Example project demonstrating some kind of OpenSSL certificate pinning. Related to blogpost at TKTK showing how to bypass such pinning.
☆19Jan 2, 2015Updated 11 years ago
Alternatives and similar repositories for ios_openssl_pinning_bypass
Users that are interested in ios_openssl_pinning_bypass are comparing it to the libraries listed below
Sorting:
- A proof of concept for Metasploit's CVE-2019-5624 vulnerability (Rubyzip insecure ZIP handling RCE)☆13May 2, 2019Updated 6 years ago
- poxyran's blog☆13Aug 27, 2020Updated 5 years ago
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- Writeups for CTF that took place in 2015.☆13Mar 22, 2016Updated 9 years ago
- All challenges I created for CTF☆12Jun 7, 2021Updated 4 years ago
- A scanner of the "World's Scariest" scanner☆17Dec 7, 2022Updated 3 years ago
- ☆18Dec 4, 2018Updated 7 years ago
- ☆16Oct 8, 2025Updated 5 months ago
- Tools for analysing the forward DNS data set published at https://scans.io/study/sonar.fdns_v2☆17Sep 17, 2017Updated 8 years ago
- gopclntab finder and analyzer for Radare2☆21Aug 15, 2020Updated 5 years ago
- HTTP requests of FrontPage expolit☆25Dec 19, 2013Updated 12 years ago
- Security Research☆94Jul 2, 2025Updated 8 months ago
- Vulnerable webapp testbed☆24May 11, 2016Updated 9 years ago
- PoC CVE-2017-5123 - LPE - Bypassing SMEP/SMAP. No KASLR☆32Jun 26, 2020Updated 5 years ago
- 33C3 CTF binary challenge☆27Jan 6, 2017Updated 9 years ago
- Fernbach is a vulnerable API written in the Flask micro web framework. The intent of this API is for testing the OWASP top ten vulnerabil…☆30Feb 4, 2022Updated 4 years ago
- Multiple radare2 rpipe scripts☆61Nov 6, 2017Updated 8 years ago
- A wrapper around jq, to help you parse jq output!☆30Aug 23, 2020Updated 5 years ago
- winAFL patch to enable network-based apps fuzzing☆37Sep 14, 2018Updated 7 years ago
- CVE-2020-2021☆22Oct 12, 2020Updated 5 years ago
- Auto Recon Bash Script☆31Dec 31, 2024Updated last year
- JSON API's Are Automatically Protected Against CSRF, And Google Almost Took It Away.☆34Jul 9, 2017Updated 8 years ago
- Dynamic binary translation framework for instrumenting x86-64 user space Linux programs☆38May 29, 2018Updated 7 years ago
- This repo will turn into a list of training materials for python starters with focus on security☆13Nov 21, 2018Updated 7 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆38Aug 13, 2018Updated 7 years ago
- My python3 implementation of a Forward Shell☆36Jan 25, 2019Updated 7 years ago
- Proof of concept showing how to exploit the CVE-2018-11759☆40Dec 11, 2018Updated 7 years ago
- Script for easily importing a trusted CA certificate into the iOS Simulator's trust store. This provides application testers the ability …☆48Aug 8, 2011Updated 14 years ago
- Kernel Stack info leak at exportObjectToClient function☆42May 21, 2019Updated 6 years ago
- use at your own risk☆37Nov 23, 2019Updated 6 years ago
- An offensive Powershell console☆30Dec 5, 2015Updated 10 years ago
- 存放投稿里的一些文件☆11Oct 31, 2020Updated 5 years ago
- Metasploit framework via HTTP services☆10Jul 31, 2021Updated 4 years ago
- 一个基于JSRPC实现的自动解密代理框架☆13Sep 28, 2023Updated 2 years ago
- ☆15Sep 4, 2024Updated last year
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Jun 18, 2021Updated 4 years ago
- Journey to conquer the OSCP!☆13Apr 18, 2019Updated 6 years ago
- My public presentations☆42May 10, 2023Updated 2 years ago
- 土豆网和优酷网都是相当优秀的网站,其上有众多资源。而官网提供的下载工具,但是只能一个个下载,有时候需要下载某个豆单或者专辑的所有视频,一个个下载显然效率过低。这个工具只是调用了官方下载工具而已,不是地址嗅探工具。使用需要安装相应网站的下载工具。☆18Mar 5, 2019Updated 7 years ago