# Open Source Intrusion Detection Systems > Search results for `detect and analyze intrusions with an open-source IDS` on awesome-repositories.com. 118 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/detect-and-analyze-intrusions-with-an-open-source-ids **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/detect-and-analyze-intrusions-with-an-open-source-ids).** ## Results - [dokploy/dokploy](https://awesome-repositories.com/repository/dokploy-dokploy.md) (34,901 ⭐) — Dokploy is a self-hosted platform-as-a-service designed to simplify the deployment and management of containerized applications and databases. It provides a centralized control plane that decouples administrative management from application workloads, allowing users to oversee infrastructure across multiple server nodes through a unified web interface or a command-line tool. The platform distinguishes itself through an extensive library of pre-configured application templates, enabling the rapid deployment of databases, identity providers, and various productivity or development tools. It supports complex orchestration by allowing users to define multi-container services using standard configuration files, which can be managed through automated build pipelines, Git integration, and real-time performance monitoring. Beyond core deployment, the system includes robust infrastructure management capabilities such as automated backups to external object storage, horizontal and vertical scaling, and granular access control. It also provides secure configuration management, including environment variable synchronization, HTTPS certificate handling, and zero-downtime deployment strategies to ensure application stability and security. The platform is designed for ease of use, offering an interactive API documentation interface and instructional resources to guide users through installation and configuration. It supports a wide range of modern web frameworks and runtimes, providing a flexible environment for hosting and maintaining services on private server hardware. - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes network state using version-controlled manifests. It supports complex connectivity requirements through peer-to-peer NAT traversal, which facilitates direct encrypted connections between nodes, with automatic fallback to server-based relaying when necessary. Additionally, it provides browser-based access to remote resources, eliminating the need for local client software for many common administrative and service-access tasks. Beyond its core tunneling capabilities, the platform includes a comprehensive suite of tools for traffic management, security, and observability. It features granular access control policies based on user identity, geolocation, and network attributes, alongside automated certificate management and multi-factor authentication. The system also provides extensive monitoring, audit logging, and alerting capabilities to track infrastructure health and security events across multi-site deployments. Pangolin is designed for containerized and multi-site environments, offering flexible deployment options through standard packaging and automated reconciliation workflows. - [fail2ban/fail2ban](https://awesome-repositories.com/repository/fail2ban-fail2ban.md) (17,993 ⭐) — Fail2ban is an intrusion prevention system that monitors system log files to detect malicious activity and automatically enforce security policies. By parsing log data in real time, the tool identifies patterns of unauthorized access or repeated authentication failures and responds by dynamically updating network access control lists to restrict offending sources. The software functions as a firewall automation tool that maintains stateful tracking of suspicious behavior across various network services. It utilizes a regex-driven pattern matching engine to identify specific attack signatures, allowing administrators to define custom filter criteria for different services. This approach enables the automated mitigation of brute force attacks and credential stuffing attempts by temporarily banning hosts that exceed configurable security thresholds. The system architecture decouples event detection from the execution of blocking commands, ensuring that security responses do not impact overall system performance. It employs a firewall-abstraction layer to translate these security bans into system-level commands, supporting integration with various packet filtering tools to harden Linux server environments. - [sarbbottam/write-an-open-source-js-lib](https://awesome-repositories.com/repository/sarbbottam-write-an-open-source-js-lib.md) (185 ⭐) — Reference for How to Write an Open Source JavaScript Library - https://egghead.io/series/how-to-write-an-open-source-javascript-library - [boostorg/boost](https://awesome-repositories.com/repository/boostorg-boost.md) (8,493 ⭐) — Boost is a collection of portable, high-performance source libraries that extend the C++ standard library. It provides a wide range of reusable components, data structures, and algorithms designed to add capabilities to the base language across different platforms. The project is distinguished by its extensive focus on compile-time template metaprogramming and generic programming. It implements advanced architectural patterns such as policy-based design, concept-based type validation, and the use of SFINAE for conditional template resolution to minimize runtime overhead. The library covers a broad surface of capability areas, including asynchronous network programming and I/O, high-performance parallel computing with GPGPU support, and complex graph theory analysis. It also provides comprehensive tools for interprocess communication, memory management, functional programming primitives, and internationalization. Additional utility coverage includes portable filesystem management, high-precision mathematics, date and time representation, and statistical data