Top 23 C Security Projects

• radare2

  9 19,679 9.9 C

  UNIX-like reverse engineering framework and command-line toolset

  

• systeminformer

  28 10,344 9.8 C

  A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com

  

Project mention: System Informer | /r/ITProTuesday | 2023-09-03

System Informer is a versatile system management tool designed to seamlessly monitor and analyze system resources, troubleshoot software issues, and identify potential malware threats. Offers system activity overviews, intuitive graphs, real-time statistics, active network connection monitoring, detailed disk access information, intricate stack trace analysis, and much more. evily2k describes it "like process explorer on steroids. Allows me to kill process that task manager would say access denied."

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• OpenVPN

  82 9,996 9.2 C

  OpenVPN is an open source VPN daemon

  

Project mention: Critical OpenVPN Zero-Day Flaws | news.ycombinator.com | 2024-05-03

• nmap

  26 9,331 9.1 C

  Nmap - the Network Mapper. Github mirror of official SVN repository.

  

Project mention: NMAP-formatter: convert NMAP results to HTML, CSV, JSON, graphviz (dot), SQLite | news.ycombinator.com | 2024-01-26

https://github.com/nmap/nmap/issues/635

This looks like a reasonable mitigation for the lack of native JSON output.

• Wazuh

  151 9,318 10.0 C

  Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

  

Project mention: Exclude certain CIS (sca) rules from agents | /r/Wazuh | 2023-12-11

There is currently no feature for excluding specific SCA rules however this feature has been requested here and would be added to the roadmap for future releases.

• Unicorn Engine

  15 7,199 1.0 C

  Unicorn CPU emulator framework (ARM, AArch64, M68K, Mips, Sparc, PowerPC, RiscV, S390x, TriCore, X86)

  

Project mention: Unicorn – lightweight multi-platform, multi-architecture CPU emulator framework | news.ycombinator.com | 2024-05-03

• capstone

  7 7,066 8.9 C

  Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), BPF, Ethereum VM, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

  

Project mention: Rise: Accelerate the Development of Open Source Software for RISC-V | news.ycombinator.com | 2023-05-31

Maybe then they can help us with the Capstone[1][2] disassembly engine auto-sync (automatic synchronization from the LLVM TableGen files) effort[3]. ARMv7, ARMv8/9, PowerPC are nearly finished, and MIPS in in near-term plans. Nobody stepped in for RISC-V yet.

[1] http://www.capstone-engine.org/

[2] https://github.com/capstone-engine/capstone

[3] https://github.com/capstone-engine/capstone/issues/2015

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• system-bus-radio

  19 6,141 4.2 C

  Transmits AM radio on computers without radio transmitting hardware.

Project mention: Web FM synthesizer made with HTML5 | news.ycombinator.com | 2023-10-29

As opposed to AM: https://fulldecent.github.io/system-bus-radio/

• tpotce

  31 5,943 8.9 C

  🍯 T-Pot - The All In One Honeypot Platform 🐝

  

Project mention: Honeypot in a home lab | /r/homelab | 2023-09-06

Have a look at tpot created by Deutsche Telekom. https://github.com/telekom-security/tpotce

• aircrack-ng

  5 4,843 8.6 C

  WiFi security auditing tools suite

Project mention: Official /r/rust "Who's Hiring" thread for job-seekers and job-offerers [Rust 1.70] | /r/rust | 2023-06-03

I contribute to open-source WiFi cybersecurity related projects such as aircrack-ng and hcxdumptool. Besides that, embedded systems are close to my heart so I always work on some STM32 or ESP32 based side project. Some of them are available on GitHub:

• AFLplusplus

  16 4,657 9.7 C

  The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

  

Project mention: Decoding C/C++ Compilation Process: From Source Code to Binary | /r/cpp | 2023-06-08

It could be cool to see some explanation of CFG representations or GIMPLE/LLVM here. GCC/Clang can print those out as text, or just compile to that code and not go lower if you ask them to. There are some interesting things you can do with bytecode, like Rellic, AFL++, or optview2. It seems a bit reductive imo to go straight from high-level code to disassembly without at all examining any layers in between. Especially if we use something like Polygeist or CIR.

