TeamUSEC
Projects
Publications
Jobs
Classes
Theses
Team
Code of Conduct
Projects
Publications
Jobs
Classes
Theses
Team
Code of Conduct

Offensive Security Tooling on GitHub

Although offensive security software is essential for legitimate cybersecurity research and can be used to strengthen defences and enhance system security, it is also utilised by malicious actors to exploit vulnerabilities and launch cyberattacks. The dual-use nature of these tools, where the intended and actual uses diverge, highlights the need for a critical examination of the ethical implications of their development and release.

In this interview study, we aim to gain a better understanding of the motivations and ethical considerations of developers of offensive security software, including penetration testing tools, exploits and proof-of-concept code. Our aim is to explore how these open-source tools are maintained and how developers of offensive security software perceive and deal with these ethical dilemmas.

More details and ways to participate are described on our website.

If you have any questions, or are interested in further information, please feel free to contact us:

Researchers

  • Niklas Busch | Researcher and PhD Student (CISPA).
  • Jan-Ulrich Holtgrave | Researcher and PhD Student (CISPA).
  • Principal Investigator Sascha Fahl | Tenured Faculty (CISPA) and Full Professor (Leibniz University Hannover).

Institutions

CISPA Helmholtz-Center for Information Security
https://www.cispa.de/

Leibniz University Hannover
https://www.uni-hannover.de/en/