Cyber-Buddy / APKHunt
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
☆787Updated 2 months ago
Alternatives and similar repositories for APKHunt:
Users that are interested in APKHunt are comparing it to the libraries listed below
- The repo contains a series of challenges for learning Frida for Android Exploitation.☆984Updated 7 months ago
- Work in progress...☆390Updated 3 months ago
- Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class…☆266Updated 8 months ago
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆693Updated 3 years ago
- Massive Mobile Security Framework☆275Updated last month
- Oversecured Vulnerable Android App☆683Updated 8 months ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆156Updated 11 months ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆272Updated 7 months ago
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.☆426Updated 2 years ago
- Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, d…☆247Updated 5 months ago
- 1337 Wordlists for Bug Bounty Hunting☆819Updated last month
- Android Bug Hunting☆191Updated 6 months ago
- Android security insights in full spectrum.☆582Updated 5 months ago
- The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who …☆117Updated 2 years ago
- Intentionally vulnerable Android application.☆241Updated this week
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆845Updated last year
- A Collection of Android (Samsung) Security Research References☆407Updated last month
- Work in progress...☆332Updated 8 months ago
- A simple tool for bypassing file upload restrictions.☆831Updated 8 months ago
- ChatGPT Prompts for Bug Bounty & Pentesting☆598Updated last year
- An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…☆213Updated 3 years ago
- Tool to bypass 403/40X response codes.☆1,219Updated 2 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,511Updated 10 months ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆521Updated 2 months ago
- Black box fuzzer for web applications☆425Updated 8 months ago
- ☆402Updated 3 years ago
- Binary instrumentation framework based on FRIDA☆1,806Updated this week
- 🔓A curated list of modern Android exploitation conference talks.☆494Updated 2 weeks ago
- PDF Files for Pentesting☆527Updated 5 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆63Updated 10 months ago