Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
created at Feb. 1, 2017, 1:24 p.m.
A collection of awesome videos, articles, books and resources about ARM exploitation.
created at June 30, 2019, 3:09 p.m.
Swiss army knife for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.
created at Oct. 20, 2020, 2:46 p.m.
A collection of fascinating and bizarre Censys Search Queries
created at Aug. 16, 2022, 4:52 p.m.
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
created at Oct. 1, 2021, 12:01 p.m.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
created at Nov. 12, 2019, 8:07 p.m.
A curated list of awesome resources about Electron.js (in)security
created at June 1, 2020, 10:02 a.m.
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
created at Oct. 26, 2022, 4:15 p.m.
Curiefense is a unified, open source platform protecting cloud native applications.
created at Oct. 27, 2020, 4:53 p.m.
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
created at July 3, 2022, 1:41 p.m.
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
created at Oct. 5, 2019, 10:52 a.m.
Multiplatform command-line password manager
created at Dec. 1, 2014, 12:39 a.m.
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
created at March 27, 2022, 10 a.m.