• OSSEC

  12 4,282 4.4 C

  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

  

• Suricata

  23 4,112 9.9 C

  Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

  

Project mention: Aho-Corasick Algorithm | news.ycombinator.com | 2024-03-04

• honggfuzz

  5 2,985 7.1 C

  Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

  

• openssh-portable

  43 2,830 9.4 C

  Portable OpenSSH

  

Project mention: OpenBSD – sshd(8) split into multiple binaries | news.ycombinator.com | 2024-05-17

• pycryptodome

  8 2,683 8.4 C

  A self-contained cryptographic library for Python

• tcpdump

  2 2,561 9.5 C

  the TCPdump network dissector

  

Project mention: How do I debug a LAN connection issue on Linux | /r/techsupport | 2023-06-09

• nanos

  28 2,483 9.2 C

  A kernel designed to run one and only one application in a virtualized environment

  

Project mention: Show HN: Convert your Containerfile to a bootable OS | news.ycombinator.com | 2024-05-07

Erlang on Xen was most definitely an inspiration behind what we're working on with https://nanos.org .

• rizin

  46 2,455 9.8 C

  UNIX-like reverse engineering framework and command-line toolset.

  

Project mention: Refix: Fast, Debuggable, Reproducible Builds | news.ycombinator.com | 2024-04-02

Just for the record, for nicer inspection of files with such debug information, including compressed sections, and debuginfod support, Rizin[1] can be used, since starting from the 0.7.0 release[2] all of those were added.

[1] https://rizin.re

[2] https://github.com/rizinorg/rizin/releases/tag/v0.7.0

• OpenSC

  8 2,439 9.6 C

  Open source smart card tools and middleware. PKCS#11/MiniDriver/Tokend

  

Project mention: How do you put your private key files (.ppk) on a security key (HYPERFIDO U2F/FIDO2/HOTP) ? | /r/sysadmin | 2023-10-25

• u2f-zero

  1 2,390 0.0 C

  U2F USB token optimized for physical security, affordability, and style

• unikraft

  26 2,350 9.8 C

  A next-generation cloud native kernel designed to unlock best-in-class performance, security primitives and efficiency savings.

  

Project mention: KraftCloud | news.ycombinator.com | 2024-04-01

• solo1

  57 2,278 0.0 C

  Solo 1 firmware in C

  

Project mention: Passkey Implementation: Misconceptions, pitfalls and unknown unknowns | news.ycombinator.com | 2024-05-02

All phones ask for PIN or pattern in addition to face/fingerprint. Use that.

For the average user this is safe enough. (i.e) keep google/apple password safe. Then all is fine.

> exporting and FAANG lock-in

You don't ever have to even sign into FAANG if you can put up with inconvenience.

- Buy a U2F FIDO key like OPEN SOURCE https://solokeys.com/ or Yubikey etc

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

C Security related posts

• OpenBSD – sshd(8) split into multiple binaries

  2 projects | news.ycombinator.com | 17 May 2024

• Critical OpenVPN Zero-Day Flaws

  1 project | news.ycombinator.com | 3 May 2024

• Systemd Wants to Expand to Include a Sudo Replacement

  3 projects | news.ycombinator.com | 30 Apr 2024

• Global Socket – Connect like there is no firewall. Securely

  1 project | news.ycombinator.com | 30 Apr 2024

• Sandboxing All the Things with Flatpak and BubbleBox

  4 projects | news.ycombinator.com | 14 Apr 2024

• Are hackers watching your screen right now?

  2 projects | dev.to | 10 Apr 2024

• Tox Core is one of the nicest-to-read C codebases

  1 project | news.ycombinator.com | 22 Mar 2024
• A note from our sponsor - SaaSHub
  www.saashub.com | 17 May 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending C projects with our weekly report!