Research

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

A command line utility for searching and downloading exploits from multiple exploit databases including Exploit-DB and Packet Storm.

InternalBlue is a Bluetooth experimentation framework that enables low-level firmware interaction with Broadcom chips for security research and attack prototype development.

A dataset release policy for the Android Malware Genome Project, requiring authentication and justification for access to the dataset.

MagSpoof is a hardware device that emulates magnetic stripe cards using electromagnetic fields for security research and educational purposes.

Open-source initiative providing malicious and benign datasets to expedite data analysis and threat research.

A collection of Android Applications with malware analysis results

SALO is a framework that generates synthetic log events for security testing and research without requiring actual infrastructure or triggering real events.

Largest open collection of Android malware samples, with 298 samples and contributions welcome.

Cybersecurity Ventures is a leading research and market intelligence firm providing insights, news, and analysis on the cybersecurity industry.

A Low-cost ICS Security Testbed for Education and Research

MiniCPS is a framework for real-time Cyber-Physical Systems simulation that supports physical process and control device simulation along with network emulation capabilities.

AutoYara is a Java tool that automatically generates YARA rules from malware samples using biclustering algorithms to help analysts create detection rules for malware families.

A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.

AutoTTP automates complex attack sequences and testing scenarios for regression tests and research using frameworks like Empire, Metasploit, and Cobalt Strike.

A reference guide listing 44 advanced Google search operators for enhanced search filtering and precision in information gathering activities.

FSquaDRA detects repackaged Android applications by computing Jaccard similarity over file digests within APK packages using pre-computed signing digests for improved performance.

A cheat sheet for pentesters and researchers about deserialization vulnerabilities in various Java (JVM) serialization libraries.

Andrew Case's personal page for research, software projects, and speaking events

Interactive computational environment for code execution, text, and media combination.

Hack Night is a thirteen-week educational program by NYU Tandon's OSIRIS Lab that provides an accelerated introduction to offensive security concepts, techniques, and practical applications.

A pre-indexed Splunk security dataset and CTF platform that provides realistic security data for training, research, and educational purposes for cybersecurity professionals and students.

F-Secure Blog provides in-depth articles and research on cybersecurity threats and best practices.

A comprehensive database of exploits and vulnerabilities for researchers and professionals