This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
☆36Nov 21, 2024Updated last year
Alternatives and similar repositories for The-Mobile-CTF-Lab
Users that are interested in The-Mobile-CTF-Lab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Writeup and exploit for CVE-2025-22441: Privilege escalation from installed app to SystemUI process on Android due to pass of untrusted A…☆100Oct 8, 2025Updated 7 months ago
- A tool for students of North University of China to make pictures of applications for leave quickly.☆14Jan 18, 2025Updated last year
- Source code for the DEF CON 33 CTF Finals.☆29Aug 26, 2025Updated 9 months ago
- ☆57Mar 13, 2026Updated 2 months ago
- PoC Exploiting Permission Bypass in Android's Download Provider (CVE-2018-9468)☆21Jan 15, 2020Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- r2inspect is a professional malware analysis framework that automates deep static inspection for PE, ELF, and Mach-O binaries using the r…☆50May 18, 2026Updated last week
- Frida script to dump native libraries from running process on Android, inspired by frida_dump☆14Aug 16, 2023Updated 2 years ago
- digital signature with SHA256withRSA in Java☆10Jul 15, 2017Updated 8 years ago
- CSF Firewall and AbuseIPDB API integration with specific focus on data privacy and prevention of sensitive data leaked to public AbuseIPD…☆17Mar 20, 2024Updated 2 years ago
- A simple and classic Sudoku Game build in Android Studio with Kotlin for Android Users.☆16Feb 16, 2023Updated 3 years ago
- Python tool to parse and decrypt files quarantined by windows defender☆13Feb 25, 2023Updated 3 years ago
- A curated list of Capture The Signal CTF related stuff☆18Oct 5, 2021Updated 4 years ago
- Agentic C2-style MCP server for Frida instrumentation on rooted Android and jailbroken iOS.☆51Mar 18, 2026Updated 2 months ago
- CVE-2025-6218 is a directory traversal vulnerability in WinRAR that allows an attacker to place files outside the intended extraction dir…☆18Jul 10, 2025Updated 10 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A Ghidra script to aid reverse engineering of Android native (.so) libraries, by identifying dynamically registered functions within the …☆16Feb 27, 2024Updated 2 years ago
- As I work thought the book "Practical Binary Analysis" by Dennis Andriesse, https://practicalbinaryanalysis.com/ I try to make editions f…☆11Sep 28, 2021Updated 4 years ago
- This lab guides you through setting up an environment to explore CVE-2019-2215, a critical Android kernel vulnerability in the binder sub…☆43Apr 24, 2025Updated last year
- Defending against malicious USB firmware in the Linux kernel☆17Mar 8, 2016Updated 10 years ago
- An AI red-team agent for authorized labs and web app pentesting workflows. Turns Claude Code / OpenCode / Codex into a structured recon →…☆64May 14, 2026Updated last week
- Foundry-like interface for interacting with the Ethereum application in python with extra features for solving CTF Challenges using the w…☆43Jul 31, 2025Updated 9 months ago
- Fork of Google Gruyere for security testing and education. ⚠️ This is a vulnerable app by design.☆17Jul 2, 2023Updated 2 years ago
- GCC toolchain for the Hitachi SuperH2 (SH2)☆23Aug 31, 2020Updated 5 years ago
- An intentionally vulnerable Android Application to demonstrate various vulnerabilities that airses in Android Components.☆47Apr 11, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Exploit app for CVE-2022-20494, a high severity permanent denial-of-service vulnerability that leverages Android's DND (Do not disturb) f…☆27Mar 3, 2023Updated 3 years ago
- ScanKDea es un escáner de seguridad avanzado en Python diseñado para profesionales de ciberseguridad y auditorías éticas. Ofrece capacida…☆25May 30, 2025Updated 11 months ago
- c/c++ obfuscator with clang lib☆22Jun 17, 2017Updated 8 years ago
- ☆20Feb 24, 2024Updated 2 years ago
- ☆15Jul 28, 2024Updated last year
- USB device fuzzing on Android Phone☆36Oct 16, 2021Updated 4 years ago
- All things Binary Exploitation, Memory, Assembly and Corruptions.☆10Sep 25, 2020Updated 5 years ago
- A Jailbreak Package Manager for Apple Devices (based on PurePKG)☆11Feb 25, 2025Updated last year
- InfoStealer and worm networking brute telnet,ftp,ssh,smb,rdp combine together both are bestfriend☆46Apr 14, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- All the code snippets from my Secure Code Review series on youtube (youtube.com/@muqsitbaig)!☆25Jul 28, 2024Updated last year
- Materials from the CS Level-Up trainers☆11Aug 10, 2025Updated 9 months ago
- Dalvik bytecode emulator for Android static analysis | String decryption | Multi-DEX | No Android runtime required☆114Jan 3, 2026Updated 4 months ago
- A repo about CTF challenges that I made at several CTF events☆14Mar 20, 2025Updated last year
- Add frida-gadgets into APK for non rooted devices.☆91Mar 10, 2025Updated last year
- 对GameGuardian进行自定义的函数,目前只添加绘制函数(在悬浮窗对View进行自定义绘制)☆19Mar 28, 2025Updated last year
- BookMark and Find Subdomains, Endpoints, External Domains in your web browser.☆28Aug 1, 2025Updated 9 months ago