Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
A Modifiable Variable concept allows for easy runtime modifications of basic data types like integers, booleans, or byte arrays.
Breaking the security of Microsoft's RMS
A simple CORS misconfigurations checker
Latex template for students writing a bachelor or master thesis
FutureTrust analyzes electronic identification (eID) services in Europe and beyond. It is funded within the EU Framework Programme for Research and Innovation (Horizon 2020).
JsonML-related tools for losslessly converting between XML/HTML and JSON, including mixed-mode XML.
Library to allow concurrent editing of XML documents using Operational Transforms based on ShareJS 0.6
A Secure, Efﬁcient, and Collaborative Real-Time Web Editor
An implementation for the XML Security Standard using the W3C WebCrypto API
PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (http://nds.rub.de/ ) and the Hackmanit GmbH (http://hackmanit.de/).
A tool to generate media files with malicious metadata
SOAP webservices of different SOAP frameworks including samples for WS-Security.
Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
Sec2 is a project funded by Federal Ministry of Education and Research: http://www.sec2.org
Simple application for playing with elliptic curves
Simple proxy designed to intercept and modify connections on the transport level. This means you can also modify TLS raw bytes.