Alternatives and similar repositories for MobileApp-Pentest-Cheatsheet

Users that are interested in MobileApp-Pentest-Cheatsheet are comparing it to the libraries listed below

• su-vikas / Presentations
  Slides and other material from various conference presentations.
  ☆44Updated 2 weeks ago
• t4kemyh4nd / vulnwebview
  Intentionally vulnerable webview implementions in Android
  ☆57Updated 3 years ago
• Ch0pin / log4JFrida
  ☆97Updated 3 years ago
• satishpatnayak / ScanAndroidXML
  Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
  ☆49Updated 2 years ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆26Updated 4 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆61Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• Gilzy / 403Bypasser
  ☆55Updated 2 years ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆82Updated 11 months ago
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆76Updated 4 years ago
• Healdb / Gather
  URL Screenshot Utility
  ☆27Updated 2 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 2 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆54Updated 3 years ago
• B3nac / deeplink-fuzz.sh
  A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.
  ☆51Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆122Updated last year
• vavkamil / wp-update-confusion
  WordPress Plugin Update Confusion
  ☆66Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 3 years ago
• francescolacerenza / TamperThemAll
  A tampered payload generator to Fuzz Web Application Firewalls
  ☆36Updated 5 years ago
• alt3kx / CVE-2021-26855_PoC
  ☆53Updated 4 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• artssec / burp-exporter
  Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
  ☆177Updated 3 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆48Updated 6 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 5 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆52Updated 5 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆76Updated 4 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆126Updated 2 years ago