The Android Penetration Testing Steps repository is intended for security professionals, penetration testers, developers, and anyone who is interested in understanding the security implications of Android devices. We encourage feedback, suggestions, and contributions from the community to help us keep this repository up-to-date and useful.
☆133Feb 24, 2023Updated 3 years ago
Alternatives and similar repositories for APK-Penetration-testing-Guide
Users that are interested in APK-Penetration-testing-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆20Sep 2, 2021Updated 4 years ago
- Find subdomains by searching public certificate records☆16Jun 11, 2024Updated last year
- Work in progress...☆476Apr 18, 2026Updated 2 weeks ago
- Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, d��…☆423Oct 20, 2024Updated last year
- Your subdomains are free for the taking - no API key, no mistaking! 🕺☆37Feb 27, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Automated Recon Tool Installer☆16Jun 29, 2022Updated 3 years ago
- A web security research tool for DOM testing☆27Feb 7, 2026Updated 3 months ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆965Jan 17, 2025Updated last year
- ☆198Jan 18, 2023Updated 3 years ago
- Burp Suite's extension to scan and crawl Single Page Applications☆107Apr 14, 2023Updated 3 years ago
- ☆436Jun 1, 2021Updated 4 years ago
- Blind XSS SVG☆10Mar 27, 2023Updated 3 years ago
- Simple Python script to sort nuclei scans by severity and URL☆29May 24, 2023Updated 2 years ago
- This repository presents a proof-of-concept of CVE-2023-22527☆14Jan 23, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Apr 9, 2026Updated 3 weeks ago
- My fuzz repo!☆22Jul 28, 2023Updated 2 years ago
- A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mi…☆178Jul 6, 2023Updated 2 years ago
- Command-line tool to enumerate top-level domains, check response codes and find potential vulnerabilities for bug bounty hunters and secu…☆26Mar 6, 2023Updated 3 years ago
- Work in progress...☆413Feb 24, 2026Updated 2 months ago
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- a recon framework that facilitates discovering, scanning and monitoring assets trough a configurable engine running on serverless aws inf…☆11Aug 26, 2024Updated last year
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Feb 11, 2023Updated 3 years ago
- Will share some interesting writeups here :)☆18Oct 18, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Red Team Server (RTS)☆16Apr 16, 2026Updated 2 weeks ago
- Cybersecurity Notes☆169Apr 11, 2024Updated 2 years ago
- Create a malicious pip package (PoC)☆12Sep 14, 2023Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆377Jul 25, 2023Updated 2 years ago
- A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files☆26Mar 1, 2023Updated 3 years ago
- ☆13Oct 24, 2024Updated last year
- Burp Suite Pro extension☆11May 26, 2017Updated 8 years ago
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆79Jan 13, 2023Updated 3 years ago
- Reflected XSS Payload List for Vue.js (2 & 3)☆15Jan 12, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.☆437Jul 11, 2022Updated 3 years ago
- Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.☆73Sep 10, 2023Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆369Sep 26, 2023Updated 2 years ago
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆45Aug 9, 2023Updated 2 years ago
- A tool for inspecting and analyzing mobile application storage files.☆51May 15, 2025Updated 11 months ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Mar 8, 2024Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆142Dec 7, 2024Updated last year