The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
☆12,782Mar 16, 2026Updated this week
Alternatives and similar repositories for mastg
Users that are interested in mastg are comparing it to the libraries listed below
Sorting:
- The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.☆2,344Dec 22, 2025Updated 3 months ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆20,617Updated this week
- 📱 objection - runtime mobile exploration☆8,960Mar 12, 2026Updated last week
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,170Feb 8, 2024Updated 2 years ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,984Updated this week
- The Leading Security Assessment Framework for Android.☆4,479Jan 29, 2026Updated last month
- A collection of android security related resources☆9,289Updated this week
- The iOS Security Testing Framework☆1,381Oct 25, 2020Updated 5 years ago
- Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)☆3,422Jan 5, 2024Updated 2 years ago
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆8,963Updated this week
- Tool to look for several security related Android application vulnerabilities☆3,359Jan 16, 2024Updated 2 years ago
- ☆662Oct 31, 2022Updated 3 years ago
- Android App Security Checklist☆889Aug 27, 2022Updated 3 years ago
- A completely free, open source and online course about Reverse Engineering iOS Applications.☆2,861Apr 17, 2024Updated last year
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆76,106Updated this week
- The new bridge between Burp Suite and Frida!☆1,855Oct 30, 2025Updated 4 months ago
- Reverse engineering and pentesting for Android applications☆5,998Jan 12, 2026Updated 2 months ago
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,435Jan 29, 2026Updated last month
- Clone this repo to build Frida☆20,048Mar 14, 2026Updated last week
- Hand-crafted Frida examples☆2,519Nov 29, 2024Updated last year
- Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities☆1,418Apr 17, 2024Updated last year
- A big list of Android Hackerone disclosed reports and other resources.☆1,672Sep 10, 2025Updated 6 months ago
- In-depth attack surface mapping and asset discovery☆14,282Updated this week
- Documentation:☆1,614May 1, 2023Updated 2 years ago
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,460Jun 3, 2021Updated 4 years ago
- A collection of awesome penetration testing resources, tools and other shiny things☆25,569Jan 25, 2026Updated last month
- An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respect…☆3,444Mar 1, 2024Updated 2 years ago
- A Tool for Domain Flyovers☆5,912May 22, 2022Updated 3 years ago
- The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topic…☆31,584Updated this week
- A list of public penetration test reports published by several consulting firms and academic security groups.☆9,413Nov 24, 2025Updated 3 months ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆69,539Updated this week
- A swiss army knife for pentesting networks☆9,100Dec 6, 2023Updated 2 years ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,186Sep 29, 2025Updated 5 months ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,198Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,851Nov 10, 2023Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,379Feb 17, 2026Updated last month
- Radare2 and Frida better together.☆1,384Updated this week
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,907Sep 27, 2021Updated 4 years ago
- iOS platform security & anti-tampering Swift library☆2,638Dec 7, 2025Updated 3 months ago