Alternatives and similar repositories for owasp-mstg

Users that are interested in owasp-mstg are comparing it to the libraries listed below

• RajQureshi / APK-Penetration-testing-Guide
  The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who …
  ☆128Updated 2 years ago
• ari5ti / Janus-Exploit
  ☆47Updated 8 months ago
• shivsahni / FireBaseScanner
  The scripts helps security analsts to identify misconfigured firebase instances.
  ☆230Updated 3 years ago
• hax0rgb / InsecureShop
  An Intentionally designed Vulnerable Android Application built in Kotlin.
  ☆178Updated last year
• tauh33dkhan / Hacking-Insecure-Firebase-Database
  Insecure Firebase | Bugbounty | Hacking Insecure Firbase
  ☆92Updated 4 years ago
• kyawthiha7 / Mobile-App-Pentest
  ☆143Updated 5 years ago
• rodolfomarianocy / Tricks-Pentest-Android-and-iOS-Applications
  Some Useful Tricks for Pentest Android and iOS Apps
  ☆158Updated 2 months ago
• carlospolop / Tapjacking-ExportedActivity
  ☆29Updated 2 years ago
• iamsarvagyaa / AndroidSecNotes
  An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…
  ☆224Updated 4 years ago
• Sambal0x / firebaseEnum
  Tool to mass analyse potentially exposed Firebase databases on Android apps
  ☆67Updated 6 years ago
• t4kemyh4nd / vulnwebview
  Intentionally vulnerable webview implementions in Android
  ☆59Updated 3 years ago
• RavikumarRamesh / hpAndro1337
  Repository for download all version of @hpAndro1337 (Android AppSec) application.
  ☆101Updated 2 years ago
• St3v3nsS / MMSF
  Massive Mobile Security Framework
  ☆299Updated last week
• optiv / mobile-nuclei-templates
  ☆432Updated 4 years ago
• mindedsecurity / semgrep-rules-android-security
  A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
  ☆314Updated 2 months ago
• inesmartins / Android-App-Link-Verification-Tester
  Checks if an Android application has successfully completed the "App Link Verification" process for Android App Links.
  ☆65Updated last month
• iosiro / baserunner
  A tool for exploring Firebase datastores.
  ☆237Updated 6 months ago
• kiber-io / apkd
  APK downloader from few sources
  ☆137Updated 5 months ago
• stefan2200 / aparoid
  Static and dynamic Android application security analysis
  ☆75Updated last year
• daffainfo / all-about-apikey
  Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
  ☆287Updated 2 years ago
• dzmitry-savitski / tapjacker
  Android tapjacking quick PoC tool
  ☆36Updated 3 years ago
• satishpatnayak / AndroGoat
  AndroGoat
  ☆309Updated 2 months ago
• MuhammadKhizerJaved / Insecure-Firebase-Exploit
  A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the a…
  ☆325Updated last year
• arijitdirghangi / Find-Hardcoded
  You can find hardcoded Api-Key,Secret,Token Etc..
  ☆78Updated 3 years ago
• ivan-sincek / ios-penetration-testing-cheat-sheet
  Work in progress...
  ☆397Updated 2 months ago
• satishpatnayak / ScanAndroidXML
  Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
  ☆52Updated 2 years ago
• hafiz-ng / Beetlebug
  Beetlebug is an open source insecure Android application with CTF challenges built for Android Penetration Testers and Bug Bounty hunters…
  ☆120Updated 2 years ago
• t0thkr1s / allsafe-android
  Intentionally vulnerable Android application.
  ☆352Updated 4 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆81Updated 2 years ago
• adityatelange / bhhb
  Burp HTTP history browser (bhhb) - A tool to view HTTP history exported from Burp Suite Community Edition
  ☆130Updated last year