The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
☆12,736Feb 23, 2026Updated last week
Alternatives and similar repositories for mastg
Users that are interested in mastg are comparing it to the libraries listed below
Sorting:
- The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.☆2,338Dec 22, 2025Updated 2 months ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆20,479Feb 3, 2026Updated 3 weeks ago
- 📱 objection - runtime mobile exploration☆8,902Jan 27, 2026Updated last month
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,150Feb 8, 2024Updated 2 years ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,973Updated this week
- The Leading Security Assessment Framework for Android.☆4,456Jan 29, 2026Updated last month
- A collection of android security related resources☆9,238Feb 23, 2026Updated last week
- The iOS Security Testing Framework☆1,383Oct 25, 2020Updated 5 years ago
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆8,888Updated this week
- Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)☆3,412Jan 5, 2024Updated 2 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆75,488Feb 16, 2026Updated 2 weeks ago
- Tool to look for several security related Android application vulnerabilities☆3,355Jan 16, 2024Updated 2 years ago
- Reverse engineering and pentesting for Android applications☆5,968Jan 12, 2026Updated last month
- A completely free, open source and online course about Reverse Engineering iOS Applications.☆2,853Apr 17, 2024Updated last year
- The new bridge between Burp Suite and Frida!☆1,850Oct 30, 2025Updated 4 months ago
- In-depth attack surface mapping and asset discovery☆14,159Feb 22, 2026Updated last week
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,419Jan 29, 2026Updated last month
- ☆661Oct 31, 2022Updated 3 years ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,150Sep 29, 2025Updated 5 months ago
- Android App Security Checklist☆891Aug 27, 2022Updated 3 years ago
- Clone this repo to build Frida☆19,792Feb 18, 2026Updated last week
- A collection of awesome penetration testing resources, tools and other shiny things☆25,411Jan 25, 2026Updated last month
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- A list of public penetration test reports published by several consulting firms and academic security groups.☆9,382Nov 24, 2025Updated 3 months ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆69,062Updated this week
- A big list of Android Hackerone disclosed reports and other resources.☆1,672Sep 10, 2025Updated 5 months ago
- A Tool for Domain Flyovers☆5,906May 22, 2022Updated 3 years ago
- Documentation:☆1,608May 1, 2023Updated 2 years ago
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,459Jun 3, 2021Updated 4 years ago
- Hand-crafted Frida examples☆2,514Nov 29, 2024Updated last year
- Attack Surface Management Platform☆9,418Feb 15, 2026Updated 2 weeks ago
- An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respect…☆3,423Mar 1, 2024Updated 2 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,903Sep 27, 2021Updated 4 years ago
- The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topic…☆31,397Feb 18, 2026Updated last week
- A curated list of amazingly awesome Burp Extensions☆3,369Feb 17, 2026Updated last week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,831Nov 10, 2023Updated 2 years ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,183Updated this week
- Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities☆1,406Apr 17, 2024Updated last year
- UNIX-like reverse engineering framework and command-line toolset☆23,170Updated this week