Stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
The Secure CommsOS™ for mission-critical operations
Automatic SQL injection and database takeover tool
World's fastest and most advanced password recovery utility
Pre-Built Vulnerable Environments Based on Docker-Compose
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…
Exploit Development and Reverse Engineering with GDB & LLDB Made Easy
📱 objection - runtime mobile exploration
open-source jailbreaking tool for many iOS devices
An Android NFC app for reading, writing, analyzing, etc. MIFARE Classic RFID tags.
Attack and defend active directory using modern post exploitation adversary tradecraft activity
pull decrypted ipa from jailbreak device
Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.
Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
A completely free, open source and online course about Reverse Engineering iOS Applications.
Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
A fork and successor of the Sulley Fuzzing Framework