facebook / mariana-trenchView external linksLinks
A security focused static analysis tool for Android and Java applications.
☆1,210Updated this week
Alternatives and similar repositories for mariana-trench
Users that are interested in mariana-trench are comparing it to the libraries listed below
Sorting:
- Post Processor for Facebook Static Analysis Tools.☆140Updated this week
- Oversecured Vulnerable Android App☆731Jul 18, 2024Updated last year
- Mobile Edge-Dynamic Unified Security Analysis☆2,174Feb 4, 2026Updated last week
- Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.☆1,723Dec 1, 2025Updated 2 months ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,963Feb 3, 2026Updated last week
- FlowDroid Static Data Flow Tracker☆1,223Feb 10, 2026Updated last week
- ☆352Aug 29, 2024Updated last year
- This experimetal fuzzer is meant to be used for API in-memory fuzzing.☆580Jun 22, 2020Updated 5 years ago
- Android security guides, roadmap, docs, courses, write-ups, and teryaagh.☆786Sep 19, 2025Updated 4 months ago
- fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)☆290Jul 24, 2025Updated 6 months ago
- The Leading Security Assessment Framework for Android.☆4,442Jan 29, 2026Updated 2 weeks ago
- BinAbsInspector: Vulnerability Scanner for Binaries☆1,668Jun 17, 2024Updated last year
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆317Nov 12, 2025Updated 3 months ago
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆2,939Updated this week
- Resources related to GitHub Security Lab☆1,582Dec 2, 2025Updated 2 months ago
- 📱 objection - runtime mobile exploration☆8,885Jan 27, 2026Updated 3 weeks ago
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,414Jan 29, 2026Updated 2 weeks ago
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,459Jun 3, 2021Updated 4 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆344Jan 6, 2024Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆951Dec 31, 2021Updated 4 years ago
- ☆1,644Updated this week
- The new bridge between Burp Suite and Frida!☆1,845Oct 30, 2025Updated 3 months ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆20,396Feb 3, 2026Updated last week
- Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel …☆339Apr 12, 2023Updated 2 years ago
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,716Updated this week
- A JavaScript Engine Fuzzer☆2,143Jan 31, 2026Updated 2 weeks ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,078Updated this week
- ☆435Jun 1, 2021Updated 4 years ago
- (WIP) Runtime Application Instruments for iOS. Previously Passionfruit☆962Feb 10, 2026Updated last week
- Repository for information about 0-days exploited in-the-wild.☆855Feb 9, 2026Updated last week
- Tool to look for several security related Android application vulnerabilities☆3,356Jan 16, 2024Updated 2 years ago
- Framework for Automating Fuzzable Target Discovery with Static Analysis.☆547Feb 1, 2024Updated 2 years ago
- A curated list of Android Security materials and resources For Pentesters and Bug Hunters☆1,863May 5, 2025Updated 9 months ago
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆950Jan 17, 2025Updated last year
- Fuzzing harness for testing proprietary image codecs supported by Skia on Android☆354Jan 10, 2021Updated 5 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,731Updated this week
- An Intentionally designed Vulnerable Android Application built in Kotlin.☆256Mar 2, 2022Updated 3 years ago
- A big list of Android Hackerone disclosed reports and other resources.☆1,665Sep 10, 2025Updated 5 months ago
- Reverse engineering and pentesting for Android applications☆5,954Jan 12, 2026Updated last month