elkhvn's Stars
Lissy93/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
pwntester/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
iphelix/dnschef
DNSChef - DNS proxy for Penetration Testers and Malware Analysts
NickstaDB/DeserLab
Java deserialization exploitation lab.
frohoff/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
hahwul/DevSecOps
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
CyberSecurityUP/eWPTX-Preparation
evilcos/xss.swf
a tiny tool for swf hacking, just browse it:)
google/closure-compiler
A JavaScript checker and optimizer.
anchore/grype
A vulnerability scanner for container images and filesystems
zaproxy/zaproxy
The ZAP core project
mgreiler/code-review-checklist
This code review checklist helps you be a more effective and efficient code reviewer.
wireghoul/graudit
grep rough audit - source code auditing tool
OWASP/www-project-developer-guide
OWASP Project Developer Guide - Document and Project Web pages
juice-shop/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
RetireJS/retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
pyupio/safety
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
google/google-ctf
Google CTF
snyk/cli
Snyk CLI scans and monitors your projects for security vulnerabilities.
ChiChou/grapefruit
(WIP) Runtime Application Instruments for iOS. Previously Passionfruit
prateek147/DVIA-v2
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested up to iOS 11. The current version is writen in Swift and has the following vulnerabilities.
sensepost/objection
📱 objection - runtime mobile exploration
frida/frida
Clone this repo to build Frida
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
dub-flow/appsec-challenges
This repo contains the code for my appsec challenges
vimeo/psalm
A static analysis tool for finding errors in PHP applications
webpwnized/mutillidae
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
RedSiege/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
d78ui98/APKDeepLens
Android security insights in full spectrum.
theowni/Damn-Vulnerable-RESTaurant-API-Game
Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.