A collection of various awesome lists for hackers, pentesters and security researchers

Automatic SQL injection and database takeover tool

Official home of the DB Browser for SQLite (DB4S) project. Previously known as "SQLite Database Browser" and "Database Browser for SQLite". Website at:

Open-Source Phishing Toolkit

A curated list of CTF frameworks, libraries, resources and softwares

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

Git All the Payloads! A collection of web attack payloads.

Tool to look for several security related Android application vulnerabilities

Application Security Verification Standard

Android SQLite API based on SQLCipher

(⌐■_■) - Raspberry Pi instrumenting Bettercap for Wi-Fi pwning.

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

Android Shared preference wrapper than encrypts the values of Shared Preferences. It's not bullet proof security but rather a quick win for incrementally making your android app more secure.

HTML9 Responsive Boilerstrap JS

Web and mobile application security training platform

Advanced Android TextView

Android Unpacker presented at Defcon 22: Android Hacker Protection Level 0

MCEdit 2.0 - World Editor for Minecraft.

A CORS proxy for everyone.

Turn GNU command line tools into SaaS (Stupid Hackathon Project)

Security profiling for blackbox Android

Next-gen BurpSuite penetration testing tool

O-Saft - OWASP SSL advanced forensic tool

Black box tool to bypass SSL verification on Android, even when pinning is used.

Quickjack is a point-and-click tool for intuitively producing advanced clickjacking and frame slicing attacks.

tinder cli built at stupid hackathon san francisco 2015

Example of certificate pinning on Android