Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penet…

Objective-C 450 101 Updated Nov 19, 2019

samratashok / nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

PowerShell 9,952 2,542 Updated Apr 25, 2024

nowsecure / node-applesign

NodeJS module and commandline utility for re-signing iOS applications (IPA files).

TypeScript 482 79 Updated May 3, 2026

maciekish / iReSign

iReSign allows iDevice app bundles (.ipa) files to be signed or resigned with a digital certificate from Apple for distribution. This tool is aimed at enterprises users, for enterprise deployment, …

Objective-C 3,609 907 Updated Dec 1, 2023

shieldfy / API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

23,261 2,660 Updated Feb 10, 2026

ipentest / knoxss-UG

Documentation for knoXSS tool by @brutelogic

29 10 Updated Jan 24, 2017

ivRodriguezCA / RE-iOS-Apps

A completely free, open source and online course about Reverse Engineering iOS Applications.

2,883 378 Updated Apr 17, 2024

MuhammadKhizerJaved / Insecure-Firebase-Exploit

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "wr…

Python 326 81 Updated Jun 4, 2024

sensepost / objection

📱 objection - runtime mobile exploration

Python 9,207 980 Updated Jun 2, 2026

jrmdev / mitm_relay

Hackish way to intercept and modify non-HTTP protocols through Burp & others.

Python 627 106 Updated Mar 10, 2026

frohoff / ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Java 8,920 1,857 Updated Dec 4, 2025

foospidy / payloads

Git All the Payloads! A collection of web attack payloads.

Shell 3,955 991 Updated May 15, 2023

OWASP / mastg

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

Python 12,967 2,751 Updated Jun 13, 2026

globocom / secDevLabs

A laboratory for learning secure web and mobile development in a practical manner.

PHP 976 462 Updated Sep 25, 2024

securego / gosec

Go security checker

Go 8,862 699 Updated Jun 8, 2026

analysis-tools-dev / static-analysis

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Rust 14,621 1,477 Updated Jun 10, 2026

guardrailsio / awesome-golang-security

Awesome Golang Security resources 🕶🔐

1,964 149 Updated Jun 5, 2024

shawnmckinney / remote-code-execution-sample

Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.

Java 24 8 Updated Dec 3, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

T.Padma TPadma

Block or report TPadma

Stars

samratashok / ADModule

gnothiseautonlw / burp-shell-fwd-lfi

Veil-Framework / Veil-Evasion

mattnotmax / cyberchef-recipes

nicxlau / alfa-shell

D35m0nd142 / LFISuite

nddmars / dvta

trustedsec / social-engineer-toolkit

jcesarstef / dotdotslash

corneacristian / OSCP-MindMap

apsdehal / awesome-ctf

digininja / DVWA

prateek147 / DVIA