# Self-Hosted Malware Analysis Sandboxes > Search results for `self-hosted sandbox for detonating and analyzing malware` on awesome-repositories.com. 116 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/self-hosted-sandbox-for-detonating-and-analyzing-malware **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/self-hosted-sandbox-for-detonating-and-analyzing-malware).** ## Results - [cloudflare/moltworker](https://awesome-repositories.com/repository/cloudflare-moltworker.md) (9,909 ⭐) — Moltworker is an AI agent sandbox and model orchestrator designed for the secure execution of untrusted code and shell commands generated by large language models. It functions as a gateway proxy that routes requests to multiple AI providers through a unified interface, integrating a container runtime backed by S3-compatible object storage to persist state across ephemeral lifecycles. The system distinguishes itself by combining an AI model orchestrator with a headless browser controller for automated web scraping and screenshot capture. It manages the full lifecycle of AI agents, including multi-channel chat integration, consolidated billing across different providers, and expenditure limits to control operational costs. The platform provides a broad suite of capabilities for ephemeral environment hosting, including isolated build pipelines and the exposure of services via preview URLs. It incorporates security and observability tools such as token-based proxy authentication, response caching, and traffic analysis to monitor token usage and request volume. The infrastructure supports real-time interaction through a browser-based terminal interface using WebSocket streaming and monitors filesystem changes for automated build processes. - [agent-infra/sandbox](https://awesome-repositories.com/repository/agent-infra-sandbox.md) (2,569 ⭐) — This project provides secure, containerized infrastructure designed for autonomous agents, remote code execution, and cloud development. It functions as a sandboxed environment where AI agents and external processes can execute code, run shell commands, and manage files while remaining isolated from the host system. The system distinguishes itself by implementing the Model Context Protocol, allowing it to act as a standardized tool server that exposes browser and filesystem capabilities to compatible clients. It further integrates headless browser automation, enabling programmatic web navigation and screenshot capture within the isolated workspace. The platform covers a broad capability surface, including multi-runtime command execution, dynamic port forwarding for application previewing, and shared filesystem coordination. It also provides interactive development tools such as web-based editors, terminals, and notebooks for real-time activity inspection. - [daytonaio/daytona](https://awesome-repositories.com/repository/daytonaio-daytona.md) (72,416 ⭐) — Daytona is a cloud-native development environment platform designed to orchestrate ephemeral, containerized workspaces. It provides a centralized system for managing reproducible coding environments as code, ensuring consistency across distributed teams by abstracting the underlying infrastructure. By utilizing declarative configuration, the platform automates the entire lifecycle of development sandboxes, from initial provisioning to resource governance. The platform distinguishes itself through its infrastructure-agnostic runner layer, which allows development environments to be deployed across local machines, cloud services, or self-managed clusters. It incorporates multi-tenant resource governance to enforce organizational security policies and access controls, alongside event-driven automation that triggers workflows based on infrastructure changes. Furthermore, it enables secure remote connectivity, allowing developers to interact with isolated sandboxes through authenticated tunnels and remote IDE integration. Beyond core orchestration, the platform supports a wide range of development tasks, including integrated terminal access, file system management, and persistent storage mounting. It provides comprehensive observability tools for auditing system activity, monitoring resource consumption, and capturing visual session data. The platform also facilitates advanced automation through programmatic API access, enabling the integration of AI agents and custom workflows directly within the isolated execution environments. The project is implemented in TypeScript and provides a command-line interface and RESTful API for programmatic control over environment lifecycles and infrastructure settings. - [alibaba/jvm-sandbox](https://awesome-repositories.com/repository/alibaba-jvm-sandbox.md) (6,951 ⭐) — jvm-sandbox is a bytecode instrumentation framework and plugin container for the Java Virtual Machine. It acts as a runtime application modifier that enables the injection and modification of bytecode in a running process without requiring an application restart or changes to the original source code. The system provides a non-invasive aspect-oriented programming framework to intercept method execution and alter behavior in live processes. It functions as an isolated environment for functional modules, employing a custom class loader hierarchy to prevent dependency conflicts between plugins and the host application. Its capabilities include real-time execution flow control, allowing for the modification of method input parameters, return values, and the handling of exceptions. The framework supports live application hot-patching and multi-tenant instance management to control multiple independent instances within a single target application. - [areizen/android-malware-sandbox](https://awesome-repositories.com/repository/areizen-android-malware-sandbox.md) (306 ⭐) — Android Malware Sandbox - [coollabsio/coolify](https://awesome-repositories.com/repository/coollabsio-coolify.md) (57,055 ⭐) — This project is a self-hosted platform-as-a-service that provides a centralized management interface for deploying, configuring, and monitoring containerized applications and databases on private infrastructure. It functions as a visual control plane, automating the end-to-end lifecycle of services from source code to production. By managing container orchestration, networking, and resource allocation, it allows users to maintain full control over their own hardware while streamlining the delivery of software. The platform distinguishes itself through its agentless architecture, which uses secure shell connections to execute administrative tasks and