Grow your team on GitHub
GitHub is home to over 28 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.Sign up
Bypass SSL certificate pinning for most applications
A test framework for testing SSL/TLS client certificate validation.
Security profiling for blackbox iOS
iSEC Partners' research publications
Sample SSL client code for correct endpoint validation.
You'll Never Take Me Alive!
A library for efficient interception of established TCP connections
Current development of SSLyze now takes place on a separate repository
A tool for calculating necessary SQL Server permissions
Certificate extraction tool for Windows
pykd script to dynamically find vtables on heap (windows x86/x64)
A brute-forcing delta robot
Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS Apps
You'll never take me alive.
A log collector for Peach fuzzing in the cloud
RTSP network protocol fuzzer
AWS EC2 and S3 Security Auditing Tool
Security profiling for blackbox Android
Bypass signature and permission checks for IPCs
Make any application debuggable
NSKeyed(Un)ArchiverDelegate implementation to encrypt state prior to preservation and decrypt it when restoring.
A BeanShell plugin for WebScarab to automate SAML auditing.