Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
created at Feb. 1, 2017, 1:24 p.m.
A collection of awesome videos, articles, books and resources about ARM exploitation.
created at June 30, 2019, 3:09 p.m.
Swiss army knife for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.
created at Oct. 20, 2020, 2:46 p.m.
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
created at Oct. 1, 2021, 12:01 p.m.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
created at Nov. 12, 2019, 8:07 p.m.
A curated list of awesome resources about Electron.js (in)security
created at June 1, 2020, 10:02 a.m.
Curiefense is a unified, open source platform protecting cloud native applications.
created at Oct. 27, 2020, 4:53 p.m.
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
created at July 3, 2022, 1:41 p.m.
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
created at Oct. 5, 2019, 10:52 a.m.
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
created at March 27, 2022, 10 a.m.
Multiplatform command-line password manager
created at Dec. 1, 2014, 12:39 a.m.
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
created at March 16, 2021, 4:48 a.m.