manage remote servers without requiring persistent local software. It integrates directly with version control systems to trigger automated build and deployment pipelines, including the creation of temporary, isolated preview environments for every pull request. This workflow is supported by a declarative engine that uses templates to standardize the deployment of complex multi-container architectures and persistent database engines. Beyond core orchestration, the system handles the operational requirements of hosted services by managing dynamic reverse-proxy routing and automated SSL certificate lifecycles. It provides a comprehensive suite of infrastructure management tools, including browser-based terminal access for debugging, automated system dependency installation, and persistent state management via a central database. These capabilities ensure that infrastructure remains synchronized and consistent across multiple remote environments. - [bottlesdevs/bottles](https://awesome-repositories.com/repository/bottlesdevs-bottles.md) (8,080 ⭐) — Bottles is a Wine compatibility manager and prefix manager that provides a graphical interface for running Windows applications on Linux. It functions as a Windows application sandbox and dependency manager, organizing isolated environments to prevent dependency conflicts and protect the host operating system. The project acts as a Wine runner orchestrator, allowing users to download, install, and switch between different compatibility layers and graphics renderers. It distinguishes itself by using community-driven scripts for automated software installation and dependency management, alongside pre-configured environment presets. The system covers a broad range of capabilities, including Windows registry administration, Direct3D to Vulkan graphics translation, and Linux gaming optimization. It provides comprehensive data storage utilities for backing up and cloning environments, as well as a command-line interface for automating container configuration and program execution. Monitoring tools such as process activity tracking and execution log capture are integrated for troubleshooting. Bottles can be deployed as a sandboxed package via Flatpak. - [getsentry/self-hosted](https://awesome-repositories.com/repository/getsentry-self-hosted.md) (9,426 ⭐) — This project is a containerized error tracking platform and monitoring suite designed for self-hosted deployment on private infrastructure. It provides a collection of services for capturing and analyzing software crashes and exceptions, ensuring that sensitive application data remains within a controlled environment. The system includes specialized tooling for air-gapped deployment, allowing the software to be installed and operated on servers without internet access through the manual transfer of container images. It also supports corporate network integration via proxy configurations to maintain connectivity within restricted firewall environments. The operational surface covers infrastructure health monitoring through dedicated status endpoints and request routing via a reverse proxy. Persistent storage is managed through volume mapping to decouple data from container lifecycles. - [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows. The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by automatically synchronizing response data to CRMs, databases, and communication tools, while providing programmatic interfaces for managing resources and automating feedback loops. Beyond core collection, the system includes advanced logic for conditional branching, scoring, and personalized routing to create adaptive survey experiences. It offers extensive customization options, including white-labeling, CSS overrides, and multi-channel distribution across web, mobile, and email environments. The platform is built for self-hosting, supporting containerized deployments with built-in multi-tenant data isolation and enterprise-grade security features like single sign-on and role-based access control. - [webgoat/webgoat](https://awesome-repositories.com/repository/webgoat-webgoat.md) (9,160 ⭐) — WebGoat is a deliberately insecure web application designed as an interactive security lab for learning how to identify and exploit common web vulnerabilities. It serves as a containerized sandbox that allows for the simulation and experimentation of web-based attacks and penetration testing techniques without risking production systems. The project functions as a learning lab that maps specific insecure coding patterns to structured lessons. It implements simulated server-side flaws to provide a hands-on environment for studying common security vulnerabilities and defensive coding practices. The application supports deployment through isolated containers and browser-based desktop virtualization to ensure a consistent attack surface. It includes capabilities for managing lesson availability and tracking user progress across the various vulnerable application components. - [stoatchat/self-hosted](https://awesome-repositories.com/repository/stoatchat-self-hosted.md) (2,497 ⭐) — This project is a self-hosted communication suite and private messaging infrastructure. It is a containerized chat platform designed for deployment on independent hardware to maintain full control over user data and server dependencies. The system features a modular plugin framework that allows custom features and behaviors to be loaded into the client at runtime via manifest files. It is designed as a proxy-compatible service, supporting configurable network port routing to operate behind external reverse proxy servers. The platform covers capabilities for containerized service orchestration, private communication infrastructure deployment, and custom plugin development. - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party services, databases, and external APIs through standardized interfaces. Developers can manage and automate the configuration of these backend resources using infrastructure-as-code tools, while granular role-based access control enforces security policies across all platform resources and API endpoints. Beyond its core services, the platform offers a broad capability surface that includes cross-platform data synchronization, event-driven webhooks, and comprehensive billing and usage monitoring. It supports extensive integrations for AI utilities, payment processing, messaging, and logging, allowing developers to extend application functionality through modular, event-driven workflows. The platform is designed for both managed and self-hosted