LucasFaudman / apkscan
Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts).
☆264Updated 7 months ago
Alternatives and similar repositories for apkscan:
Users that are interested in apkscan are comparing it to the libraries listed below
- ☆78Updated 7 months ago
- Massive Mobile Security Framework☆272Updated this week
- Docker Remote API Scanner and Exploit☆160Updated last year
- 📲 Enumerate information from an app based on the APK file☆118Updated this week
- The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who …☆113Updated last year
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆109Updated last year
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆293Updated 10 months ago
- APK downloader from few sources☆120Updated 3 weeks ago
- Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection☆290Updated 3 weeks ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆780Updated last month
- LLM tool to find any potential vulnerabilities and deobfuscate android app code.☆83Updated this week
- Android Bug Hunting☆185Updated 5 months ago
- Noxer is a powerful Python script designed for automating Android penetration testing tasks within the Nox Player emulator.☆208Updated last year
- BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Python…☆247Updated last month
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆152Updated 2 months ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆82Updated last month
- ☆157Updated 3 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆236Updated last month
- Header Exploitation HTTP☆396Updated 2 weeks ago
- ☆192Updated 2 weeks ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆130Updated 4 months ago
- Automation tool to testing and confirm the xss vulnerability.☆215Updated 2 weeks ago
- Work in progress...☆386Updated 2 months ago
- jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying se…☆333Updated 2 months ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆317Updated 7 months ago
- JSNinja is a powerful tool designed for security researchers and developers looking to extract sensitive information and Urls from JavaSc…☆117Updated 2 months ago
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆113Updated 7 months ago
- Search for sensitive data in Postman public library.☆197Updated last month
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆171Updated 5 months ago