awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索开源替代品自托管软件博客网站地图
项目关于排名机制媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

19 个仓库

Awesome GitHub RepositoriesNetwork Security

Protocols and tools for securing network communication, including TLS termination and encryption.

Distinguishing note: Focuses on transport-layer security.

Explore 19 awesome GitHub repositories matching security & cryptography · Network Security. Refine with filters or upvote what's useful.

Awesome Network Security GitHub Repositories

用 AI 发现最棒的仓库。我们将通过 AI 为您搜索最匹配的仓库。
  • open-webui/open-webuiopen-webui 的头像

    open-webui/open-webui

    142,694在 GitHub 上查看↗

    Open WebUI is a self-hosted, web-based platform designed for interacting with local and remote artificial intelligence models. It functions as a unified interface and orchestration suite, enabling users to build, deploy, and manage specialized AI agents equipped with custom instructions, external tool access, and private knowledge bases. The platform distinguishes itself through a modular architecture that supports complex AI workflows. It features a plugin-based framework for custom logic and pipeline-based request processing, allowing developers to filter or transform data streams before th

    Protects deployments with HTTPS and TLS termination for encrypted communication.

    Pythonaillmllm-ui
    在 GitHub 上查看↗142,694
  • rustfs/rustfsrustfs 的头像

    rustfs/rustfs

    28,850在 GitHub 上查看↗

    Rustfs is a distributed object storage system designed for high availability and horizontal scalability. It functions as a cluster-based platform that manages data across multiple nodes, providing a self-hosted infrastructure for large-scale storage requirements. The system is built to be container-native, utilizing an operator to automate deployment and management within orchestrated environments. It provides compatibility with standard object storage protocols, allowing existing applications and tools to interact with the storage layer through a translation interface. To ensure long-term re

    Secures network communication and data in transit using transport layer security certificates.

    Rustamazon-s3bigdatacloud-native
    在 GitHub 上查看↗28,850
  • grpc/grpc-gogrpc 的头像

    grpc/grpc-go

    22,962在 GitHub 上查看↗

    grpc-go is a Go language implementation of the gRPC framework, providing a remote procedure call library for high-performance service communication. It uses the HTTP/2 protocol to execute functions on remote servers as if they were local methods and utilizes protobuf service bindings to generate type-safe client and server code. The project features a bidirectional streaming transport that supports asynchronous, full-duplex message streams between clients and servers. This networking layer allows for various communication patterns, including client-to-server and server-to-client streaming, to

    Secures network traffic using transport layer security certificates to ensure data privacy and server identity.

    Godogs-over-catsgiant-robotsgo
    在 GitHub 上查看↗22,962
  • crystal-lang/crystalcrystal-lang 的头像

    crystal-lang/crystal

    20,299在 GitHub 上查看↗

    Crystal is a statically typed, compiled programming language designed for high performance and memory safety. It leverages an LLVM-based compiler to translate source code into optimized machine-executable binaries, while its type-inference-based static analysis enforces strict safety rules during the build process. The language distinguishes itself through a fiber-based concurrent runtime that manages lightweight execution units for asynchronous input and output without blocking the main process. It also features a powerful compile-time macro system that allows for the inspection and transfor

    Implements TLS protocols and cryptographic routines to ensure secure network data transmission.

    Crystalcompilercrystalcrystal-language
    在 GitHub 上查看↗20,299
  • unetworking/uwebsocketsuNetworking 的头像

    uNetworking/uWebSockets

    18,888在 GitHub 上查看↗

    uWebSockets is a high-performance networking engine providing an HTTP web server and a WebSocket server framework. It implements a multi-threaded event loop architecture to deploy isolated application instances across multiple CPU cores and includes an SSL/TLS network layer for secure, encrypted communication. The project features a dedicated WebSocket pub/sub engine for distributing messages to specific groups of connected clients. It optimizes network throughput through syscall corking to reduce kernel overhead and employs payload compression to minimize data transfer sizes. The system cov

    Provides transport-layer security through the implementation of SSL and TLS encryption for network communication.

    C++commercialcross-platformhttp
    在 GitHub 上查看↗18,888
  • secureauthcorp/impacketSecureAuthCorp 的头像

    SecureAuthCorp/impacket

    15,850在 GitHub 上查看↗

    Impacket is a Python network protocol library and packet crafting framework used for constructing, modifying, and sending raw network packets. It functions as a network protocol manipulation toolkit that allows for the implementation of communication protocols through structured object models. The project provides a Windows network security toolkit specifically designed for interacting with Active Directory and SMB services. It enables network security testing and auditing of Windows environments by executing authentication sequences using passwords, hashes, tickets, or security keys. The li

    Provides primitives for auditing and researching network authentication and session protocols in Windows environments.

    Python
    在 GitHub 上查看↗15,850
  • coresecurity/impacketCoreSecurity 的头像

    CoreSecurity/impacket

    15,823在 GitHub 上查看↗

    Impacket is a Python network protocol library and low-level implementation foundation. It provides a collection of classes for implementing and manipulating network protocols such as SMB, TCP, and UDP. The project serves as a network authentication framework for verifying user identities using passwords, hashes, and security tickets. It also functions as a network packet manipulation toolkit and security research tool for analyzing protocol behaviors and identifying vulnerabilities. The library covers the creation, parsing, and modification of raw network data to analyze communication stacks

    Provides primitives for auditing and researching network authentication and session protocols.