analysis. - [comodosecurity/openedr](https://awesome-repositories.com/repository/comodosecurity-openedr.md) (2,603 ⭐) — OpenEDR is an endpoint detection and response platform designed to collect telemetry and monitor system activity to identify security breaches. It functions as a host-based intrusion detection system and telemetry collector, gathering detailed data on process, network, and file activity. The system includes a dockerized security stack that bundles search, logging, and visualization tools into containers for analyzing endpoint telemetry. It features a security event visualizer that maps process lineage and indexes logs to facilitate root-cause analysis of attacks. The platform provides capabilities for monitoring system API calls, file and registry access, and network traffic. It incorporates security breach detection and alerting through customizable telemetry filtering rules and policy configurations. To maintain system integrity, it employs a dedicated self-protection provider to prevent unauthorized modifications to monitoring agents and configurations. - [e2b-dev/awesome-ai-agents](https://awesome-repositories.com/repository/e2b-dev-awesome-ai-agents.md) (25,903 ⭐) — This project is a curated repository and directory focused on the artificial intelligence agent ecosystem. It serves as a centralized knowledge base for developers and researchers to discover frameworks, platforms, and autonomous software entities designed for reasoning, planning, and executing complex tasks. The directory distinguishes itself through a community-driven curation model, where contributors maintain and update the collection via a distributed version control system. This collaborative approach ensures that the index remains current with the latest academic resources, open-source projects, and commercial tools, all organized through a structured categorical taxonomy. The collection covers a broad range of technical domains, including multi-agent system orchestration, autonomous workflow automation, and general agent development. By aggregating these high-quality references, the repository facilitates the evaluation of technologies for building self-directed digital workers and complex autonomous systems. The information is structured using lightweight markup files and rendered as a static site to provide a consistent and accessible interface for global users. - [numfocus/getting-started-with-open-source](https://awesome-repositories.com/repository/numfocus-getting-started-with-open-source.md) (0 ⭐) — This repository contains documents and resources on getting started with Open Source projects. - [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows. The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by automatically synchronizing response data to CRMs, databases, and communication tools, while providing programmatic interfaces for managing resources and automating feedback loops. Beyond core collection, the system includes advanced logic for conditional branching, scoring, and personalized routing to create adaptive survey experiences. It offers extensive customization options, including white-labeling, CSS overrides, and multi-channel distribution across web, mobile, and email environments. The platform is built for self-hosting, supporting containerized deployments with built-in multi-tenant data isolation and enterprise-grade security features like single sign-on and role-based access control. - [yara-rules/rules](https://awesome-repositories.com/repository/yara-rules-rules.md) (4,712 ⭐) — This project is a community-curated repository of YARA rules used to detect malware, webshells, and other malicious patterns in files. It serves as a dataset of signatures for identifying known malware families, software packers, and threat intelligence indicators. The collection provides specialized detection capabilities for identifying exploit kits and anti-analysis evasion techniques, such as anti-debugging and anti-virtualization methods. It also includes signatures for cryptographic algorithm detection and the identification of unauthorized remote administration tools on servers. The repository covers a broad surface of digital forensics and security analysis, including the inspection of malicious documents and emails for embedded code. It further supports threat hunting through the identification of patterns associated with system compromises and active security breaches. - [open-source-flash/open-source-flash](https://awesome-repositories.com/repository/open-source-flash-open-source-flash.md) (7,320 ⭐) — This project is an open source specification petition platform and proprietary specification archive. It serves as a markdown-based repository for collecting signatures and community support to urge vendors to open source proprietary software specifications. The platform functions as a tool for open source specification advocacy and proprietary software archival. It creates permanent records of proprietary standards and documents the community efforts required to transition them to open source licenses, ensuring the preservation of technical knowledge. The system utilizes a git-driven contribution workflow and distributed version control storage to manage petitions. Data is stored as formatted text files and organized via static file-based routing for archival display and retrieval. - [greenrobot/eventbus](https://awesome-repositories.com/repository/greenrobot-eventbus.md) (24,760 ⭐) — EventBus is a publish-subscribe messaging library designed to facilitate decoupled communication between components in Java applications. It functions as a central hub where producers dispatch events that are routed to subscribers based on the class type of the payload. By using annotation-based markers, the system maps event handlers to specific data types, allowing different parts of an application to exchange information without requiring direct references between classes. The library distinguishes itself through a focus on performance and execution control. It utilizes a compile-time