deployments, providing tools for production environment optimization, data migration, and custom domain configuration. - [mastra-ai/mastra](https://awesome-repositories.com/repository/mastra-ai-mastra.md) (21,221 ⭐) — Mastra is an orchestration framework designed for building, deploying, and managing autonomous AI agents and multi-agent systems. It provides a comprehensive suite of primitives for creating resilient AI applications, including durable workflow orchestration, event-driven agent loops, and semantic memory management. By integrating these core components, the platform enables developers to build complex, multi-step processes that can reason about goals and execute tasks without manual intervention. The framework distinguishes itself through its focus on observability and secure, isolated execution. It features a built-in telemetry pipeline that captures structured execution traces, logs, and performance metrics, allowing for real-time debugging and evaluation of agent behavior. Furthermore, it utilizes sandboxed environments to isolate code execution and filesystem operations, ensuring that agent interactions remain secure and reproducible. Mastra covers a broad capability surface, including multi-agent delegation hierarchies, schema-validated tool execution, and real-time voice interaction. It supports advanced orchestration patterns such as human-in-the-loop approvals, persistent state management for long-running workflows, and retrieval-augmented generation using vector-based semantic memory. These features are designed to work together to support the entire lifecycle of AI-powered applications, from initial development and testing to production deployment. The project is built for TypeScript environments and provides a modular architecture that integrates with existing web stacks and infrastructure. It includes a client SDK for interacting with remote agents and supports various authentication providers to secure API endpoints and agent resources. - [datawranglerai/self-host-n8n-on-gcr](https://awesome-repositories.com/repository/datawranglerai-self-host-n8n-on-gcr.md) (608 ⭐) — Self-host n8n on Google Cloud without the subscription fees or server headaches - because your automation workflows shouldn't cost more than your coffee budget - [dubinc/dub](https://awesome-repositories.com/repository/dubinc-dub.md) (23,722 ⭐) — This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distribution for affiliates, alongside granular traffic redirection based on device, location, or A/B testing requirements. By utilizing custom domains and reverse proxy configurations, it ensures reliable data collection that bypasses common browser-based tracking restrictions. Beyond core link operations, the system offers extensive programmatic capabilities, including a robust API, SDKs, and event-driven webhooks for real-time integration with external services. It also incorporates enterprise-grade administrative features such as multi-tenant workspace isolation, role-based access control, and single sign-on integration to support collaborative team environments. The platform is built to be deployed within private infrastructure, allowing organizations to maintain full control over their data and system configuration. - [denoland/deno](https://awesome-repositories.com/repository/denoland-deno.md) (107,110 ⭐) — Deno is a high-performance runtime for JavaScript and TypeScript that prioritizes security and developer productivity. Built on the V8 engine, it provides a secure execution environment that enforces a default-deny security model, requiring explicit user authorization for access to system resources like the file system, network, and environment variables. The runtime natively supports modern web-standard APIs, ensuring consistent behavior and portability across different environments. What distinguishes Deno is its integrated approach to the software development lifecycle. It bundles essential utilities—including a formatter, linter, test runner, and dependency manager—directly into the runtime, eliminating the need for external build tools or complex transpilation steps. The platform features a universal module resolution system that supports remote HTTPS URLs, local paths, and standard package registries, all backed by lockfiles to ensure build determinism and supply chain security. Beyond its core runtime capabilities, Deno includes a built-in, persistent key-value database engine that supports atomic transactions and reactive data monitoring. It also provides a robust compatibility layer for the Node.js ecosystem, allowing for the seamless execution of legacy modules and native binary addons. For multi-tenant or distributed applications, the runtime offers isolated sandbox environments that manage resource constraints and security boundaries, facilitating secure code execution in shared infrastructure. The project is distributed as a single binary, providing a unified toolchain for managing dependencies, executing tasks, and configuring runtime security policies. - [letta-ai/letta](https://awesome-repositories.com/repository/letta-ai-letta.md) (21,168 ⭐) — Letta is a framework for building, deploying, and managing autonomous AI agents that maintain persistent state across long-term interactions. It provides a comprehensive suite of primitives for defining agents with configurable personas, modular memory blocks, and tool-use capabilities, enabling them to retain user preferences and conversation history over extended sessions. The platform distinguishes itself through its advanced memory management and orchestration capabilities. It allows agents to autonomously update their own memory, perform retrieval-augmented generation, and coordinate complex multi-agent workflows through hierarchical delegation. By supporting both local and remote execution environments, it enables developers to build stateful agents that can be managed programmatically via API or integrated into existing automation pipelines. The system includes a robust set of administrative and security features, such as human-in-the-loop approval for tool execution, multi-tenant identity management, and automated performance evaluation suites. These tools allow for the creation of reproducible agent blueprints, version-controlled deployments, and detailed observability into agent reasoning and memory integrity. The project is distributed as a Python-based framework, providing official SDKs and a command-line interface to facilitate integration into development workflows and production environments. - [gitroomhq/postiz-app](https://awesome-repositories.com/repository/gitroomhq-postiz-app.md) (32,271 ⭐) — Postiz is an open-source social media management platform designed to centralize the scheduling, publishing, and analysis of content across diverse social networks, community forums, and blogging platforms. It functions as a unified hub where users can coordinate, review, and distribute content through a shared team workspace, while leveraging integrated artificial intelligence to assist in drafting text and generating multimedia assets. The platform distinguishes itself through a modular architecture that utilizes a provider-specific adapter pattern to ensure consistent content distribution across various external services. It incorporates an AI-driven tool execution model that connects natural language models to internal functions, enabling automated content generation and media configuration. Furthermore, the system provides a programmatic API gateway that allows external applications to interact with its scheduling and management features via structured payloads. Beyond core scheduling, the platform includes comprehensive tools for performance tracking, media storage abstraction, and collaborative workflows. It supports complex content strategies through features like multi-part thread scheduling and automated campaign execution, while maintaining secure identity management through OAuth-based mediation and support for external identity providers. The application is designed for self-hosting and can be deployed into containerized environments using provided configuration charts. - [rpisec/malware](https://awesome-repositories.com/repository/rpisec-malware.md) (4,028 ⭐) — Course materials for Malware Analysis by RPISEC - [vxcontrol/pentagi](https://awesome-repositories.com/repository/vxcontrol-pentagi.md) (17,766 ⭐) — Pentagi is an autonomous security testing framework and agent orchestrator designed to plan and execute end-to-end security assessments. It utilizes a coordination engine to decompose complex goals into actionable subtasks, performing automated penetration testing and vulnerability research within isolated container environments. The system distinguishes itself through a temporal knowledge graph that tracks semantic relationships between entities and vulnerabilities to reuse intelligence across projects. It includes a web intelligence reconnaissance tool for automated data gathering and agentic loop monitoring to detect inefficient tool usage patterns and trigger corrective guidance. The platform provides capabilities for human-in-the-loop steering to redirect active investigations in real-time, alongside provider-agnostic integration for various artificial intelligence models. It further supports session-scoped file management and the generation of detailed vulnerability reports and exploitation guides. Access to programmatic workflows is secured via token-based authentication and external identity providers using OAuth. - [docmost/docmost](https://awesome-repositories.com/repository/docmost-docmost.md) (19,049 ⭐) — Docmost is an open-source knowledge management system designed as a collaborative documentation platform for teams. It functions as an enterprise wiki that centralizes organizational information into structured, searchable workspaces, enabling users to create, organize, and share content through a hierarchical system of spaces and pages. The platform distinguishes itself by integrating artificial intelligence directly into the documentation lifecycle. It utilizes vector-based semantic search to allow for natural language queries across stored content and provides AI-assisted tools for drafting, summarizing, and refining documents. To support team workflows, it features a block-based editor for rich text authoring and visual diagramming, paired with real-time collaboration capabilities that synchronize changes across multiple users. The system is built for enterprise environments, offering granular access control, multi-factor authentication, and identity provider integration for centralized user management. It also includes programmatic access through a REST API, allowing for the automation of resource management and integration with external software tools. The platform supports flexible deployment with configurable storage backends and automated security certificate management. It is designed to be self-hosted, providing the necessary infrastructure to manage documentation security and lifecycle workflows within an organization. - [woheller69/audio-analyzer-for-android](https://awesome-repositories.com/repository/woheller69-audio-analyzer-for-android.md) (0 ⭐) — Audio Spectrum Analyzer for Android - [cisco-talos/clamav](https://awesome-repositories.com/repository/cisco-talos-clamav.md) (6,869 ⭐) — ClamAV - Documentation is here: https://docs.clamav.net - [gf3/sandbox](https://awesome-repositories.com/repository/gf3-sandbox.md) (0 ⭐) — A nifty javascript sandbox for node.js. - [vercel/vercel](https://awesome-repositories.com/repository/vercel-vercel.md) (15,738 ⭐) — Vercel is a cloud platform for building, deploying, and scaling web applications. It provides a unified infrastructure that automates the build process by detecting project frameworks and distributing static and dynamic content through a global content delivery network. The platform executes application logic using serverless functions that scale automatically based on real-time traffic demand. The platform distinguishes itself through a centralized AI gateway that proxies requests to multiple model providers, enabling standardized authentication, observability, and cost tracking. It supports advanced development workflows by integrating AI coding agents directly into the terminal and version control systems, allowing for automated code analysis, pull request reviews, and infrastructure management. Security is maintained through isolated microVM-based sandboxing for untrusted code and edge-side middleware that handles request routing and personalization before traffic reaches the origin. Beyond its core hosting capabilities, the platform offers a comprehensive suite of tools for monitoring application performance, managing team access via identity providers, and orchestrating durable background tasks. It includes features for incremental content updates, which allow developers to refresh specific pages without requiring full site rebuilds, and provides granular control over traffic management through global configuration and feature flags. The platform is designed to be accessed via a command-line interface and integrates directly with Git repositories to