@GDSSecurity

Gotham Digital Science

  • sslscan

    Forked from rbsec/sslscan

    sslscan tests SSL/TLS enabled services to discover supported cipher suites

    C 71 Updated Nov 13, 2016
  • Deployment checklist for securely deploying Docker

    341 44 Updated Nov 1, 2016
  • This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

    Python 556 189 Updated Oct 31, 2016
  • Python 50 20 Updated Sep 19, 2016
  • C 11 13 Updated Sep 9, 2016
  • Python 3 Updated Aug 25, 2016
  • Rogue AP killer

    Python 1 7 Updated Aug 25, 2016
  • A portable console aimed at making pentesting with PowerShell a little easier.

    C# 22 62 Updated Aug 25, 2016
  • Script to test if a server is vulnerable to the JetLeak vulnerability

    Python 37 28 Updated Jul 1, 2016
  • This library was co-developed with a leading financial institution in order to build a single solution for Cross-Site Request Forgery (CSRF) prevention that is flexible enough to deploy firm-wide within diverse Java/J2EE web application environments.

    Java 8 11 Updated Jun 14, 2016
  • Utility for converting Findbugs, ESLint and PMD XML results into HP Fortify FPRs

    XSLT 2 7 Updated Apr 9, 2016
  • Automated Linux evil maid attack

    Python 135 31 Updated Dec 22, 2015
  • Custom Fortify SCA rules to detect common JSSE certification validation flaws

    Java 3 4 Updated Nov 18, 2015
  • Lua 17 12 Updated Nov 18, 2015
  • Python 73 37 Updated Nov 18, 2015
  • Custom security ruleset for the popular Java static analysis tool PMD.

    Java 29 15 Updated Nov 18, 2015
  • C# 9 2 Updated Nov 18, 2015
  • Python 6 4 Updated Nov 18, 2015
  • Objective-C 18 6 Updated Nov 18, 2015
  • Checklist intended to be used as a baseline for assessing, designing, and testing the security of a MAM (Application Wrapping) solution

    10 6 Updated Sep 3, 2015
  • A collection of publicly released whitepapers

    7 4 Updated Jun 1, 2015
  • This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB share.

    Ruby 10 6 Updated Jan 26, 2015
  • Java 4 6 Updated Dec 15, 2014
  • Sample Findbugs custom detector for finding potentially insecure Scala code.

    Java 5 4 Updated Nov 3, 2014
  • ListLock APK contains the demo APK for the Using Mobile Substrate With Android Applications blog post

    Java 4 3 Updated Sep 23, 2014
  • This repository contains slide decks and other materials for talks and research presented at various conferences.

    7 8 Updated Aug 14, 2014
  • Fizzer is an assessment tool for fuzzing FIX messages.

    C# 8 7 Updated Sep 25, 2013
  • IronWASP module to test security of SSL services. Ported from http://www.bolet.org/TestSSLServer/

    C# 8 6 Updated Sep 2, 2013
  • wifitap updated for BT5r3

    Python 94 27 Updated Jan 31, 2013
  • Configurable content-sniffing XSS test bed

    PHP 1 1 Updated Jan 8, 2013