satishpatnayak / ScanAndroidXML
Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
☆47Updated 2 years ago
Alternatives and similar repositories for ScanAndroidXML:
Users that are interested in ScanAndroidXML are comparing it to the libraries listed below
- Intentionally vulnerable webview implementions in Android☆56Updated 2 years ago
- Application for showcasing Android Deep Link and WebView Vulnerabilities☆14Updated last year
- Slides and other material from various conference presentations.☆40Updated last week
- A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.☆51Updated 3 years ago
- Droz_scan is a automated script, that runs all the queries of drozer in a single run☆26Updated last year
- Created so I can collate all the usefull information and links I've found☆18Updated 3 years ago
- File system enumerator and monitor for Android and Ubuntu.☆17Updated 3 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆26Updated 5 months ago
- Flutter SSL pinning bypass using IP forwarding☆48Updated 2 years ago
- ☆38Updated last year
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 3 years ago
- Server and avi file to exploit FFmpeg HLS parse☆22Updated 5 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- This repository explain how to write frida hook scripts and analysis written hooks.☆80Updated last year
- Subdomain finder☆10Updated 2 years ago
- Security Advisories☆32Updated last year
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆41Updated 3 months ago
- Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰☆22Updated last year
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆71Updated 4 years ago
- ☆15Updated 4 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 8 months ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated 9 months ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Static and dynamic Android application security analysis☆72Updated 9 months ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- Tool to extract & validate google fcm server keys from apks☆28Updated 4 years ago
- ☆22Updated last year
- CTF challenges WriteUp☆14Updated 2 years ago
- A Proof of Concept for demonstrating Task hijacking in Android using an attacker and a victim app.☆41Updated 3 years ago