    Python
    在 GitHub 上查看↗15,823
  • jpillora/chiseljpillora 的头像

    jpillora/chisel

    15,615在 GitHub 上查看↗

    Chisel is a network tunneling tool that facilitates secure communication by encapsulating TCP and UDP traffic within HTTP requests. It functions as a connection multiplexer, consolidating multiple logical network streams into a single persistent connection to improve throughput and reduce overhead. By leveraging standard web protocols, the system enables firewall traversal and provides a mechanism for remote port forwarding and proxying. The project distinguishes itself through its focus on resilient connectivity and granular access control. It maintains persistent network sessions across uns

    Encrypts tunneled traffic using standard security protocols to ensure data remains private across untrusted segments.

    Gogolanghttptcp
    在 GitHub 上查看↗15,615
  • fortra/impacketfortra 的头像

    fortra/impacket

    15,467在 GitHub 上查看↗

    Impacket is a collection of Python classes designed for the construction, manipulation, and analysis of low-level network packets and services. It functions as a framework for building custom network tools, providing a programmatic interface to interact with communication protocols and service architectures. The library provides primitives for managing authentication, session state, and remote procedure calls within network environments. By offering a modular class hierarchy, it allows for the assembly of network packets and the implementation of specialized communication stacks. The project

    Serves as a foundational toolkit for researching network authentication, session management, and remote procedure call protocols.

    Pythondcerpcdcomimpacket
    在 GitHub 上查看↗15,467
  • alibaba/tenginealibaba 的头像

    alibaba/tengine

    13,276在 GitHub 上查看↗

    Tengine is an enhanced Nginx web server distribution designed for high-traffic environments. It functions as a high-performance reverse proxy, dynamic load balancer, and HTTP/3 proxy server, integrating an embedded Lua scripting engine to allow for custom business logic and dynamic request processing. The project distinguishes itself through a focus on modern transport protocols and efficiency, featuring native support for QUIC and HTTP/3 to reduce connection latency. It implements userspace UDP forwarding to bypass the kernel for higher throughput and provides the ability to dynamically upda

    Secures network communications using the Network TLS protocol for encrypted transport.

    Chttp3ingressnginx
    在 GitHub 上查看↗13,276
  • gallopsled/pwntoolsGallopsled 的头像

    Gallopsled/pwntools

    13,271在 GitHub 上查看↗

    Pwntools is a Python-based framework designed for rapid prototyping and automation in binary exploitation, reverse engineering, and security research. It serves as a comprehensive toolkit for interacting with local and remote processes, providing the primitives necessary to manage complex exploit workflows and streamline security analysis tasks. The framework distinguishes itself through its specialized capabilities for binary manipulation and automated exploit construction. It includes dedicated utilities for parsing executable file formats, assembling and disassembling machine code, and gen

    Provides primitives for debugging processes, managing payloads, and researching security vulnerabilities.

    Pythonassemblybsdcapture-the-flag
    在 GitHub 上查看↗13,271
  • projectdiscovery/nuclei-templatesprojectdiscovery 的头像

    projectdiscovery/nuclei-templates

    12,518在 GitHub 上查看↗

    Nuclei-templates is a security automation framework and vulnerability scanning library designed for the continuous assessment of distributed infrastructure. It functions as a collection of structured configuration files that define how to identify security flaws and misconfigurations across web applications and network services. The project utilizes a declarative domain-specific language to decouple detection logic from the underlying execution engine. This approach allows for the creation of modular, protocol-agnostic scanning rules that can be updated independently of the core software. By

    Validates the security posture of various network protocols by crafting custom requests and verification logic.

    JavaScriptbugbountyexploit-developmentexploits
    在 GitHub 上查看↗12,518
  • vanhauser-thc/thc-hydravanhauser-thc 的头像

    vanhauser-thc/thc-hydra

    11,943在 GitHub 上查看↗

    Hydra is a network login password cracker and authentication tester designed to identify valid usernames and passwords through automated brute-force and dictionary attacks. It serves as a multi-protocol authentication tester capable of verifying credentials across a wide range of remote network services, including SSH, SMB, FTP, and various database listeners. The project is distinguished by its ability to execute parallelized password attacks against multiple servers and protocols simultaneously. It features a modular system for implementing diverse network authentication schemes, allowing f

    Verifies credentials across a wide range of services including SSH, SMB, FTP, and databases.

    C
    在 GitHub 上查看↗11,943
  • dstotijn/hettydstotijn 的头像

    dstotijn/hetty

    11,485在 GitHub 上查看↗

    Hetty is an HTTP intercepting proxy and web security research toolkit used to capture, inspect, and modify traffic between a browser and a server. It functions as an HTTP request editor for creating and replaying manual requests to test server behavior and as a project-based traffic logger that isolates network logs across different security research engagements. The tool provides a request-response interception loop that pauses outgoing requests and incoming responses in transit, allowing for manual editing or cancellation. It includes a manual request replay engine to construct and transmit

    Offers a suite of tools for identifying web vulnerabilities through traffic analysis and manual request crafting.

