fuzz-security/MobileApp-Pentest-Cheatsheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

fuzz-security/MobileApp-Pentest-Cheatsheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/fuzz-security/MobileApp-Pentest-Cheatsheet)

Close

fuzz-security / MobileApp-Pentest-CheatsheetView on GitHubMore

• External links
• Readme badge

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

☆71May 8, 2020Updated 6 years ago

Alternatives and similar repositories for MobileApp-Pentest-Cheatsheet

Users that are interested in MobileApp-Pentest-Cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• fuzz-security / Resources-for-Beginner-Bug-Bounty-Hunters

  View on GitHub
  A list of resources for those interested in getting started in bug bounties
  ☆13Jun 18, 2020Updated 5 years ago
• emadshanab / Red-Team-Resources-collection

  View on GitHub
  ☆76Jun 5, 2021Updated 4 years ago
• emadshanab / Subdomains-brutforce-wordlists-collection

  View on GitHub
  ☆40Jun 5, 2021Updated 4 years ago
• emadshanab / Adobe-Experience-Manager

  View on GitHub
  ☆34Jun 23, 2021Updated 4 years ago
• fuzz-security / Active-Directory-Exploitation-Cheat-Sheet

  View on GitHub
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆50Jun 23, 2020Updated 5 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Roni-Carta / onhandlers

  View on GitHub
  ☆12Feb 18, 2022Updated 4 years ago
• salmonx / dictionaries

  View on GitHub
  Fuzzing dictionaries for afl-fuzz/LibFuzzer
  ☆90Jul 23, 2021Updated 4 years ago
• adipinto / HP-Data-Protector-RCE

  View on GitHub
  HP Data Protector Arbitrary Remote Command Execution
  ☆11Aug 12, 2018Updated 7 years ago
• wtdcode / fuzzercorn

  View on GitHub
  Bring libfuzzer to Unicorn
  ☆26Jan 23, 2022Updated 4 years ago
• rockybhai0516 / maha

  View on GitHub
  ☆14Oct 1, 2021Updated 4 years ago
• emadshanab / Nmap-NSE-scripts-collection

  View on GitHub
  ☆177Oct 26, 2025Updated 7 months ago
• tarun776 / Tools

  View on GitHub
  port+dir+param bruteforcing at the same time using ffuf
  ☆17Jul 27, 2024Updated last year
• bugbountyhunters / getting-started

  View on GitHub
  Getting started in bug bounty!
  ☆33Jul 16, 2021Updated 4 years ago
• kleiton0x00 / ppmap

  View on GitHub
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆518Jun 22, 2022Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• zeroc00I / AllVideoPocsFromHackerOne

  View on GitHub
  This script grab public report from hacker one and make some folders with poc videos
  ☆918Oct 10, 2025Updated 7 months ago
• gsiddharth29 / Threat-Hunting

  View on GitHub
  Threat Hunt Investigation Methodology and Procedure
  ☆15Jul 11, 2022Updated 3 years ago
• sec-tools / litefuzz

  View on GitHub
  A multi-platform fuzzer for poking at userland binaries, network clients and servers
  ☆69Dec 13, 2025Updated 5 months ago
• Marshal-EASM / webssi

  View on GitHub
  web sensitive information recognition module
  ☆21Nov 27, 2025Updated 6 months ago
• roxas-tan / CVE-2021-44228

  View on GitHub
  This Log4j RCE exploit originated from https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce
  ☆10Dec 16, 2021Updated 4 years ago
• WoodenKlaas / CVE-2021-44521

  View on GitHub
  Automated PoC of CVE-2021-44521
  ☆10Feb 24, 2022Updated 4 years ago
• zeroc00I / ReconNotes

  View on GitHub
  Just some public notes that can be useful and i want let the world knows.
  ☆92Oct 18, 2020Updated 5 years ago
• MShahine / Bug-Bounty-Recon

  View on GitHub
  All The Notes And Tips I FOund In Github And Twitter I Put Them Here
  ☆35Aug 31, 2020Updated 5 years ago
• amazigh-kil3r / azbug_scanner

  View on GitHub
  ☆21May 1, 2021Updated 5 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• zPrototype / bugbounty_stuff

  View on GitHub
  ☆101Oct 18, 2023Updated 2 years ago
• xenoscr / SharpMailBOF

  View on GitHub
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆16Jun 24, 2021Updated 4 years ago
• iamsarvagyaa / AndroidSecNotes

  View on GitHub
  An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentes…
  ☆225Aug 26, 2021Updated 4 years ago
• Abdulrahman-Kamel / dpfilter

  View on GitHub
  BugBounty , sort and delete duplicates param value without missing original value
  ☆22Jul 31, 2021Updated 4 years ago
• EdOverflow / swiss-bugbounty-programs

  View on GitHub
  List of bug bounty programs of companies/organisations in Switzerland
  ☆13Oct 28, 2021Updated 4 years ago
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated 2 years ago
• drak3hft7 / OSCP-Exam-Report-Template

  View on GitHub
  Template used for my OSCP exam.
  ☆29Aug 9, 2022Updated 3 years ago
• jiangsir404 / Xss-Sql-Fuzz

  View on GitHub
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆63Dec 4, 2018Updated 7 years ago
• hackedbyagirl / OSCP

  View on GitHub
  OSCP Preperation
  ☆14Aug 12, 2021Updated 4 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• attacker-codeninja / 100DaysToLearnandImprove

  View on GitHub
  My notes of Day1 Day2 will be posted here as journey
  ☆17Jan 6, 2021Updated 5 years ago
• MaakResearch / Recon

  View on GitHub
  About Recon Tools,Methodology and writeups
  ☆18Dec 16, 2023Updated 2 years ago
• sh377c0d3 / AppSec-Payloads

  View on GitHub
  AppSec Payloads Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆929Apr 1, 2026Updated last month
• fuzz-security / hackerone-reports

  View on GitHub
  Top disclosed reports from HackerOne
  ☆10Jun 9, 2020Updated 5 years ago
• thegsoinfosec / BurpSuite_payloads

  View on GitHub
  Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
  ☆90Aug 4, 2020Updated 5 years ago
• su-vikas / Presentations

  View on GitHub
  Slides and other material from various conference presentations.
  ☆45Sep 10, 2025Updated 8 months ago
• Frichetten / aws_api_shapeshifter

  View on GitHub
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Nov 2, 2023Updated 2 years ago