Alternatives and similar repositories for MobileApp-Pentest-Cheatsheet

Users that are interested in MobileApp-Pentest-Cheatsheet are comparing it to the libraries listed below

• t4kemyh4nd / vulnwebview
  Intentionally vulnerable webview implementions in Android
  ☆57Updated 3 years ago
• satishpatnayak / ScanAndroidXML
  Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
  ☆49Updated 2 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• Ch0pin / log4JFrida
  ☆97Updated 3 years ago
• su-vikas / Presentations
  Slides and other material from various conference presentations.
  ☆45Updated last month
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆122Updated 2 years ago
• federicodotta / Burp-Suite-Extender-Montoya-Course
  This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …
  ☆42Updated 7 months ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 3 years ago
• anantshri / Android_Security
  This repository is a suplimentary material for Android Training's done by Anant Shrivastava from 2012-2017
  ☆222Updated 4 years ago
• SafeBreach-Labs / HRS
  ☆50Updated 4 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• az0mb13 / Task_Hijacking_Strandhogg
  A Proof of Concept for demonstrating Task hijacking in Android using an attacker and a victim app.
  ☆41Updated 4 years ago
• iamsarvagyaa / AndroidSecNotes
  An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…
  ☆218Updated 3 years ago
• B3nac / deeplink-fuzz.sh
  A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.
  ☆51Updated 3 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆61Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆76Updated 4 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆52Updated 5 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆56Updated 2 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆107Updated 5 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• jaiswalakshansh / Vuldroid
  Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code
  ☆64Updated 3 years ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 3 weeks ago
• neex / ghostinthepdf
  ☆167Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 5 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆124Updated 2 years ago
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Updated 4 years ago
• Gilzy / 403Bypasser
  ☆55Updated 2 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 2 years ago