114 Open source projects that are alternatives of or similar to Vyapi

The Open Security Summit 2020 is focused on the collaboration between, Developers and Application Security

GSM Scanner, RTL-SDR, StingWatch, Meteor

PowerAuth Mobile SDK for adds capability for authentication and transaction signing into the mobile apps (ios, watchos, android).

Communicate with Fortify Software Security Center through REST API in java, a swagger generated client

Intentionally vulnerable Android application.

Tool for breaking into web applications.

⏱ 한 일을 기록하면 시각화 해서 보여주는 웹 앱⏱

Some good resources for getting started with application security

Vimana is an experimental security framework that aims to provide resources for auditing Python web applications.

pure python remote adb scanner + nmap scan module

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

Terraform module to create Amazon Cognito User Pools, configure its attributes and resources such as app clients, domain, resource servers. Amazon Cognito User Pools provide a secure user directory that scales to hundreds of millions of users.

Secure web socket implementation using AWS products and serverless framework

A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted marketing and aggressive ads libraries.

Oversecured Vulnerable iOS App

Various analysis of Android stalkerware

CLI to interact with Kondukto

A repository for scripting a mobile attack toolchain

Extension for Flask that adds support for AWSCognito into your application

Open source alternative to Auth0 / Firebase Auth / AWS Cognito

Authenticates API requests on a Node application by verifying the JWT signature of AccessToken or IDToken generated by Amazon Cognito.

CLI experience for Frontend developers in the JavaScript ecosystem.

AIO Tool for backing up and restoring AWS Cognito User Pools

Securing Microservices on AWS with Cognito, API Gateway and Lambda Demo

Starter project for ReactJS + Amazon Cognito + Amazon Amplify Framework with AWS CDK support

React Native AWS Cognito JS SDK

Mobile user authentication flow with React Native, Expo, and AWS Amplify: Sign In, Sign Up, Confirm Sign Up, Forget Password, Reset Password.

【iOS应用安全、安全攻防】hook及越狱的基本防护与检测(动态库注入检测、hook检测与防护、越狱检测、签名校验、IDA反编译分析加密协议Demo)；【数据传输安全】浅谈http、https与数据加密

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

Fast Advanced Spam Analysis Tool

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

🎯 RFI/LFI Payload List

Curating the best DevSecOps resources and tooling.

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki

A Continuous Threat Modeling methodology

XVWA is intentionally designed with many security flaws and enough technical ground to upskill application security knowledge. This whole idea is to evangelize web application security issues. Do let us know your suggestions for improvement or any more vulnerability you would like to see in XVWA future releases.

OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

Unofficial frida extension for VSCode

Mobile penetration testing android & iOS command cheatsheet

Oversecured Vulnerable Android App

Scanning APK file for URIs, endpoints & secrets.

Testowanie oprogramowania - Książka dla początkujących testerów

A fast and elegant extension for VSCode used for iOSre projects.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

Source code for Hacker101.com - a free online web and mobile security class.