Free and Open Source, Distributed, RESTful Search Engine

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

iOS and macOS Decompiler

A utility for doing compile or runtime code generation targeting Android's Dalvik VM

A large-scale entity and relation database supporting aggregation of properties

Web and mobile application security training platform

Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security assessments. #nsacyber

Apache Metron

Bypass SSL certificate pinning for most applications

The master repository for the Spacewalk Project.

An advanced Ethereum mobile wallet

这个仓库收集了所有在 GitHub 上能找到的 CVE 漏洞利用工具。 This repository collects all CVE exploits found on GitHub.

Security profiling for blackbox Android

Stroom is a highly scalable data storage, processing and analysis platform.

Example of certificate pinning on Android

Twitter River Plugin for elasticsearch (STOPPED)

Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()

Elasticsearch discovery with SRV records

Cex.io Java API

An app filled with random utilities. Sensors, timers, web API's.