vulnerability scanner for Ruby on Rails applications
hwdsl2/setup-ipsec-vpn684日前23.6k
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
OpenAPITools/openapi-generator684日前19.1k
OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec (v2, v3)
swisskyrepo/PayloadsAllTheThings684日前55.4k
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
trailofbits/algo684日前28.1k
Set up a personal VPN in the cloud
digitalocean/nginxconfig.io684日前26.8k
⚙️ NGINX config generator on steroids 💉
OWASP/CheatSheetSeries684日前25.8k
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
StevenBlack/hosts684日前24.8k
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
aquasecurity/trivy684日前20.5k
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
imthenachoman/How-To-Secure-A-Linux-Server684日前16.5k
An evolving how-to guide for securing a Linux server.
ory/hydra684日前14.9k
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid.
elunez/eladmin684日前20.6k
eladmin jpa 版本:项目基于 Spring Boot 2.6.4、 Jpa、 Spring Security、Redis、Vue的前后端分离的后台管理系统,项目采用分模块开发方式, 权限控制采用 RBAC,支持数据字典与数据权限管理,支持一键生成前后端代码,支持动态路由
api-platform/api-platform684日前8.2k
Create REST and GraphQL APIs, scaffold Jamstack webapps, stream changes in real-time.
Sylius/Sylius684日前7.6k
Open Source eCommerce Framework on Symfony
pppscn/SmsForwarder684日前13.5k
短信转发器——监控Android手机短信、来电、APP通知,并根据指定规则转发到其他手机:钉钉群自定义机器人、钉钉企业内机器人、企业微信群机器人、飞书机器人、企业微信应用消息、邮箱、bark、webhook、Telegram机器人、Server酱、PushPlus、手机短信等。包括主动控制服务端与客户端,让你轻松远程发短信、查短信、查通话、查话簿、查电量等。(V3.0 新增)PS.这个APK主要是学习与自用,如有BUG请提ISSUE,同时欢迎大家提PR指正
aquasecurity/tfsec684日前6.5k
Security scanner for your Terraform code
turbot/steampipe684日前6.2k
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
mholt/timeliner685日前3.5k
All your digital life on a single timeline, stored locally -- DEPRECATED, SEE TIMELINIZE (link below)
chaifeng/ufw-docker684日前3.7k
To fix the Docker and UFW security flaw without disabling iptables
lgsvl/simulator690日前2.2k
A ROS/ROS2 Multi-robot Simulator for Autonomous Vehicles
ulisesbocchio/jasypt-spring-boot690日前2.7k
Jasypt integration for Spring boot
wpscanteam/wpscan685日前8.1k
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
wp-graphql/wp-graphql685日前3.6k
:rocket: GraphQL API for WordPress