FutureTrust analyzes electronic identification (eID) services in Europe and beyond. It is funded within the EU Framework Programme for Research and Innovation (Horizon 2020).
A Modifiable variable concept allows for easy runtime modifications of basic data types like integers, booleans, or byte arrays.
The TLS-Scanner Module from TLS-Attacker
BouncyCastle TLS examples
An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
The TLS-Scanner for the SIWECOS Project
Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
A TLS-Attacker maven Template for new TLS-Attacker related projects
A private messenger for Android.
A Java/Android library for communicating with the Signal messaging service.
PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
Signal Protocol library for Java/Android
An implementation for the XML Security Standard using the W3C WebCrypto API
A Secure, Efﬁcient, and Collaborative Real-Time Web Editor
Library to allow concurrent editing of XML documents using Operational Transforms based on ShareJS 0.6
A simple CORS misconfiguration scanner
SOAP webservices of different SOAP frameworks including samples for WS-Security.
The source code of our attacking tool described in the paper "Breaking and Fixing Gridcoin" published at WOOT'17, see also:
Breaking the security of Microsoft's RMS
Latex template for students writing a bachelor or master thesis
JsonML-related tools for losslessly converting between XML/HTML and JSON, including mixed-mode XML.
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (http://nds.rub.de/ ) and the Hackmanit GmbH (http://hackmanit.de/).
A tool to generate media files with malicious metadata
Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java