Open Source

Open-source projects from the Redpoint team

We have always believed in giving back to the security community. Our team builds and contributes to open-source projects, runs the Absolute AppSec podcast, and helps organize the local OWASP meetup on Utah’s Wasatch Front.

Why we do it

Tools for the next generation of defenders

Redpoint developers spin up and contribute to open-source projects we invite early-career professionals to use — whether they are expanding their security knowledge or advancing their careers. Everything below is free to explore.

Vulnerable Task Manager

VTM — learn the OWASP Top Ten by breaking it

Vulnerable Task Manager is an intentionally vulnerable application built to teach the basics of the OWASP Top Ten — and the methods for exploiting those vulnerabilities in a running application.

We use VTM with students in our AppSec-101 and AppSec-102 courses delivered by the Redpoint Training team, and it has powered Capture-the-Flag activities at regional industry conferences. In both settings, the goal is the same: help people reach their career goals as they dig deeper into application security.

HackerTracker

The official DEF CON conference companion

About a decade ago, our founder noticed that hacker conferences — especially large-scale ones like DEF CON — were hard to navigate. There was simply too much to track: which talks to attend, where things were happening, and when.

HackerTracker was born from that observation. Today the app carries an official designation with DEF CON and helps attendees around the world navigate a whole host of security conferences. Seth built it on the belief that it could genuinely help, and he continues to drive feature development on the iOS version.

SPUTR

A repo for sharper security testing

Redpoint developers have also worked on a number of other open-source efforts, including the Security Payload Unit Test Repo — SPUTR — an application built to improve security testing.

Want to see what we are building next?

Browse our organization’s GitHub profile, or follow the blog and LinkedIn for future developments.