indexing mechanism that generates static lookup tables, replacing slow runtime reflection with direct method calls to accelerate message routing. Furthermore, it provides a thread-aware dispatcher that allows developers to configure whether event handlers execute on the main interface thread, in background pools, or synchronously within the posting thread. Beyond basic routing, the system supports advanced messaging patterns including priority-ordered delivery and sticky events. Sticky events maintain a memory-based cache of recent data, ensuring that late-registering subscribers automatically receive the most current state upon initialization. The library also offers granular control over the event lifecycle, enabling developers to cancel event propagation or manage custom thread pools and error handling strategies to maintain application responsiveness. - [asyraffff/open-source-ruby-and-rails-apps](https://awesome-repositories.com/repository/asyraffff-open-source-ruby-and-rails-apps.md) (1,260 ⭐) — Awesome Ruby and Rails Open Source applications 🌈 - [owasp-modsecurity/modsecurity](https://awesome-repositories.com/repository/owasp-modsecurity-modsecurity.md) (9,680 ⭐) — ModSecurity is an open-source web application firewall and security engine. It functions as an HTTP traffic inspector and intrusion detection system that filters incoming web requests and responses against a set of security rules to block threats and prevent attacks on web servers. The project provides a modular framework for implementing restrictive security policies and custom filtering logic. It identifies and blocks common injection attacks, such as cross-site scripting and SQL injection, while hardening web applications to reduce their overall attack surface. Its broader capabilities include web traffic auditing, the ability to process XML content, and the identification of user location through database lookups. It also supports the execution of custom scripts to implement dynamic security behavior during request processing. - [elastic/elasticsearch](https://awesome-repositories.com/repository/elastic-elasticsearch.md) (77,012 ⭐) — Elasticsearch is a distributed search engine and document store designed for the high-performance indexing and retrieval of massive volumes of unstructured data. It functions as a centralized analytics platform, providing a schema-flexible architecture that organizes information into searchable indices while maintaining global cluster state through a distributed consensus mechanism. The platform distinguishes itself through its integrated approach to observability, security, and advanced analytics. It combines full-text, vector, and hybrid search capabilities with machine learning-driven insights, allowing users to perform complex statistical aggregations, geospatial analysis, and automated anomaly detection. Its storage architecture supports multi-tier data lifecycles, enabling efficient data placement across hot, warm, and cold nodes to balance performance with long-term retention requirements. Beyond core search and storage, the system provides comprehensive observability tools for centralized log analysis, application performance monitoring, and infrastructure health diagnostics. It includes built-in security operations for threat detection and endpoint protection, all managed through a unified RESTful API gateway. The system is accessible via standardized REST APIs for cluster management, data ingestion, and query execution. Extensive documentation is available to guide users through API references for search, indexing, security, and cluster administration. - [pradumnasaraf/open-source-with-pradumna](https://awesome-repositories.com/repository/pradumnasaraf-open-source-with-pradumna.md) (0 ⭐) - [clickhouse/clickhouse](https://awesome-repositories.com/repository/clickhouse-clickhouse.md) (48,229 ⭐) — ClickHouse is a high-performance, columnar analytical database designed for real-time query execution and large-scale data aggregation. It functions as a distributed data warehouse capable of processing petabytes of information, while also providing an embedded engine that integrates directly into applications for native query capabilities without external dependencies. The system is built to handle high-throughput ingestion and complex analytical workloads, delivering millisecond-level latency for interactive dashboards and operational monitoring. The platform distinguishes itself through advanced storage and execution techniques, including vectorized query processing and a merge tree storage engine that maintains performance during massive insertions. It features adaptive subcolumn mapping for semi-structured data and supports native vector search for machine learning and generative AI applications. To facilitate efficient data movement, the engine utilizes zero-copy shared memory buffers, minimizing overhead when interacting with external analytical tools or processing diverse file formats like Parquet, JSON, and Arrow. Beyond its core storage and processing capabilities, the project provides a comprehensive suite of tools for observability, security, and data integration. It includes built-in support for natural language querying, automated workflow orchestration for AI agents, and extensive diagnostic features for query plan inspection. The platform also offers robust cloud infrastructure management, including support for private networking, compliant deployment strategies, and integrated billing consolidation. - [webmin/webmin](https://awesome-repositories.com/repository/webmin-webmin.md) (5,595 ⭐) — Webmin is a web-based administration interface for Unix systems. It provides a centralized console for managing the full range of server administration tasks — users and groups, software packages, storage, network configuration, system services, and security — all through a browser. Its modular architecture allows separate modules to handle databases (MySQL, MariaDB, PostgreSQL), web servers (Apache), DNS (BIND), email (Sendmail, Dovecot), file sharing (Samba, NFS), and more, with a unified access control system that restricts what each administrator can see and do. What sets Webmin apart is its ability to manage multiple servers from a single dashboard. It can synchronize users, packages, and settings across a cluster, execute commands on remote hosts, and provide proxy access to other servers' web interfaces. Security is built into the core — it includes firewall rule management, intrusion detection via Fail2Ban, SSL/TLS encryption, two-factor authentication, and granular per-module permissions. The platform also supports automation through cron job scheduling, backup jobs, and remote API calls, making routine maintenance tasks scriptable. Beyond its default modules, Webmin provides a framework for creating custom modules and themes, with a consistent UI generation API, internationalization, and file-based configuration abstraction. This extensibility, combined with its coverage of common server services, means a single installation can replace multiple separate administration tools for a Unix server or a small cluster. - [afonsopacifer/open-source-checklist](https://awesome-repositories.com/repository/afonsopacifer-open-source-checklist.md) (215 ⭐) — :octocat: A guide to help you remember important things when creating an open source project ;D - [coder/code-server](https://awesome-repositories.com/repository/coder-code-server.md) (78,024 ⭐) — This project provides a remote development platform that enables users to access a full-featured integrated development environment through a standard web browser. By decoupling the user interface from the server-side filesystem, it allows for persistent coding workspaces to be hosted on remote servers, virtual machines, or cloud-native infrastructure, ensuring a consistent development experience from any device. The platform distinguishes itself through a secure gateway architecture that manages traffic, authentication, and encryption at the edge. It utilizes persistent WebSocket connections to synchronize editor state and terminal input-output between the remote server and the browser. Furthermore, it includes built-in service proxying capabilities that allow developers to expose locally running web applications via secure subdomains or subpaths, complete with integrated identity verification and traffic management. To support diverse infrastructure requirements, the system offers flexible deployment options including containerized environments and automated provisioning workflows. It maintains state continuity through filesystem-mounted persistence, ensuring that configurations and project data remain intact across restarts. The platform also enforces network security by managing TLS certificates for HTTPS traffic and providing integration layers for external authentication providers. Installation is supported across various host architectures through shell scripts, package managers, or standalone archives, with built-in utilities for managing the application lifecycle. - [ellerbrock/open-source-badges](https://awesome-repositories.com/repository/ellerbrock-open-source-badges.md) (548 ⭐) — :octocat: Open Source & Licence Badges - [sbilly/awesome-security](https://awesome-repositories.com/repository/sbilly-awesome-security.md) (14,022 ⭐) — This project is a comprehensive, curated directory of cybersecurity resources, software, and documentation designed to support system and network protection. It serves as a centralized knowledge base and index for security professionals, aggregating industry-standard practices and open-source tools across a wide range of technical domains. The repository distinguishes itself by providing a structured collection of methodologies and frameworks for security operations. It covers critical areas including threat intelligence, digital forensics, infrastructure auditing, and vulnerability assessment management. By organizing these materials, the project assists in the discovery and implementation of solutions for network monitoring, incident response, and the maintenance of consistent security configurations across diverse environments. - [tapaswenipathak/open-source-programs](https://awesome-repositories.com/repository/tapaswenipathak-open-source-programs.md) (3,856 ⭐) — A list of open source programs. - [mickael-kerjean/filestash](https://awesome-repositories.com/repository/mickael-kerjean-filestash.md) (13,647 ⭐) — Filestash is a unified storage management platform that provides a web-based interface for browsing, managing, and accessing files across diverse local and cloud storage backends. It functions as a centralized gateway, aggregating services such as S3, SFTP, WebDAV, and FTP into a single, consistent environment for remote filesystem administration and secure document handling. The platform distinguishes itself through a modular, plugin-based architecture that supports custom storage drivers, authentication providers, and authorization logic. It includes built-in capabilities for server-side media transcoding, on-the-fly file preview rendering for various document and media formats, and event-driven workflow orchestration that triggers external processes based on file system activity. Security and operational oversight are managed through middleware-based access control, system activity auditing, and automated SSL certificate provisioning. The platform also integrates with artificial intelligence agents, enabling them to access and analyze documents directly, while providing enterprise-grade features such as versioning, recycle bins, and threat detection to maintain data integrity and compliance. - [datahub-project/datahub](https://awesome-repositories.com/repository/datahub-project-datahub.md) (12,141 ⭐) — DataHub is a metadata management platform designed to unify technical, operational, and business context across diverse data ecosystems. By utilizing a graph-based metadata model and an event-driven ingestion architecture, it creates a centralized source