A curated list of the best, top, and most popular open-source security tools available right now. Showing the top 30 of 60 security tools in our directory, ranked by GitHub stars.
An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer. It allows secure remote access and control while providing the flexibility and security of a self-hosted solution.
Sherlock is a powerful tool to hunt down social media accounts by username across numerous social networks efficiently.
A fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS, providing easy configuration and built-in support for modern protocols.
Ghidra is a comprehensive software reverse engineering (SRE) framework developed by the NSA, offering tools for analyzing various platforms.
A simple zero-config tool designed to create locally trusted development certificates for any domain, enhancing local SSL/TLS setup.
Joplin is a privacy-focused note-taking application that supports synchronization and is available on Windows, macOS, Linux, Android, and iOS.
A comprehensive all-in-one hacking tool designed for hackers, providing a variety of features for security testing and exploitation.
An open source, self-hosted implementation of the Tailscale control server, providing secure peer-to-peer networking capabilities.
An open source platform for secure collaboration across the entire software development lifecycle.
A comprehensive tool for secrets management, encryption as a service, and privileged access management, providing high security and control.
Nextcloud Server, a secure and private cloud server to store, share, and sync your data.
Open Source Identity and Access Management solution for modern applications and services, offering single sign-on, user federation, and multi-factor authentication.
Our Newsletter
Get short emails with useful security projects, releases, and repos worth watching.
The Cyber Swiss Army Knife - a powerful web app for encryption, encoding, compression, and data analysis.
Frigate is an NVR that provides realtime local object detection for IP cameras, enabling efficient and secure video monitoring.
An open source trusted cloud native registry project that stores, signs, and scans content, enhancing security and reliability in managing Docker images and OCI artifacts.
Authelia is a Single Sign-On Multi-Factor Authentication portal for web apps, providing secure and streamlined access management.
Binary releases of Visual Studio Code without Microsoft branding, telemetry, and licensing.
KeePassXC is a cross-platform community-driven port of the Windows application 'Keepass Password Safe', designed to manage passwords securely.
๐ End-to-end encrypted cloud service for securely storing photos, videos, and two-factor authentication secrets.
Find, verify, and analyze leaked credentials. TruffleHog is a security tool designed to scan your codebases for secrets and sensitive data such as passwords and API keys.
๐ต๏ธโโ๏ธ An all-in-one OSINT tool designed for comprehensive website analysis.
strix is an open-source AI-powered toolkit that provides intelligent agents designed specifically for penetration testing. It enables automated security assessments, vulnerability scanning, and threat analysis, enhancing the efficiency and accuracy of security professionals.
A secure and fast web browser for Android, iOS, Linux, macOS, and Windows, with privacy features.
Maigret is a tool to collect a dossier on a person by username from thousands of sites, providing a comprehensive OSINT solution.
Bitwarden infrastructure and backend solution for managing API, database, and Docker environments.
GHunt is an open source offensive OSINT framework focused on Google services, enabling investigators and penetration testers to extract information related to Google accounts, Gmail addresses, GSuite domains, and more.
๐ A comprehensive checklist featuring over 300 tips to enhance digital security and privacy for 2024.
Fail2ban is a security tool that provides a daemon to automatically ban hosts that cause multiple authentication errors, enhancing server security.
Infisical is the open-source secret management platform designed to sync secrets across your team and infrastructure, prevent secret leaks, and manage internal PKI effectively.
A curated list of awesome Hacking tutorials, tools, and resources, providing valuable references for security professionals and enthusiasts.
Rustdesk is the most popular by GitHub stars right now. An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer. It allows secure remote access and control while providing the flexibility and security of a self-hosted solution.
Yes. Every tool on this list is open source and free to use in your own projects. Many can be self-hosted.
Tools are ranked by GitHub star count, a strong proxy for community adoption and active maintenance. Star counts are refreshed regularly.
Get notified about new tools and updates to existing ones.