#security

Logo of jwt
jwt
The jwt-go project provides a robust Go library for implementing JSON Web Tokens (JWTs), focusing on improved token validation and backward compatibility. It features Go module support and supports multiple signing algorithms, such as HMAC SHA, RSA, and ECDSA. Security updates recommend using up-to-date Go versions to avoid vulnerabilities. Comprehensive documentation and examples help in the seamless parsing, verification, and creation of JWTs, ensuring secure token management across applications.
Logo of eiblog
eiblog
EiBlog is a reliable and efficient platform designed for tech-savvy users, providing a lightweight and fast blogging solution. In its 2.0 version, it maintains simplicity in deployment and supports various databases including MongoDB, MySQL, and PostgreSQL. Key features include content archiving, a tagging system, Elasticsearch-powered search, and admin management via a Typecho backend with a Markdown editor. With automatic backups, CDN support, and speed optimizations, it enhances performance through caching and reduced server load. Ideal for advanced users, EiBlog facilitates a straightforward blogging experience for effective knowledge sharing.
Logo of mail-server
mail-server
This open-source Rust-based mail server offers robust support for JMAP, IMAP4, POP3, and SMTP. With advanced security features including DMARC, DKIM, and OAuth 2.0, as well as spam and phishing protection, it's designed for scalability with multi-tenancy and diverse storage options. Ideal for both individuals and enterprises, it provides an intuitive web interface for seamless management.
Logo of DongTai-agent-java
DongTai-agent-java
DongTai-agent-java is a data acquisition tool designed to improve Java application security through bytecode rewriting techniques. Compatible with Java 1.8+ and widely used middleware such as Tomcat and SpringBoot, it efficiently manages the agent's lifecycle and performs comprehensive vulnerability assessments. This tool supports secure development and deployment in DevOps settings by addressing potential security threats.
Logo of PyRIT
PyRIT
PyRIT is an open-access tool designed for the evaluation and enhancement of AI model robustness against diverse threats. This framework supports security professionals and ML engineers by automating red teaming tasks, providing insights into model resilience against fabrication, misuse, and privacy breaches. It establishes a performance baseline, identifies potential vulnerabilities, and aids in optimizing security strategies including defense against prompt injection attacks.
Logo of aws-secretsmanager-agent
aws-secretsmanager-agent
The AWS Secrets Manager Agent facilitates cross-environment secret management for services like Lambda, ECS, and EC2. It enhances security by mitigating SSRF risks, offering an in-memory cache to reduce API calls, thereby optimizing secret retrieval. Users can adjust settings such as cache size, TTL, and maximum connections for performance tuning. This agent is well-suited for scenarios requiring direct secret access, providing robust AWS and Rust integration for building, installing, and configuring.
Logo of phpdotenv
phpdotenv
Phpdotenv integrates environment variables using .env files to enhance security and configuration in PHP applications. It keeps sensitive credentials away from code and version control, supporting both immutable and mutable environments with advanced validation. The tool is compatible with various PHP deployment environments, making setup straightforward and providing comprehensive upgrade and usage guidance. With efficient handling of variable nesting, parsing, and requirements, plus enterprise support from Tidelift, phpdotenv ensures secure and maintainable practices.
Logo of Aegis
Aegis
Aegis Authenticator is a free and open source 2FA app for Android that supports HOTP and TOTP, ensuring broad compatibility. The app features AES-256-GCM encryption, advanced entry management, and integrates with authenticators like Google Authenticator. Entries can be added through QR code scanning or manual input, with options for biometrics unlocking and automatic backups. It also supports icon packs and offers multiple design themes for a personalized interface. Available on Google Play Store and F-Droid, Aegis focuses on security and convenience for managing two-factor authentication.
Logo of russh
russh
Russh offers low-level SSH2 client and server capabilities on Tokio, featuring enhanced panic safety, 'async_trait' support, and numerous SSH forwarding options. It supports various encryption ciphers and authentication methods, providing optional OpenSSL dependency for flexible integration. Suitable for both server-side and client-side Rust projects, Russh is used in applications like HexPatch and kartoffels, supporting secure SSH communication.
Logo of drawio-desktop
drawio-desktop
Drawio Desktop is an Electron-based application for creating diagrams and whiteboards securely. It operates independently from the internet, providing total privacy, and is free to use under the Apache 2.0 license, provided no code modifications are made. Support is available through its GitHub repository, though external contributions are not permitted. Users are encouraged to submit feedback and report bugs. Development can be carried out using npm, with installation packages available via the official GitHub page.
Logo of testssl.sh
testssl.sh
A command-line tool for analyzing TLS/SSL ciphers, protocols, and vulnerabilities across any server port with clear, machine-readable outputs. Ensure privacy without installation requirements, and compatible with Linux, macOS, and Windows. Offers comprehensive and flexible SSL/TLS testing using Docker or direct execution, benefiting from active community updates.