of truth that maps complex data relationships, lineage, and ownership. This foundational framework enables organizations to maintain a synchronized view of their data landscape, supporting both human-led discovery and automated data operations. The platform distinguishes itself through its focus on grounding artificial intelligence and autonomous agents in verified enterprise context. It provides specialized capabilities to inject provenance-aware lineage, business definitions, and quality signals into AI prompts, ensuring that generated insights are accurate and trustworthy. Through a policy-as-code governance engine, it enforces access controls and compliance rules directly within the metadata graph, allowing for programmatic oversight of data assets across hybrid environments. Beyond its core identity, the project offers a comprehensive suite of tools for data discovery, observability, and lifecycle management. It includes features for automated lineage extraction, impact analysis, and semantic search, enabling users to navigate data dependencies and resolve quality issues efficiently. The platform also supports collaborative workflows, allowing teams to manage business glossaries, certify data assets, and automate access requests through integrated communication channels. DataHub is built to scale, utilizing a distributed architecture that allows storage, search, and graph processing layers to operate independently. It provides standardized interfaces and a bridge-based connector framework to facilitate integration with heterogeneous data sources and external AI agent frameworks. - [arpit456jain/open-source-programs](https://awesome-repositories.com/repository/arpit456jain-open-source-programs.md) (0 ⭐) — I am planning to list some good and beginner friendly open source programs and their timelines - [dragonflydb/dragonfly](https://awesome-repositories.com/repository/dragonflydb-dragonfly.md) (30,688 ⭐) — Dragonfly is a high-performance, multi-model in-memory data store designed to serve as a drop-in replacement for existing database infrastructures. By utilizing a multi-threaded, shared-nothing architecture and a fiber-based concurrency model, it maximizes CPU utilization and minimizes latency for read and write operations. The system supports a wide range of data structures, including strings, hashes, lists, sets, sorted sets, and JSON documents, while maintaining full compatibility with standard industry wire protocols and client libraries. What distinguishes Dragonfly is its focus on efficiency and scalability through advanced memory management and request processing. It employs a lock-free, cache-friendly hash table structure and zero-copy serialization to reduce overhead during high-throughput operations. For durability, the system utilizes asynchronous, snapshot-based persistence that captures the state of the dataset without blocking active requests. Furthermore, it provides built-in support for horizontal scaling and cluster management, allowing for the distribution of large datasets across multiple nodes to ensure high availability. Beyond core storage, the platform includes a comprehensive suite of operational and analytical capabilities. It features integrated support for geospatial data management, real-time message brokering via publish-subscribe patterns, and full-text search. To handle massive datasets efficiently, the engine incorporates probabilistic data structures for cardinality estimation, frequency tracking, and membership testing. These features are complemented by robust administrative tools, including access control, request rate limiting, and detailed server monitoring. - [falcosecurity/falco](https://awesome-repositories.com/repository/falcosecurity-falco.md) (8,670 ⭐) — Falco is an eBPF runtime security monitor and cloud native detection engine that identifies abnormal behavior and security threats across hosts and containers. It functions as a Linux kernel event auditor, capturing system calls and kernel events in real-time to detect malicious activity. The system distinguishes itself through a rule-based threat detection model that evaluates system activity against a library of community-maintained rules and custom security definitions. It enriches raw kernel events with container and Kubernetes metadata to provide observability into isolated environments and supports the distribution of security plugins and rule sets as OCI-compliant artifacts. Broad capabilities include comprehensive event collection via eBPF probes, metadata-driven event enrichment, and a flexible alerting pipeline that routes structured JSON alerts to external SIEMs, webhooks, and data lakes. The project also provides tools for rule management, including syntax validation and macro-based logic simplification, as well as operational telemetry exported via Prometheus. Deployment is supported through packages, archives, and a declarative Kubernetes-native operator. - [bitwarden/server](https://awesome-repositories.com/repository/bitwarden-server.md) (18,074 ⭐) — This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials. The platform distinguishes itself through its focus on both human-centric security and automated machine-to-machine workflows. It supports advanced authentication methods including hardware security keys, passkeys, and biometric unlocking, while simultaneously offering programmatic interfaces for injecting secrets directly into development pipelines and automated infrastructure deployments. This dual-purpose design allows teams to maintain strict data sovereignty through local hosting and containerized deployments while enforcing granular governance across their entire user base. Beyond core storage, the system includes extensive observability and compliance tools, such as immutable audit logging, credential risk analysis, and integration with external security information and event management platforms. It also facilitates secure collaboration through encrypted information sharing, emergency access