Ghidra is a software reverse engineering (SRE) framework

The ZAP by Checkmarx Core project

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

iOS and macOS Decompiler

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities

Vulnerable app with examples showing how to not use secrets

BDD Automated Security Tests for Web Applications

A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.

An experiment into dynamic hooking and modification of Android application functions and return values.