automate the entire deployment lifecycle, from preview environments for every branch commit to production releases. - [amruthpillai/reactive-resume](https://awesome-repositories.com/repository/amruthpillai-reactive-resume.md) (38,613 ⭐) — This project is a web-based platform designed for creating, managing, and sharing professional resumes. It functions as a structured document builder that integrates artificial intelligence to assist with content generation, editing, and analysis. Users can maintain a collection of resumes, customize their visual presentation through various templates, and export them into multiple formats for job applications. The platform distinguishes itself through its autonomous AI agent capabilities, which can perform research, suggest incremental edits, and apply data patches directly to documents. It also provides a secure, self-hostable environment that allows users to maintain full control over their data and infrastructure. The system supports advanced authentication methods, including passkeys and federated identity providers, ensuring that personal and professional information remains protected. Beyond core editing, the application includes tools for document organization, such as tagging, filtering, and legacy data migration. It features a robust document generation engine that separates content from design, allowing for precise layout control and styling. Users can share their resumes via password-protected public URLs and monitor document performance through integrated analytics. The application is designed for containerized deployment, utilizing Docker Compose to facilitate consistent installation across private infrastructure. It includes built-in health monitoring and feature flagging to manage system performance and functionality without requiring code redeployments. - [agentscope-ai/agentscope](https://awesome-repositories.com/repository/agentscope-ai-agentscope.md) (26,895 ⭐) — Agentscope is a comprehensive toolkit for developing and orchestrating autonomous multi-agent systems. It provides a unified framework for building agents that can reason, execute tools, and manage memory, enabling the creation of complex, collaborative workflows where multiple specialized agents interact to solve multi-step objectives. The platform distinguishes itself through a robust orchestration engine that supports both sequential and concurrent agent pipelines. It utilizes a centralized event bus for real-time telemetry, allowing developers to track agent reasoning, tool usage, and system performance. By employing a provider-agnostic interface, the framework abstracts diverse language model APIs, while its middleware-based execution hooks allow for the injection of custom logic to intercept, validate, or transform agent behavior at runtime. Beyond core orchestration, the project includes extensive capabilities for tool integration, including dynamic schema parsing from function docstrings and support for secure, sandboxed code execution. It also features built-in support for retrieval-augmented generation, long-term memory management, and systematic performance evaluation, providing a complete environment for the lifecycle management of agentic applications. The library is designed for extensibility, offering base classes for custom memory backends, prompt formats, and tool providers. It is distributed as a Python package, with documentation and interactive development tools available to assist in prototyping and managing multi-agent projects. - [n8n-io/self-hosted-ai-starter-kit](https://awesome-repositories.com/repository/n8n-io-self-hosted-ai-starter-kit.md) (14,997 ⭐) — This project provides a dockerized AI workflow stack and orchestration templates for deploying a self-hosted AI environment. It establishes a localized infrastructure for building autonomous agents and model chains that process private data on-premises without external cloud dependencies. The environment is designed to support autonomous agent development, allowing models to dynamically select tools, execute shell commands, and interact with local file systems. It includes integrated vector database support to enable retrieval augmented generation and private document analysis. The stack covers a broad range of capabilities, including local model inference hosting, node-based workflow sequencing, and stateful conversation memory. It also incorporates text analysis tools for embedding generation, structured information extraction, and automated file system change triggers. - [jstrosch/malware-samples](https://awesome-repositories.com/repository/jstrosch-malware-samples.md) (1,642 ⭐) — Malware samples, analysis exercises and other interesting resources. - [asciinema/asciinema](https://awesome-repositories.com/repository/asciinema-asciinema.md) (16,852 ⭐) — Asciinema is a platform for capturing, replaying, and sharing command-line sessions. It provides a comprehensive suite of tools to record terminal activity into lightweight, text-based files that preserve ANSI escape sequences, allowing users to document technical workflows, troubleshooting steps, and software demonstrations with high fidelity. The project distinguishes itself through its versatile playback and distribution capabilities. It features a web-based player that renders interactive terminal sessions directly in the browser, supporting features like seeking, playback speed control, and custom visual themes. Beyond interactive playback, it includes utilities for converting recordings into animated images or videos, and provides infrastructure for self-hosting recording servers to maintain full control over data storage and security. The platform supports a wide range of integration and automation needs, including embedding interactive sessions into technical documentation, broadcasting live terminal activity to remote viewers, and programmatically generating recordings via scripts. It also offers robust management tools for indexing, searching, and organizing historical session data. The software is designed for flexible deployment, with server and storage components packaged into containerized units for independent hosting. - [arize-ai/phoenix](https://awesome-repositories.com/repository/arize-ai-phoenix.md) (8,605 ⭐) — Arize Phoenix is an LLM observability platform and evaluation framework designed to capture execution traces and monitor large language model applications. It serves as a prompt management system for versioning and testing templates, and as a self-hosted AI operations infrastructure for managing telemetry and experiments. The platform