OpenSecurityResearch

hostapd-wpe

Modified hostapd to facilitate AP impersonation attacks

dllinjector

dll injection tool that implements various methods

FSExploitMe

Purposely vulnerable ActiveX Control to teach about exploitation in a browser-based environment.

pentest-scripts

jmsdigger

JMSDigger is JMS API basedEnterprise Messaging Application assessment tool

CustomPassiveScanner

A Custom Scanner for Burp

ciphertest

A better SSL cipher checker using gnutls

flash-xdomain-xploit

ActionScript Proof of Concept to perform cross-domain reads

iclass_dump

Tools to pull data from HID iClass readers

LANTapCap

Simple script to automated the capture and merging process when using a hardware TAP

usb-keylog-crack

Teensy code to brute force a keylogger's unlock code

CustomPeachPublisher

Accessory code for a tutorial on creating custom Peach Fuzzer Publishers

fsflow

Foundstone social engineering call flow library and application.

beacon_simulator

Simple tools and scripts to test if your network is susceptible to outbound beaconing.

facedancer

Various scripts used in conjunction with the facedancer

slacker

A prototype file slack space remover

CuckooScraperScript

onedecrypt

PoC to decrypt the registry password stored by the WebEx One-Click client

FaceSmack

a CSAW CTF challenge!

smsios

Various Utilities to Allow SMS Routing/Forwarding to Email Addresses on iOS

ZWave

Sample ZWave hack tools

lorcon_examples

Various examples and patches for LORCON

webkey_tools

Various scripts for hacking USB Webkeys - specifically the WEB-130C

chapcrack

Just a quick fork to fix the functools.partial errors on BT5R2 and support LEAP/FreeRADIUS-WPE MSCHAPv2

upek

Various stuff for playing with upek USB fingerprint readers

AndroidDebugFun

A sample application for exercises in Android Debugging

hacme_central

Basic "Hacme" for high school kids

bnapbnap

continuation of josh wright's bnapbnap project

cardman_install_fix

ofuzz

A Ruby based tool to generate fuzzing templates for OData services