MobSF / owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
☆61Updated last year
Alternatives and similar repositories for owasp-mstg:
Users that are interested in owasp-mstg are comparing it to the libraries listed below
- The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who …☆112Updated last year
- Intentionally vulnerable Android application.☆230Updated 9 months ago
- The scripts helps security analsts to identify misconfigured firebase instances.☆206Updated 2 years ago
- Intentionally vulnerable webview implementions in Android☆55Updated 2 years ago
- ☆38Updated last year
- Repository for download all version of @hpAndro1337 (Android AppSec) application.☆97Updated last year
- Checks if an Android application has successfully completed the "App Link Verification" process for Android App Links.☆53Updated 10 months ago
- Static and dynamic Android application security analysis☆71Updated 7 months ago
- Tool to mass analyse potentially exposed Firebase databases on Android apps☆58Updated 5 years ago
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆147Updated 9 months ago
- An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…☆207Updated 3 years ago
- ☆138Updated 4 years ago
- Some Useful Tricks for Pentest Android and iOS Apps☆80Updated last month
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆255Updated 5 months ago
- Insecure Firebase | Bugbounty | Hacking Insecure Firbase☆84Updated 3 years ago
- You can find hardcoded Api-Key,Secret,Token Etc..☆80Updated 2 years ago
- AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or security researchers find potential security v…☆43Updated last year
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code☆62Updated 3 years ago
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆116Updated last year
- Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly☆47Updated last year
- ☆96Updated 3 years ago
- This repo contains all the injections mentioned in my talk and enumerators.☆121Updated last year
- One-click installer for Frida and Burp certs for SSL Pinning bypass☆79Updated last year
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆71Updated 4 years ago
- NotSoCereal: A Deserialization exploit playground☆51Updated 3 years ago
- Port Swigger Labs divided on the based of level and topic.☆13Updated 2 years ago
- Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins☆80Updated last year
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- Oversecured Vulnerable iOS App☆217Updated last year