The TLS-Scanner Module from TLS-Attacker
The TLS-Scanner for the SIWECOS Project
Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
A TLS-Attacker maven Template for new TLS-Attacker related projects
A private messenger for Android.
A Java/Android library for communicating with the Signal messaging service.
A Modifiable variable concept allows for easy runtime modifications of basic data types like integers, booleans, or byte arrays.
BouncyCastle TLS examples
PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
Signal Protocol library for Java/Android
An implementation for the XML Security Standard using the W3C WebCrypto API
A Secure, Efﬁcient, and Collaborative Real-Time Web Editor
Library to allow concurrent editing of XML documents using Operational Transforms based on ShareJS 0.6
A simple CORS misconfiguration scanner
SOAP webservices of different SOAP frameworks including samples for WS-Security.
The source code of our attacking tool described in the paper "Breaking and Fixing Gridcoin" published at WOOT'17, see also:
Breaking the security of Microsoft's RMS
Latex template for students writing a bachelor or master thesis
FutureTrust analyzes electronic identification (eID) services in Europe and beyond. It is funded within the EU Framework Programme for Research and Innovation (Horizon 2020).
JsonML-related tools for losslessly converting between XML/HTML and JSON, including mixed-mode XML.
An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (http://nds.rub.de/ ) and the Hackmanit GmbH (http://hackmanit.de/).
A tool to generate media files with malicious metadata
Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
Sec2 is a project funded by Federal Ministry of Education and Research: http://www.sec2.org