MobSF / owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
☆64Updated 2 years ago
Alternatives and similar repositories for owasp-mstg:
Users that are interested in owasp-mstg are comparing it to the libraries listed below
- The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who …☆115Updated 2 years ago
- Static and dynamic Android application security analysis☆72Updated 9 months ago
- Intentionally vulnerable webview implementions in Android☆56Updated 2 years ago
- AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or security researchers find potential security v…☆45Updated 2 years ago
- Some Useful Tricks for Pentest Android and iOS Apps☆99Updated 3 months ago
- A Proof of Concept for demonstrating Task hijacking in Android using an attacker and a victim app.☆41Updated 3 years ago
- ☆38Updated last year
- Intentionally vulnerable Android application.☆241Updated this week
- Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly☆48Updated 2 years ago
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆64Updated 3 years ago
- Android tapjacking quick PoC tool☆29Updated 2 years ago
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- ☆26Updated last year
- ☆140Updated 4 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆84Updated 3 months ago
- Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is writt…☆98Updated last year
- Tool to mass analyse potentially exposed Firebase databases on Android apps☆59Updated 5 years ago
- An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…☆212Updated 3 years ago
- ☆97Updated 3 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆156Updated 11 months ago
- A simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities☆84Updated 11 months ago
- ☆62Updated 5 months ago
- A Burp Suite extension to extract datas from source code while browsing.☆156Updated last year
- Repository for download all version of @hpAndro1337 (Android AppSec) application.☆98Updated last year
- You can find hardcoded Api-Key,Secret,Token Etc..☆79Updated 2 years ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆272Updated 7 months ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆41Updated 3 months ago
- NotSoCereal: A Deserialization exploit playground☆51Updated 3 years ago
- LFI Payloads List coolected from github repos☆76Updated 4 years ago
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆117Updated last year