differentiates itself through a specialized embedding visualization tool used to detect data drift and optimize vector search. It provides a comprehensive evaluation suite that utilizes judge-based evaluators and ground-truth datasets to score model outputs, and includes tools for RAG troubleshooting to inspect retrieval documents. Capabilities cover the entire development lifecycle, including automated output validation, systemic performance benchmarking, and prompt engineering optimization. The system also incorporates security and access controls, such as role-based access and sensitive data masking, alongside collaborative workspaces for sharing observability data. The platform can be deployed locally via a CLI or notebook, or scaled through Docker and Kubernetes. - [citizenlab/malware-indicators](https://awesome-repositories.com/repository/citizenlab-malware-indicators.md) (0 ⭐) — malware-indicators - [astrbotdevs/astrbot](https://awesome-repositories.com/repository/astrbotdevs-astrbot.md) (34,768 ⭐) — AstrBot is an orchestration framework designed for building and managing autonomous agents that integrate multimodal artificial intelligence with secure, isolated execution environments. It serves as a platform for coordinating complex agentic workflows, allowing users to connect diverse language, speech, and vision models while maintaining personalized agent personas and domain-specific knowledge bases. The platform distinguishes itself through a modular plugin architecture and a centralized visual dashboard, which together enable users to extend agent capabilities and manage operational settings without manual code modification. It supports cross-platform messaging integration, allowing agents to interact across various digital communication channels, while offloading resource-intensive tasks to dedicated hardware to maintain system performance. The system provides a comprehensive suite of tools for agent automation, including the ability to perform desktop tasks and execute code within containerized sandboxes to ensure host system security. It supports flexible deployment options across diverse infrastructure, including containerized environments and managed server setups, with built-in observability features for monitoring logs and system status. - [chatwoot/chatwoot](https://awesome-repositories.com/repository/chatwoot-chatwoot.md) (31,959 ⭐) — Chatwoot is a self-hosted, omnichannel customer support platform designed to aggregate messages from diverse social and digital channels into a single, collaborative team inbox. It provides organizations with full data ownership and control over their support infrastructure, ensuring strict logical separation of customer data through multi-tenant architecture. By centralizing communication, the platform enables teams to manage, route, and resolve inquiries within a unified workspace that maintains complete interaction history for every contact. The platform distinguishes itself through an event-driven automation engine and a visual rule builder that allow teams to manage conversations and workflows without writing custom code. It incorporates intelligent features such as automated response drafting, conversation context recall, and a self-service knowledge base to improve agent efficiency. These capabilities are supported by granular role-based access controls and comprehensive performance analytics, which provide insights into agent productivity, inbox activity, and customer satisfaction trends. Beyond its core messaging and routing functions, the system offers a broad suite of operational tools including proactive engagement triggers, team workload balancing, and multilingual support. It supports flexible deployment strategies, including containerized and cloud-native orchestration, to accommodate various production environments. The platform is designed for extensibility, allowing for custom attribute management and integration with external systems via webhooks and API-based channels. - [gravitl/netmaker](https://awesome-repositories.com/repository/gravitl-netmaker.md) (11,630 ⭐) — Netmaker is a platform for automating and managing virtual mesh networks built on WireGuard. It functions as a centralized control plane that orchestrates encrypted, peer-to-peer tunnels across distributed infrastructure, including cloud environments, on-premise data centers, and containerized clusters. By automating the configuration of routing tables and access policies, the system enables secure, private connectivity between diverse devices and services without requiring manual network administration. The platform distinguishes itself through its focus on zero-trust network access and software-defined perimeters, which hide network resources from the public internet while enforcing granular, identity-based security policies. It supports complex network topologies by providing dynamic relay-based routing for firewall-traversal and gateway-based bridging for isolated subnets. These capabilities allow for the creation of scalable, high-performance overlays that maintain consistent connectivity even when direct peer-to-peer paths are unavailable. Beyond core connectivity, the project provides a comprehensive suite of management tools, including automated node provisioning, private service discovery via integrated DNS, and multi-tenant infrastructure support. It also offers robust observability features, such as administrative audit logging and network health monitoring, to ensure operational visibility. The entire networking stack can be self-hosted to maintain data sovereignty, and the platform integrates with external identity providers to streamline authentication and device onboarding. - [spiderlabs/malware-analysis](https://awesome-repositories.com/repository/spiderlabs-malware-analysis.md) (254 ⭐) — A repository of tools and scripts related to malware analysis - [usestrix/strix](https://awesome-repositories.com/repository/usestrix-strix.md) (20,138 ⭐) — Strix is an automated security research and vulnerability scanning platform that leverages language models to orchestrate complex security analysis tasks. It functions as a comprehensive framework for penetration testing and continuous security integration, allowing users to embed automated vulnerability research directly into development pipelines or execute it within isolated, containerized environments. The platform distinguishes itself through a multi-agent orchestration engine that coordinates specialized autonomous agents to perform parallel security assessments. By integrating LLM-agnostic routing, it supports a wide range