APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
☆965Jan 17, 2025Updated last year
Alternatives and similar repositories for APKHunt
Users that are interested in APKHunt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Mobile Edge-Dynamic Unified Security Analysis☆2,275May 19, 2026Updated 3 weeks ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆377Jul 25, 2023Updated 2 years ago
- Scanning APK file for URIs, endpoints & secrets.☆6,096Aug 20, 2025Updated 9 months ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆3,021Mar 28, 2026Updated 2 months ago
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆896May 3, 2023Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆4,026Oct 4, 2025Updated 8 months ago
- A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities …☆2,317Jun 9, 2024Updated 2 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,563Mar 8, 2026Updated 3 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,849Apr 17, 2026Updated last month
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆93May 2, 2024Updated 2 years ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆589Sep 25, 2025Updated 8 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,839May 22, 2024Updated 2 years ago
- A simple tool for bypassing file upload restrictions.☆900Jul 22, 2024Updated last year
- Hidden parameters discovery suite☆2,064Sep 8, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆1,391Oct 27, 2023Updated 2 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆754Dec 19, 2023Updated 2 years ago
- i will upload more templates here to share with the comunity.☆572Apr 17, 2024Updated 2 years ago
- Android security insights in full spectrum.☆962May 16, 2026Updated 3 weeks ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆895Jan 12, 2026Updated 5 months ago
- Work in progress...☆414Feb 24, 2026Updated 3 months ago
- Smart context-based SSRF vulnerability scanner.☆363May 5, 2022Updated 4 years ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆941Aug 24, 2023Updated 2 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆1,178Jan 21, 2026Updated 4 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Nuclei plugin for BurpSuite☆1,329Oct 22, 2025Updated 7 months ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆329Jun 5, 2026Updated last week
- Makes reverse engineering Android apps easier, automating repetitive tasks like pulling, decoding, rebuilding and patching an APK.☆3,792Jan 26, 2026Updated 4 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,687May 15, 2026Updated 3 weeks ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆385May 19, 2023Updated 3 years ago
- An XSS exploitation command-line interface and payload generator.☆1,428Jan 19, 2025Updated last year
- Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.☆1,596Mar 4, 2024Updated 2 years ago
- A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mi…☆178Jul 6, 2023Updated 2 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,083Mar 24, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,178May 18, 2026Updated 3 weeks ago
- Fast and customizable subdomain wordlist generator using DSL☆968May 8, 2026Updated last month
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,969Jun 3, 2026Updated last week
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆692Oct 23, 2025Updated 7 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,044Jun 6, 2026Updated last week
- Standalone utility for service discovery on open ports!☆758Jan 13, 2026Updated 5 months ago
- An IIS short filename enumeration tool☆1,174Nov 25, 2024Updated last year