Discover
Find tools for your stack. Pick an audience — we handle the noise.
On Hacker News
Ranked by discussion
tailscale
HealthyThe easiest, most secure way to use WireGuard and 2FA.
CyberChef
MixedThe Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
caddy
At RiskFast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
netbird
MixedConnect your devices into a secure WireGuard®-based overlay network with SSO, MFA and granular access controls.
pocketbase
HealthyOpen Source realtime backend in 1 file
opensnitch
At RiskOpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
pangolin
HealthyIdentity-aware VPN and proxy for remote access to anything, anywhere.
Maigret
Mixed♂ Collect a dossier on a person by username from 3000+ sites
certificates
MixedA private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
keycloak
HealthyOpen Source Identity and Access Management For Modern Applications and Services
mitmproxy
HealthyAn interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
headscale
At RiskAn open source, self-hosted implementation of the Tailscale control server
Trending now
See all →-
17
mlorentedev/hive
On-demand Obsidian vault access via MCP. Adaptive context loading (67-82% token savings), full-text and ranked search, health checks, auto git commit, and worker delegation to cheaper models. 10 tools, works with any MCP client.
Healthy -
7
logly/mureo
Framework for AI agents (Claude Code, Cursor, Codex, Gemini) to operate Google Ads, Meta Ads, and Search Console. Grounded in a local STRATEGY.md — not metric-chasing. Defense-in-depth security, local-first. Apache 2.0.
Healthy -
7
UPinar/contrastapi
Security intelligence API with 31 MCP tools for CVE/EPSS/KEV lookup, domain recon (DNS/WHOIS/SSL/subdomains/CT logs), IOC/threat intel, OSINT (email/phone/username), and code security scanning (secrets, injection). Free 100 req/hr.
Healthy -
7
Nhost
The Open Source Firebase Alternative with GraphQL.
Healthy -
6
nikolai-vysotskyi/trace-mcp
Framework-aware code intelligence that indexes source code into a cross-language dependency graph. Understands framework semantics — routes, ORM relations, component rendering, DI trees — for navigation, impact analysis, call graphs, refactoring, security scanning, and cross-session memory.
Healthy -
5
infisical
Infisical is the open-source platform for secrets, certificates, and privileged access management.
Healthy -
4
Prowler
Tool based on AWS-CLI commands for Amazon Web Services account security assessment and hardening.
Healthy -
3
pentest-ai
Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.
Healthy -
3
msaad00/agent-bom
AI supply chain security scanner with 18 MCP tools. Auto-discovers 20 MCP clients, scans dependencies for CVEs (OSV/NVD/EPSS/CISA KEV), maps blast radius from vulnerabilities to exposed credentials and tools, runs CIS benchmarks, generates CycloneDX/SPDX SBOMs, and enforces compliance across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.
Healthy -
3
authentik
The authentication glue you need.
Healthy -
2
jmrplens/gitlab-mcp-server
Complete GitLab REST API v4 coverage with 1006 MCP tools across 162 domains, 42 meta-tools, 24 resources, and 38 prompts. Cross-platform Go binary with stdio and HTTP transports, OAuth support, auto-update, read-only and safe modes.
Healthy -
2
Moloch
Moloch is an open source, large scale IPv4 packet capturing (PCAP), indexing and database system. A simple web interface is provided for PCAP browsing, searching, and exporting. APIs are exposed that allow PCAP data and JSON-formatted session data to be downloaded directly. Simple security is implemented by using HTTPS and HTTP digest password support or by using apache in front. Moloch is not meant to replace IDS engines but instead work along side them to store and index all the network traffic in standard PCAP format, providing fast access. Moloch is built to be deployed across many systems and can scale to handle multiple gigabits/sec of traffic.