B3nac / Android-Reports-and-ResourcesView external linksLinks
A big list of Android Hackerone disclosed reports and other resources.
☆1,665Sep 10, 2025Updated 5 months ago
Alternatives and similar repositories for Android-Reports-and-Resources
Users that are interested in Android-Reports-and-Resources are comparing it to the libraries listed below
Sorting:
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆738Jun 25, 2021Updated 4 years ago
- Oversecured Vulnerable Android App☆730Jul 18, 2024Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,042Aug 14, 2024Updated last year
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,963Feb 3, 2026Updated last week
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,144Feb 8, 2024Updated 2 years ago
- A curated list of Android Security materials and resources For Pentesters and Bug Hunters☆1,862May 5, 2025Updated 9 months ago
- A collected list of awesome security talks☆4,194Apr 9, 2021Updated 4 years ago
- This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the p…☆1,122Jun 26, 2022Updated 3 years ago
- Bug Bounty Roadmaps☆1,712Jun 12, 2021Updated 4 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,373Sep 14, 2023Updated 2 years ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,173Feb 4, 2026Updated last week
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,639Updated this week
- 🐛 A list of writeups from the Google VRP Bug Bounty program☆1,442Feb 7, 2026Updated last week
- An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respect…☆3,404Mar 1, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,484Oct 12, 2024Updated last year
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,532Aug 6, 2023Updated 2 years ago
- Android App Security Checklist☆891Aug 27, 2022Updated 3 years ago
- Collection of methodology and test case for various web vulnerabilities.☆6,999Jun 25, 2025Updated 7 months ago
- A python script that finds endpoints in JavaScript files☆4,280Apr 13, 2024Updated last year
- Basics on commands/tools/info on how to assess the security of mobile applications☆1,643Dec 19, 2023Updated 2 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,074Jul 29, 2024Updated last year
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,231Apr 20, 2022Updated 3 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,059Jul 31, 2024Updated last year
- Top disclosed reports from HackerOne☆5,297Jan 31, 2026Updated 2 weeks ago
- ☆352Aug 29, 2024Updated last year
- A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.☆52Aug 17, 2021Updated 4 years ago
- ☆435Jun 1, 2021Updated 4 years ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.☆1,691Jun 20, 2022Updated 3 years ago
- This experimetal fuzzer is meant to be used for API in-memory fuzzing.☆580Jun 22, 2020Updated 5 years ago
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,716Updated this week
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,550Feb 8, 2025Updated last year
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,459Jun 3, 2021Updated 4 years ago
- A collection of android security related resources☆9,191Updated this week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆5,201Jan 31, 2026Updated 2 weeks ago
- A Collection of Android Pentest Learning Materials☆409Sep 28, 2020Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,771Apr 26, 2024Updated last year
- A collection of custom security tools for quick needs.☆3,286May 1, 2023Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,360Feb 15, 2025Updated last year
- An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…☆224Aug 26, 2021Updated 4 years ago