Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.

The OWASP ZAP core project

Free and open source log management

Spring Security

Multi-platform transparent client-side encryption of your files in the cloud

✔️ Secure, simple key-value storage for Android

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

An Android NFC app for reading, writing, analyzing, etc. MIFARE Classic RFID tags.

Security engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...

常规Java工具，算法，加密，数据库，面试题，源代码分析，解决方案

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Jasypt integration for Spring boot

Fully featured, open source, privacy friendly email app for Android

spring-boot 项目实践总结

X-SpringBoot是一个轻量级的Java快速开发平台，能快速开发项目并交付【接私活利器】

PacBot (Policy as Code Bot)

Java web common vulnerabilities and security code which is base on springboot and spring security

A p2p, secure file storage, social network and application protocol

iText 7 for Java represents the next level of SDKs for developers that want to take advantage of the benefits PDF can bring. Equipped with a better document engine, high and low-level programming capabilities and the ability to create, edit and enhance PDF documents, iText 7 can be a boon to nearly every workflow.

历经开发周期两年，并且应用过千万级别项目的工具箱

JAVA安全SDK及编码规范

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Dependency-Track is an intelligent Supply Chain Component Analysis platform that allows organizations to identify and reduce risk from the use of third-party and open source components.

分布式架构开发套件。包括缓存(一二级缓存、自动缓存管理)、队列、分布式定时任务、文件服务(七牛、阿里云OSS、fastDFS)、日志、搜索、分布式锁、分布式事务、集成dubbo、spring boot支持以及常用的工具包等。

🚦Web Application Firewall or API Gateway(应用防火墙/API网关)

Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog (Open Source log management) setup for WiFi IDS, monitoring, and incident response. It only needs a JVM and a WiFi adapter that supports monitor mode.

Java library for secure, distributed, P2P-based file synchronization and sharing.

Automated HTTP Request Repeating With Burp Suite

Capillary is a library to simplify the sending of end-to-end encrypted push messages from Java-based application servers to Android clients.

OWASP ZAP Add-ons