headi
A tool for automated HTTP header injection
FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications. Unlike many other static-analysis approaches for Android, FlowDroid aims for an analysis with very high recall and precision. To achieve this goal, two main challenges were addressed: increasing precision by building an analysis that is context-, flow-, field- and object-sensitive, and increasing recall by creating a complete model of Android’s app lifecycle. The analysis is based on Soot and Heros, utilizing a precise callgraph for flow- and context-sensitivity, and IFDS-based flow functions for field- and object-sensitivity. An accurate and efficient alias search is crucial for context-sensitivity in conjunction with field-sensitivity.
A tool for automated HTTP header injection
ARM TrustZone provides a secure execution environment for applications on ARM processors.
Static code analyzer for Infrastructure as Code with 500+ security policies and support for various IaC tools and cloud platforms.
Firejail is a SUID sandbox program for restricting the running environment of untrusted applications on Linux.
A collection of Android security related resources
A PHP/MySQL web application designed to aid security professionals in testing their skills and tools in a legal environment.