Ghidra is a software reverse engineering (SRE) framework

Termux - a terminal emulator application for Android OS extendible by variety of packages.

A private messenger for Android.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy lea…

log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vulnerable web services affected by the log4j vulnerabilities.

Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-searching payload generator, LFI mode, nix & windows support,…

E-commerce demo with spring reactive webflux and spring cloud microservice

Repository to store exploits created by Assetnotes Security Research team

Files + Writeups for DownUnderCTF 2020 Challenges

Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.