Telegram for Android source

The ZAP by Checkmarx Core project

Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

The new bridge between Burp Suite and Frida!

Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities

Caja is a tool for safely embedding third party HTML, CSS and JavaScript in your website.

DIVA Android - Damn Insecure and vulnerable App for Android

Android Dalvik bytecode patcher.

A micro-benchmark suite to assess the stability of taint-analysis tools for Android

Turn your Burp suite into headless active web application vulnerability scanner

Source code for our "What the App is That? Deception and Countermeasures in the Android User Interface" paper

Symbolic execution and variability-aware analysis for PHP