Pinned Repositories
android-cve-2010-4804
Android Data Stealing Vulnerability
android-fde-decryption
Cracking and decrypting Android Full Device Encryption
android-nfc-paycardreader
NFC card reader Android app. Currently reads the german GeldKarte and some credit cards.
android-sms-spoof
PoC app which takes advantage of Android's SmsReceiverService being exported to fake an incoming SMS with no permissions.
droidsec.github.io
The droidsec web site!
espruino-lightwaverf
LightwaveRF for Espruino
kali-setup
Customise a new Kali setup with preferred tools
sim-ota-updates
Extracting MAC from SIM cards to crack DES OTA key for SIM updates
windows-certificate-export
Exporting Non-exportable Certificates from Microsoft Windows
thomascannon's Repositories
thomascannon/android-sms-spoof
PoC app which takes advantage of Android's SmsReceiverService being exported to fake an incoming SMS with no permissions.
thomascannon/android-fde-decryption
Cracking and decrypting Android Full Device Encryption
thomascannon/android-nfc-paycardreader
NFC card reader Android app. Currently reads the german GeldKarte and some credit cards.
thomascannon/sim-ota-updates
Extracting MAC from SIM cards to crack DES OTA key for SIM updates
thomascannon/android-cve-2010-4804
Android Data Stealing Vulnerability
thomascannon/droidsec.github.io
The droidsec web site!
thomascannon/espruino-lightwaverf
LightwaveRF for Espruino
thomascannon/windows-certificate-export
Exporting Non-exportable Certificates from Microsoft Windows
thomascannon/kali-setup
Customise a new Kali setup with preferred tools
thomascannon/arduino-bank-vault
Custom microcontroller powered bank vault as a hacking challenge
thomascannon/MASTestApp-Android
thomascannon/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
thomascannon/semgrep-rules-android-security
A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
thomascannon/uber-apk-signer
A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.