delegation, and automated identity provisioning. The software is designed for flexible deployment across diverse infrastructure environments and includes command-line utilities for administrative tasks, bulk data migration, and secret retrieval. - [swift-open-source/ultratabsaver](https://awesome-repositories.com/repository/swift-open-source-ultratabsaver.md) (290 ⭐) — The open source Tab Manager Extension for Safari. - [sindresorhus/awesome](https://awesome-repositories.com/repository/sindresorhus-awesome.md) (476,211 ⭐) — This project is a community-maintained directory that serves as a comprehensive index of software tools, frameworks, and educational materials. It functions as an open-source knowledge base, organizing diverse engineering domains and technical resources into a structured taxonomy to assist developers in discovering high-quality content. The directory distinguishes itself through a decentralized peer-review model, where independent contributors curate, verify, and update entries to ensure accuracy and relevance. All information is stored in a version-controlled, flat-file markdown format, which ensures platform independence, transparency, and auditability for the entire collection. The project covers a vast capability surface, spanning technical resource discovery, professional career advancement, and software development knowledge management. It provides access to structured learning paths, infrastructure and security tools, data management utilities, and specialized resources for fields ranging from healthcare to digital humanities. The repository is maintained as a public, version-controlled collection, allowing for programmatic access and community-driven updates to its structured data. - [bitwarden/clients](https://awesome-repositories.com/repository/bitwarden-clients.md) (13,114 ⭐) — This project is a comprehensive zero-knowledge security suite designed for enterprise credential management, secrets orchestration, and password management. It provides a secure, end-to-end encrypted vault that allows users to store, synchronize, and manage sensitive information, including passwords, passkeys, and infrastructure secrets, across desktop, mobile, and browser environments. The platform distinguishes itself through a strict zero-knowledge architecture where all encryption and decryption occur locally on the client, ensuring that plaintext data remains inaccessible to the server. It supports flexible deployment models, allowing organizations to choose between managed cloud services or self-hosted infrastructure to meet specific data sovereignty and compliance requirements. Furthermore, the system integrates with external identity providers to streamline user provisioning and authentication, while offering advanced administrative controls for policy enforcement and security auditing. Beyond core storage, the platform provides extensive tools for DevOps and automated workflows, including command-line interfaces for secret injection and programmatic SDKs for custom integrations. It also includes robust collaboration features for secure data sharing, team resource management, and credential health monitoring to help organizations maintain a strong security posture. - [open-source-society/bioinformatics](https://awesome-repositories.com/repository/open-source-society-bioinformatics.md) (0 ⭐) — Open Source Society University :microscope: Path to a free self-taught education in Bioinformatics! Archived - [cockroachlabs/open-sourced-interview-process](https://awesome-repositories.com/repository/cockroachlabs-open-sourced-interview-process.md) (425 ⭐) — Open Sourced Interview Process - [stamparm/maltrail](https://awesome-repositories.com/repository/stamparm-maltrail.md) (8,498 ⭐) — Maltrail is a malicious traffic detection system used for network intrusion detection. It consists of a network intrusion sensor for monitoring interfaces, a threat intelligence aggregator for syncing blacklists, and a detection engine that identifies security threats through signature matching and heuristic attack patterns. The system distinguishes itself through a distributed sensor architecture that collects traffic data from multiple remote probes and forwards events to a central analysis server. It employs heuristic behavioral analysis to identify unknown threats, such as port scanning or excessive DNS failures, and provides an IP reputation firewall integrator to export attacker source addresses for automated blocking in external tools. The platform includes a web-based management interface for visualizing threat timelines and analyzing security event logs. It supports the aggregation of threat intelligence from external feeds and custom lists, while providing access control mechanisms to restrict log visibility based on user permissions or network masks. - [expo/expo](https://awesome-repositories.com/repository/expo-expo.md) (50,111 ⭐) — Expo is a universal mobile framework designed to build native iOS and Android applications from a single codebase using web-standard technologies. It provides a comprehensive development environment that includes a unified runtime for testing, cloud-based infrastructure for compiling and signing native binaries, and automated tools for managing the entire mobile release lifecycle, including app store submission. The framework distinguishes itself through a plugin-based native configuration engine that programmatically modifies project files, allowing developers to integrate native modules without manual intervention. It also features a file-based routing system that maps directory structures directly to navigation paths, and an over-the-air update service that enables the deployment of JavaScript and asset changes directly to user devices, bypassing traditional app store review cycles. Beyond these core capabilities, the platform offers a wide range of integrated services for managing project metadata, environment variables, and persistent data storage. It includes a robust set of UI components and