A big list of Android Hackerone disclosed reports and other resources.
☆1,672Sep 10, 2025Updated 5 months ago
Alternatives and similar repositories for Android-Reports-and-Resources
Users that are interested in Android-Reports-and-Resources are comparing it to the libraries listed below
Sorting:
- Oversecured Vulnerable Android App☆731Jul 18, 2024Updated last year
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆742Jun 25, 2021Updated 4 years ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,089Aug 14, 2024Updated last year
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,154Feb 8, 2024Updated 2 years ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,978Feb 28, 2026Updated last week
- A curated list of Android Security materials and resources For Pentesters and Bug Hunters☆1,873Updated this week
- A collected list of awesome security talks☆4,195Feb 17, 2026Updated 2 weeks ago
- This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the p…☆1,124Jun 26, 2022Updated 3 years ago
- Bug Bounty Roadmaps☆1,716Jun 12, 2021Updated 4 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,385Sep 14, 2023Updated 2 years ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,192Feb 26, 2026Updated last week
- 🐛 A list of writeups from the Google VRP Bug Bounty program☆1,452Feb 7, 2026Updated last month
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,659Updated this week
- An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respect…☆3,426Mar 1, 2024Updated 2 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,482Oct 12, 2024Updated last year
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference☆5,557Aug 6, 2023Updated 2 years ago
- Android App Security Checklist☆891Aug 27, 2022Updated 3 years ago
- Collection of methodology and test case for various web vulnerabilities.☆7,039Jun 25, 2025Updated 8 months ago
- A python script that finds endpoints in JavaScript files☆4,294Apr 13, 2024Updated last year
- Basics on commands/tools/info on how to assess the security of mobile applications☆1,651Dec 19, 2023Updated 2 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,077Jul 29, 2024Updated last year
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,231Apr 20, 2022Updated 3 years ago
- Top disclosed reports from HackerOne☆5,358Feb 28, 2026Updated last week
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,073Jul 31, 2024Updated last year
- ☆352Aug 29, 2024Updated last year
- A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.☆52Aug 17, 2021Updated 4 years ago
- ☆437Jun 1, 2021Updated 4 years ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.☆1,692Jun 20, 2022Updated 3 years ago
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,748Updated this week
- This experimetal fuzzer is meant to be used for API in-memory fuzzing.☆580Jun 22, 2020Updated 5 years ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,572Feb 8, 2025Updated last year
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,458Jun 3, 2021Updated 4 years ago
- A collection of android security related resources☆9,248Mar 1, 2026Updated last week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆5,223Jan 31, 2026Updated last month
- A Collection of Android Pentest Learning Materials☆410Sep 28, 2020Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,779Apr 26, 2024Updated last year
- A collection of custom security tools for quick needs.☆3,284May 1, 2023Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,372Feb 17, 2026Updated 2 weeks ago
- An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…☆225Aug 26, 2021Updated 4 years ago