Interactive workload identity security visualization - Learn workload identity through animated explanations

Bake microVMs into standalone executables

Operation Frostbyte, AKA SnowGoat. A misconfigured Snowflake environment.

Getting better stacks and backtraces in Frida

A repo for Frida Vulncon Workshop

AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.

Open Source DeepWiki: AI-Powered Wiki Generator for GitHub/Gitlab/Bitbucket Repositories. Join the discord: https://discord.gg/gMwThUMeme

Private keys that have become public ...

Detect installed app list on iOS using unauthorized iOS private APIs (SBSLaunchApplicationWithIdentifierAndURLAndLaunchOptions)

Easy-to-use Android library for tampering detection, with a sample app included

Type diagram plugin for JADX decompiler

Public researchings of the Google's Android apps protection

Inspect and instrument React Native applications at runtime

Miscellaneous code

Workshop for finding software vulnerabilities using open source tools, which includes a Goat-like Python and C application

Mighty but tiny URI parser

A automated tool to download patched and N-1 versions of the patch for patch diffing

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

🔐 A CLI tool to extract server certificates

A deobfuscator for scripts obfuscated by Obfuscator.io

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods…

Android arkanoid (breakout) type game

oauth security guidelines

A Frida based tool that traces usage of the JNI API in Android apps.

a structural diff that understands syntax 🟥🟩

Proof of concept code for Datadog Security Labs referenced exploits.

Golang Application to Scan applications protocol structures.

Web Attack Cheat Sheet