mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
☆747Mar 12, 2026Updated 3 weeks ago
Alternatives and similar repositories for mobsfscan
Users that are interested in mobsfscan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- MobSF Documentation☆40Mar 25, 2026Updated 2 weeks ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆20,767Updated this week
- httptools helps you to capture, repeat and live intercept HTTP requests with scripting capabilities. It is built on top of mitmproxy☆83Mar 12, 2026Updated 3 weeks ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆326Nov 12, 2025Updated 4 months ago
- GitHub Actions for MobSF☆26Apr 24, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A security focused static analysis tool for Android and Java applications.☆1,227Apr 1, 2026Updated last week
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,996Mar 28, 2026Updated 2 weeks ago
- A simple script to patch smali file to include a Fake Security Provider at 1 for Android Apps☆18Jan 19, 2021Updated 5 years ago
- Open-source mobile security testing suite for iOS and Android. Previously Passionfruit☆1,255Apr 1, 2026Updated last week
- Generic SAST Library☆136Jun 17, 2025Updated 9 months ago
- ☆437Jun 1, 2021Updated 4 years ago
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,818Updated this week
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 10 months ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,218Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Oversecured Vulnerable Android App☆737Jul 18, 2024Updated last year
- The Leading Security Assessment Framework for Android.☆4,493Apr 1, 2026Updated last week
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆255Mar 2, 2022Updated 4 years ago
- 📱 objection - runtime mobile exploration☆9,002Mar 25, 2026Updated 2 weeks ago
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,449Jan 29, 2026Updated 2 months ago
- a nginx reverse proxy with ssl and auth for MobSF☆27Mar 5, 2020Updated 6 years ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆960Jan 17, 2025Updated last year
- The new bridge between Burp Suite and Frida!☆1,864Oct 30, 2025Updated 5 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Scanning APK file for URIs, endpoints & secrets.☆6,024Aug 20, 2025Updated 7 months ago
- A tool to automate the boring process of APK recon☆344Sep 30, 2022Updated 3 years ago
- Property extractor for Android apps☆310Mar 24, 2025Updated last year
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆745Jun 25, 2021Updated 4 years ago
- Tool to look for several security related Android application vulnerabilities☆3,363Jan 16, 2024Updated 2 years ago
- iOS platform security & anti-tampering Swift library☆2,644Dec 7, 2025Updated 4 months ago
- The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.☆2,357Dec 22, 2025Updated 3 months ago
- ☆1,664Apr 4, 2026Updated last week
- Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security e…☆1,071Mar 29, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- [Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes…☆1,124Feb 2, 2023Updated 3 years ago
- Reverse engineering and pentesting for Android applications☆6,029Jan 12, 2026Updated 2 months ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆39May 5, 2024Updated last year
- damn-exploitable-android-app-apk☆40Jun 9, 2023Updated 2 years ago
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆67Sep 18, 2021Updated 4 years ago
- Bypass security checks in IOSSecuritySuite and Rootbear☆53Jul 5, 2023Updated 2 years ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,181Feb 8, 2024Updated 2 years ago