of local and cloud-based model providers, enabling users to tailor analysis depth and reasoning capabilities to their specific security requirements. This orchestration is complemented by the ability to inject structured knowledge packages into agents, allowing for highly targeted vulnerability research and customized testing methodologies. The system provides a broad capability surface that combines static code analysis with dynamic runtime testing. It includes integrated headless browser automation for simulating user behavior, proxy-based traffic interception for inspecting and replaying network communication, and infrastructure mapping tools for reconnaissance. These features are unified within a sandboxed environment that supports custom script execution, terminal access, and real-time telemetry export for auditing and reporting. The project is designed for integration into existing development workflows, offering features like incremental codebase analysis, secret detection, and pipeline-native exit code reporting. It provides a centralized interface for managing scan intensity, authenticated testing, and the generation of structured security reports with proof-of-concept evidence. - [ashishb/android-malware](https://awesome-repositories.com/repository/ashishb-android-malware.md) (1,209 ⭐) — Collection of android malware samples - [chromium/chromium](https://awesome-repositories.com/repository/chromium-chromium.md) (22,997 ⭐) — Chromium is an open-source browser platform that provides the foundational codebase for building cross-platform web browsers. At its core, it functions as a web browser engine that interprets standard web technologies to render interactive content and manage the complex lifecycle of web page navigation. The project utilizes a multi-process architecture that separates the browser interface from rendering engines into distinct operating system processes. This design ensures application stability by preventing a single tab crash from affecting the entire browser. Security is maintained through sandbox-based isolation, which restricts untrusted web content to low-privilege subprocesses to prevent unauthorized access to host system resources or sensitive user data. Beyond its core rendering capabilities, the platform includes a framework for browser automation. This allows for the execution of programmatic quality assurance workflows to verify web application performance and functional reliability across various computing environments. The codebase is designed to support hardware-accelerated compositing, offloading visual assembly to the graphics processing unit to facilitate consistent page rendering. - [capsoftware/cap](https://awesome-repositories.com/repository/capsoftware-cap.md) (17,026 ⭐) — Cap is a self-hosted screen recording and video collaboration platform designed for teams to replace synchronous meetings with asynchronous video updates. It provides a comprehensive suite for capturing high-resolution desktop activity, including system audio, microphone input, and camera overlays, which are then processed through an integrated post-production workflow. The platform distinguishes itself by offering full data sovereignty through containerized deployment and object storage abstractions, allowing users to host their media assets on private infrastructure or S3-compatible buckets. Beyond simple recording, it features keyframe-based video compositing, automated AI-powered transcription, and visual branding tools that enable creators to polish and annotate their content before sharing. The system facilitates team engagement through a centralized workspace where viewers can provide feedback via timestamped comments, reactions, and playback analytics. It also includes programmatic interfaces for embedding videos into external applications, managing media assets, and automating distribution workflows. The project is distributed as a containerized application, enabling deployment on private servers to maintain complete control over data storage and access permissions. - [tinyhumansai/openhuman](https://awesome-repositories.com/repository/tinyhumansai-openhuman.md) (32,374 ⭐) — OpenHuman is an AI application framework for building private intelligence systems and personal AI layers. It provides a system for deploying private AI assistants that execute technical tasks and manage personal knowledge bases. The project features a model-agnostic request proxy that routes AI workloads to different large language models based on requirements for reasoning, speed, or vision. It integrates an OAuth-driven data integrator to synchronize personal information from external services into a local knowledge base composed of hierarchical Markdown summaries. The framework also includes a voice interface with synchronized avatars for participation in video conferencing. The system covers autonomous agent orchestration with sandboxed tool execution for coding, web research, and filesystem manipulation. It implements a headless JSON-RPC server architecture for remote client access and includes a token-reduction pipeline to compress payloads and optimize model context. Security is handled through local data encryption, secure credential storage, and agent execution isolation within containers or OS jails. The core logic can be deployed as a self-hosted containerized server to maintain data privacy and support local model execution. - [healthchecks/healthchecks](https://awesome-repositories.com/repository/healthchecks-healthchecks.md) (9,891 ⭐) — Healthchecks is a heartbeat monitoring service and cron job monitoring tool designed to track the execution and success of scheduled tasks and systemd timers. It functions as a dead man switch, alerting users when expected periodic signals from remote processes fail to arrive. The system accepts health signals via HTTP and SMTP, allowing it to track infrastructure heartbeats from sources ranging from CI/CD workflows to network routers. It distinguishes itself by supporting the capture of diagnostic data, including exit codes and execution logs, and by calculating the duration between start and success signals to detect hanging jobs. The platform includes a health dashboard, status badge generation, and a Prometheus-compatible metrics exporter for external observability. Alerts are routed through a multi-channel notification system including webhooks and SMS, while large request payloads can be offloaded to S3-compatible object storage. User security is managed through WebAuthn two-factor authentication and optional reverse proxy identity