utilities for handling hardware-level features such as camera access, geolocation, audio and video playback, and push notifications. Developers can also leverage managed cloud services to orchestrate custom build profiles and automate CI/CD workflows. The project is managed via a command-line interface that facilitates project setup, native module integration, and the generation of custom development builds. Documentation and tooling are provided to support both standalone applications and the integration of Expo into existing native projects. - [thinkst/opencanary](https://awesome-repositories.com/repository/thinkst-opencanary.md) (2,776 ⭐) — OpenCanary is a network service simulator and honeypot designed for network intrusion detection. It functions as a security decoy that creates fake server personalities and open ports to identify unauthorized users scanning a private network. The system uses deception technology to mimic various server protocols, luring attackers into revealing their presence and activity. When a simulated service is accessed, it acts as an intrusion alerting gateway, transmitting notifications via email or webhooks. The project covers internal network monitoring and intrusion source tracking to identify the location of security breaches. It utilizes a plugin-based architecture for service personalities and supports containerized deployment for consistent execution across different operating systems. - [open-source-legal/opencontracts](https://awesome-repositories.com/repository/open-source-legal-opencontracts.md) (1,356 ⭐) — The open document intelligence platform for builders and hackers - DMS for the agentic world - [elastic/detection-rules](https://awesome-repositories.com/repository/elastic-detection-rules.md) (2,508 ⭐) — This project is a detection-as-code framework providing a library of security monitoring rules and predefined detection content for Elasticsearch data indices. It serves as a threat detection rule library designed to identify malicious activity and attack patterns across diverse data streams in cloud and on-premises environments. The framework implements a detection engineering workflow where rules are defined in YAML and managed as versioned code. It includes a set of command-line utilities for automated rule deployment, metadata searching, and template generation, supported by a Python-based testing framework to validate rule syntax and accuracy before deployment. The system covers a broad range of security operations, including threat intelligence integration, cloud posture auditing, and security event correlation. It also provides capabilities for anomaly detection, entity risk analysis, and the coordination of security incidents through case management and alert noise suppression. - [rvcas/ids](https://awesome-repositories.com/repository/rvcas-ids.md) (0 ⭐) — ✨ Unique IDs for Gleam - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [github/opensource.guide](https://awesome-repositories.com/repository/github-opensource-guide.md) (15,530 ⭐) — This project serves as a comprehensive repository of best practices and documentation standards for managing open source software. It provides a foundational framework for establishing project governance, defining contributor roles, and structuring the lifecycle of collaborative software development. By centralizing knowledge on community building and operational transparency, it acts as a guide for launching, maintaining, and scaling healthy software projects. The project distinguishes itself by offering actionable strategies for the human and organizational aspects of software development that often fall outside of technical implementation. It covers methodologies for formalizing leadership hierarchies, implementing consensus-based decision-making, and enforcing codes of conduct to foster inclusive environments. Furthermore, it provides specific guidance on long-term sustainability, including frameworks for securing financial support, navigating legal requirements, and managing maintainer well-being to prevent burnout. Beyond its core governance focus, the project encompasses a broad range of operational capabilities. These include standardized workflows for contributor onboarding, security compliance practices such as vulnerability reporting and threat modeling, and quality assurance standards that integrate accessibility and automated maintenance. The documentation is designed to help maintainers navigate the complexities of project health, visibility, and strategic planning throughout the entire lifecycle of an open source initiative. - [beekeeper-studio/beekeeper-studio](https://awesome-repositories.com/repository/beekeeper-studio-beekeeper-studio.md) (22,030 ⭐) — Beekeeper Studio is a cross-platform desktop application designed for database management and SQL development. It provides a unified graphical interface to connect to, query, and modify data across a wide range of relational and NoSQL database systems. The application functions as a comprehensive workspace, integrating tools for schema design, record editing, and data visualization. The project distinguishes itself through a focus on secure, flexible connectivity and AI-assisted workflows. It supports advanced authentication methods, including enterprise single sign-on, multi-factor authentication, and token-based access, alongside secure traffic routing via SSH tunneling and SSL encryption. Users can leverage AI-driven query generation to translate natural language into executable SQL, while the interface allows for direct, spreadsheet-like data editing and transactional staging to ensure data integrity. The platform covers a broad capability surface, including robust import and export management, schema inspection, and visual entity relationship diagram generation. It also offers extensive customization options, such as editor behavior settings, native extension loading for SQLite, and third-party add-on integration. The application is distributed as a native desktop