    Go
    在 GitHub 上查看↗11,485
  • getumbrel/llama-gptgetumbrel 的头像

    getumbrel/llama-gpt

    10,991在 GitHub 上查看↗

    Llama-GPT is a self-hosted generative AI model runner that provides a private web interface for interacting with large language models. By executing these models directly on local hardware, it ensures that all intelligent assistance remains offline and independent of external cloud service providers. The project functions as a private assistant that maintains complete data ownership by storing all application state and model interactions on local storage volumes. It is designed to operate within a broader self-hosted computing environment, allowing users to maintain control over their persona

    Configures local services like ad-blocking and encrypted remote access to secure home networks and simplify connectivity.

    TypeScriptaichatgptcode-llama
    在 GitHub 上查看↗10,991
  • projectdiscovery/naabuprojectdiscovery 的头像

    projectdiscovery/naabu

    5,766在 GitHub 上查看↗

    Naabu is a port scanner library and tool that probes hosts for open ports using SYN, CONNECT, and UDP methods to identify active services. It functions as a Go library for embedding port scanning into programs, and as a standalone tool that accepts targets as hostnames, IP addresses, CIDR ranges, or ASN numbers. The tool discovers live hosts before scanning, filters ports by range or top lists, and can integrate with Nmap for service version detection. The project distinguishes itself through its SYN-based port probing approach that sends TCP SYN packets and analyzes responses without complet

    Performs automated vulnerability assessment and monitoring to secure internal networks.

    Gocdn-exclusionhacktoberfestnmap
    在 GitHub 上查看↗5,766
  • zalando/postgres-operatorzalando 的头像

    zalando/postgres-operator

    5,093在 GitHub 上查看↗

    This project is a PostgreSQL Kubernetes operator and database orchestrator designed to automate the deployment, scaling, and lifecycle management of high-availability database clusters. It functions as a controller that uses declarative manifests to provision and synchronize the state of database instances within a cluster. The system manages high availability through streaming replication and ensures constant availability during maintenance via rolling updates. It also serves as a backup and recovery manager, handling point-in-time recovery, logical backups, and cluster cloning using cloud s

    Implements custom TLS certificates to encrypt and secure communication between the application and database.

    Goclusterdata-infrastructuredatabase-as-a-service
    在 GitHub 上查看↗5,093
  • antswordproject/antswordAntSwordProject 的头像

    AntSwordProject/antSword

    4,620在 GitHub 上查看↗

    AntSword 是一个跨平台的 Web 管理器和渗透测试框架,专为多个远程网站环境的集中式管理而设计。它作为一个远程网站管理工具和 Web Shell 管理工具,允许用户从单个界面组织和控制不同的 Web 服务器。 该项目为安全研究人员提供了一个工具包,用于执行授权的安全审计并识别漏洞。它支持 Web 渗透测试和安全研究工作流,以分析 Web 应用行为并发现潜在的漏洞利用。 该系统涵盖了远程网站管理和跨平台 Web 管理的广泛功能,能够跨不同的操作系统和托管平台执行管理任务和安全检查。

    Supports security research workflows for analyzing web application behavior and discovering potential exploits.

    JavaScript
    在 GitHub 上查看↗4,620
  • apache/httpdapache 的头像

    apache/httpd

    4,051在 GitHub 上查看↗

    这是一个 HTTP Web 服务器,可在各种操作系统上使用 HTTP/1.1 和 HTTP/2 协议向客户端交付 Web 内容。它可用作反向代理服务器、基于规则的 URL 重写器、SSL/TLS 终止网关和虚拟主机管理器。 该服务器能够通过将请求映射到特定的目录结构,在单个实例上托管多个不同的域名。它在服务器边界对网络流量进行加密和解密,以确保客户端与服务器之间的通信安全。此外,它还在定位资源之前,使用正则表达式引擎将请求的 URL 转换为不同的路径。 其广泛的功能包括静态网站托管以及通过服务器端脚本执行动态内容。该系统提供 Web 访问控制,可根据用户身份、认证规则或网络来源限制或授予对文件和目录的访问权限。它还通过将传入请求转发到后端服务器来管理流量。

    Implements transport-layer security to encrypt network sockets between the server and clients.

    Chttpd
    在 GitHub 上查看↗4,051
  1. Home
  2. Security & Cryptography
  3. Network Security

探索子标签

  • Protocol Security TestersTools for validating the security posture of network protocols through custom requests and verification logic. **Distinct from Network Security:** Distinct from Network Security: focuses on active protocol testing and vulnerability discovery rather than transport-layer security.
  • Security Research Toolkits1 个子标签Collections of primitives for auditing and researching network authentication and session protocols. **Distinct from Network Security:** Distinct from Network Security: focuses on research-oriented primitives for protocol analysis rather than transport-layer security implementation.