integration. - [karneades/malware-persistence](https://awesome-repositories.com/repository/karneades-malware-persistence.md) (188 ⭐) — Collection of malware persistence and hunting information. Be a persistent persistence hunter! - [citizenlab/malware-signatures](https://awesome-repositories.com/repository/citizenlab-malware-signatures.md) (143 ⭐) — Yara rules for malware families seen as part of targeted threats project - [chartdb/chartdb](https://awesome-repositories.com/repository/chartdb-chartdb.md) (21,286 ⭐) — ChartDB is a database schema visualizer and entity-relationship diagramming platform designed to help developers understand, design, and document complex data architectures. It functions as a visual workspace where users can create and modify database schemas, define table attributes, and map foreign key relationships. By parsing database metadata or SQL scripts, the tool generates interactive diagrams that provide a clear overview of structural interdependencies and data associations. The platform distinguishes itself through its focus on automated documentation and schema synchronization. It supports programmatic diagram generation and scheduled background tasks that refresh visual representations to reflect changes in the underlying database structure. This ensures that technical documentation remains aligned with the live schema, while features like dependency mapping and relationship cardinality visualization provide deeper insights into how data entities interact. Beyond visualization, the tool facilitates schema portability by converting diagrams into standard database markup scripts, enabling version control and migration across different environments. Users can manage their workspace through automated layout engines, grid alignment, and filtering tools, or export diagrams as images for stakeholder sharing. The platform also supports embedding interactive diagrams into external documentation and offers containerized self-hosting options for teams requiring private infrastructure and data sovereignty. - [cockroachdb/cockroach](https://awesome-repositories.com/repository/cockroachdb-cockroach.md) (32,207 ⭐) — Cockroach is a distributed SQL database designed to scale horizontally across multiple nodes while maintaining strict ACID compliance and global data consistency. It functions as a relational database engine that automatically partitions data into ranges, rebalancing them across a cluster to accommodate growing storage and throughput requirements. By utilizing a distributed consensus protocol, the system ensures that all nodes agree on the order of operations, providing fault tolerance and continuous availability even in the event of hardware failures. The system distinguishes itself through a layered architecture that separates the relational SQL abstraction from a distributed key-value store. It achieves global consistency without requiring perfectly synchronized hardware clocks by employing a hybrid logical clock synchronization mechanism. To support high-concurrency environments, it utilizes multi-version concurrency control and lock-free transaction execution, which allow for consistent snapshots and efficient conflict resolution. Furthermore, the engine is built for compatibility, implementing the standard wire protocol to support existing relational database drivers and tools. Beyond its core transactional capabilities, the platform includes comprehensive tooling for cluster orchestration, security, and performance diagnostics. It supports a variety of deployment models, ranging from self-hosted on-premises configurations to fully managed cloud services. The system provides a command-line interface for session management and query execution, ensuring that administrators can monitor cluster health and manage workloads through standard relational interfaces. - [scriptscat/scriptcat](https://awesome-repositories.com/repository/scriptscat-scriptcat.md) (4,122 ⭐) — Scriptcat is a user script manager and browser extension designed to install, execute, and manage custom JavaScript scripts to modify website behavior and extend browser functionality. It features a JavaScript sandbox environment that provides specialized APIs for storage, cookies, and system notifications, alongside a cloud-synced script repository to keep subscriptions and configurations consistent across multiple devices. The project includes an in-browser script editor for writing, testing, and debugging code directly within the browser. It also incorporates a cross-domain request engine that enables HTTP requests to bypass standard browser security policies to exchange data with external domains. The system covers a broad range of capabilities including browser automation via recurring task scheduling and background script execution, web page customization through context injection, and comprehensive script lifecycle management such as bulk importing and version control. It provides data persistence through local, tab-scoped, and synchronized storage, as well as security controls for domain-based blocking and permission management. - [openipc/sandbox-fpv](https://awesome-repositories.com/repository/openipc-sandbox-fpv.md) (0 ⭐) — Sandbox for FPV experiments. Telegram-group: https://t.me/+BMyMoolVOpkzNWUy | link - [heyform/heyform](https://awesome-repositories.com/repository/heyform-heyform.md) (8,852 ⭐) — Heyform is an open-source form builder and self-hosted data collection platform. It provides a no-code designer for creating dynamic web-based surveys and input forms, supported by an extensible backend for managing submissions and storing results in a private database. The system distinguishes itself through advanced form logic and branding controls. It includes a conditional logic engine to show or hide sections based on user responses and allows for precise visual identity customization through configurable themes and custom CSS injection. The platform covers a broad range of operational capabilities, including payment gateway integration for financial transactions, automated data synchronization via webhooks, and the ability to embed forms directly into external websites. It also features submission metrics analysis to track drop-off rates, password-protected access for private pages, and integrated spam protection. The infrastructure supports deployment on private servers with custom domain mapping and integrates with S3-compatible object storage and SMTP email servers. - [executemalware/malware-iocs](https://awesome-repositories.com/repository/executemalware-malware-iocs.md) (0 ⭐) — This is where I'll post IOCs from malware investigations