Mobile-IoT-Security-Lab / OWApp-Benchmarking-SuiteLinks
The OWApp Benchmark: an OWASP-compliant Vulnerable Android App Dataset
☆44Updated 7 months ago
Alternatives and similar repositories for OWApp-Benchmarking-Suite
Users that are interested in OWApp-Benchmarking-Suite are comparing it to the libraries listed below
Sorting:
- As a bug hunter, are your bug bounty reports getting rejected because you don't use a "malicious" Proof of Concept (PoC) app to exploit t…☆108Updated this week
- Detect code obfuscation through text classification in the detection process.☆44Updated last year
- A tool for inspecting and analyzing mobile application storage files.☆48Updated 6 months ago
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 11 months ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆64Updated 6 months ago
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆20Updated last year
- damn-exploitable-android-app-apk☆40Updated 2 years ago
- Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.☆35Updated last month
- SSLPinDetect is a tool for analyzing Android APKs to detect SSL pinning implementations by scanning for known patterns in decompiled code…☆44Updated 2 months ago
- ☆31Updated 6 months ago
- ☆16Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- QRFuzz, a fuzzing toolkit to test malicious QR Codes in mobile applications☆46Updated last year
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated 2 weeks ago
- Burp Suite extension that makes your life easier by tucking the headers out of the way, so you can see the body content right away withou…☆39Updated 2 years ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Updated last year
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆80Updated 5 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆25Updated last year
- Android webviews and securiy☆23Updated 2 months ago
- ☆38Updated 4 months ago
- ☆19Updated 2 years ago
- LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.☆33Updated last year
- Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report☆13Updated 9 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Updated 11 months ago
- ☆14Updated 2 months ago
- ☆41Updated this week
- Advanced test for proxy & waf☆13Updated 2 months ago
- An intentionally vulnerable Android Application to demonstrate various vulnerabilities that airses in Android Components.☆38Updated 7 months ago
- Burp extension used to snip any header from all the requests.☆23Updated 2 years ago