installer for Windows, Linux, and MacOS, with support for portable execution and offline-only operation modes. - [wcoder/open-source-xamarin-apps](https://awesome-repositories.com/repository/wcoder-open-source-xamarin-apps.md) (0 ⭐) — A collaborative list of open source Xamarin & MAUI apps. - [zeek/zeek](https://awesome-repositories.com/repository/zeek-zeek.md) (7,735 ⭐) — Zeek is a network analysis framework and security monitoring tool that transforms raw network packets into high-level semantic logs. It functions as an application protocol analyzer and network intrusion detection system designed to extract meaning from network traffic and monitor for malicious activity. The system focuses on archiving network activity and maintaining historical records of application-layer state for forensic investigation and auditing. It utilizes a combination of modular protocol analyzers and customizable detection policies to perform deep semantic analysis of numerous application-layer protocols. Its broader capabilities include network traffic analysis, network security monitoring, and the ability to define site-specific monitoring rules to detect threats and anomalies. - [lissy93/awesome-privacy](https://awesome-repositories.com/repository/lissy93-awesome-privacy.md) (9,500 ⭐) — This project is a curated directory and catalog of privacy-respecting software and security-focused services. It serves as a structured resource for finding alternatives to corporate services, focusing on tools that prioritize data sovereignty, end-to-end encryption, and user anonymity. The directory is maintained as a markdown-based resource list and rendered via a static site generator. It further extends its utility through a CORS-enabled public API and a JSON-based data schema, allowing the curated catalog of tools and providers to be retrieved programmatically. The collection covers a wide range of capability areas, including secure communication tools, network privacy configuration, digital identity protection, and system security hardening. It also lists resources for personal data sovereignty, such as encrypted storage, private note management, and self-hosted hosting options. - [fingerprintjs/fingerprintjs](https://awesome-repositories.com/repository/fingerprintjs-fingerprintjs.md) (27,334 ⭐) — Fingerprint is a visitor identification and fraud detection platform that generates persistent, unique identifiers by analyzing browser and device attributes. By extracting technical signals from the client environment, it enables reliable user tracking across sessions without relying on traditional cookies. The platform distinguishes itself through its focus on high-accuracy identification and security-first architecture. It employs edge-side proxying to bypass ad-blockers and privacy restrictions, ensuring consistent data collection. To maintain data integrity, it uses cryptographic payload sealing and server-side verification flows, which prevent tampering by ensuring that identification data is processed securely on the backend rather than solely on the client. Beyond core identification, the project provides a comprehensive suite for bot detection and security. It analyzes network metadata, device reputation, and behavioral patterns to identify malicious traffic, AI agents, and automated scrapers. These capabilities are supported by granular risk assessment tools, including confidence scoring and protection rulesets that allow for automated blocking of suspicious interactions. The platform offers extensive administrative and integration features, including multi-environment resource isolation, regional data residency controls, and programmatic API management. It supports diverse deployment environments through framework-specific SDKs, mobile integration, and automated proxy infrastructure deployment. - [zalando/zalando-howto-open-source](https://awesome-repositories.com/repository/zalando-zalando-howto-open-source.md) (805 ⭐) — Open Source guidance from Zalando, Europe's largest online fashion platform - [cfpb/open-source-project-template](https://awesome-repositories.com/repository/cfpb-open-source-project-template.md) (214 ⭐) — A project template containing default open source files for new projects - [lissy93/personal-security-checklist](https://awesome-repositories.com/repository/lissy93-personal-security-checklist.md) (21,691 ⭐) — This project provides a comprehensive, modular framework for auditing and hardening personal digital and physical security. It functions as a structured, platform-agnostic knowledge base that breaks down complex security standards into granular, actionable tasks. By utilizing a static documentation architecture, the project ensures that its guidance remains accessible and transparent, allowing users to track their security posture incrementally through a persistent, manual progress-tracking system. The project distinguishes itself by bridging the gap between digital cybersecurity and physical threat mitigation. Beyond standard account and network hardening, it offers specialized guidance on physical countermeasures, such as electromagnetic signal shielding, hardware sensor obfuscation, and the use of physical security hardware to prevent unauthorized data access. It also emphasizes privacy-centric alternatives to mainstream platforms, curating directories of software and decentralized services designed to minimize digital footprints and data harvesting. The scope of the guidance covers a wide range of domains, including digital identity protection, secure communication practices, and the auditing of mobile, web, and smart home environments. It provides systematic methodologies for managing cryptographic assets, enforcing multi-factor authentication, and sanitizing media metadata to prevent tracking. The repository serves as a centralized resource for ongoing security education, offering curated tool directories and threat intelligence to help users maintain a proactive defense against evolving surveillance and security risks.