mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
☆746Mar 12, 2026Updated last week
Alternatives and similar repositories for mobsfscan
Users that are interested in mobsfscan are comparing it to the libraries listed below
Sorting:
- MobSF Documentation☆40Sep 30, 2025Updated 5 months ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆20,617Updated this week
- httptools helps you to capture, repeat and live intercept HTTP requests with scripting capabilities. It is built on top of mitmproxy☆83Mar 12, 2026Updated last week
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆322Nov 12, 2025Updated 4 months ago
- GitHub Actions for MobSF☆26Apr 24, 2024Updated last year
- A security focused static analysis tool for Android and Java applications.☆1,221Mar 13, 2026Updated last week
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,984Updated this week
- A simple script to patch smali file to include a Fake Security Provider at 1 for Android Apps☆18Jan 19, 2021Updated 5 years ago
- (WIP) Runtime Mobile Application Pentest Tool for iOS and Android. Previously Passionfruit☆1,116Updated this week
- Generic SAST Library☆136Jun 17, 2025Updated 9 months ago
- ☆437Jun 1, 2021Updated 4 years ago
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,782Updated this week
- Mobile Edge-Dynamic Unified Security Analysis☆2,198Updated this week
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 9 months ago
- Oversecured Vulnerable Android App☆733Jul 18, 2024Updated last year
- The Leading Security Assessment Framework for Android.☆4,479Jan 29, 2026Updated last month
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆255Mar 2, 2022Updated 4 years ago
- 📱 objection - runtime mobile exploration☆8,960Mar 12, 2026Updated last week
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,435Jan 29, 2026Updated last month
- a nginx reverse proxy with ssl and auth for MobSF☆26Mar 5, 2020Updated 6 years ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆959Jan 17, 2025Updated last year
- The new bridge between Burp Suite and Frida!☆1,855Oct 30, 2025Updated 4 months ago
- Scanning APK file for URIs, endpoints & secrets.☆5,996Aug 20, 2025Updated 7 months ago
- A tool to automate the boring process of APK recon☆344Sep 30, 2022Updated 3 years ago
- Property extractor for Android apps☆311Mar 24, 2025Updated 11 months ago
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆744Jun 25, 2021Updated 4 years ago
- iOS platform security & anti-tampering Swift library☆2,638Dec 7, 2025Updated 3 months ago
- The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.☆2,344Dec 22, 2025Updated 3 months ago
- ☆1,649Mar 13, 2026Updated last week
- Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security e…☆1,067Mar 29, 2024Updated last year
- [Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes…☆1,121Feb 2, 2023Updated 3 years ago
- Reverse engineering and pentesting for Android applications☆5,998Jan 12, 2026Updated 2 months ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆39May 5, 2024Updated last year
- damn-exploitable-android-app-apk☆40Jun 9, 2023Updated 2 years ago
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆67Sep 18, 2021Updated 4 years ago
- Bypass security checks in IOSSecuritySuite and Rootbear☆53Jul 5, 2023Updated 2 years ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,170Feb 8, 2024Updated 2 years ago
- Extract endpoints from APK files☆882May 22, 2024Updated last year