This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
☆1,132Jun 26, 2022Updated 3 years ago
Alternatives and similar repositories for awesome-mobile-CTF
Users that are interested in awesome-mobile-CTF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A big list of Android Hackerone disclosed reports and other resources.☆1,673Sep 10, 2025Updated 6 months ago
- Mobile CTF Solutions☆216Mar 29, 2021Updated 4 years ago
- Oversecured Vulnerable Android App☆734Jul 18, 2024Updated last year
- This experimetal fuzzer is meant to be used for API in-memory fuzzing.☆580Jun 22, 2020Updated 5 years ago
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆2,989Mar 18, 2026Updated last week
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Android security workshop material taught during the CyberTruck Challenge 2019 (Detroit USA).☆105Aug 17, 2021Updated 4 years ago
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆744Jun 25, 2021Updated 4 years ago
- Hand-crafted Frida examples☆2,519Nov 29, 2024Updated last year
- Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)☆3,423Jan 5, 2024Updated 2 years ago
- A collection of android security related resources☆9,289Updated this week
- Android Kernel Exploitation☆643Feb 13, 2022Updated 4 years ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,198Mar 19, 2026Updated last week
- A curated list of Android Security materials and resources For Pentesters and Bug Hunters☆1,881Mar 3, 2026Updated 3 weeks ago
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆5,176Feb 8, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse enginee…☆12,793Updated this week
- Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities☆1,425Apr 17, 2024Updated last year
- some vul☆791Apr 25, 2025Updated 11 months ago
- there are some CTF challenges or some other things helping improving android reversing skills.☆76Feb 27, 2019Updated 7 years ago
- A collection of my Frida instrumentation scripts to reverse engineer mobile apps and more.☆1,579Mar 19, 2026Updated last week
- A Frida based tool that traces usage of the JNI API in Android apps.☆1,822Jul 18, 2023Updated 2 years ago
- ☆663Oct 31, 2022Updated 3 years ago
- A repository for learning various heap exploitation techniques.☆8,530Mar 21, 2026Updated last week
- Here record some tips about pwn. Something is obsoleted and won't be updated. Sorry about that.☆1,823Jun 8, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,461Jun 3, 2021Updated 4 years ago
- Android App Security Checklist☆890Aug 27, 2022Updated 3 years ago
- DIVA Android - Damn Insecure and vulnerable App for Android☆1,092May 19, 2023Updated 2 years ago
- ☆352Aug 29, 2024Updated last year
- The new bridge between Burp Suite and Frida!☆1,855Oct 30, 2025Updated 4 months ago
- awesome list of browser exploitation tutorials☆2,272Sep 18, 2023Updated 2 years ago
- Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android☆2,440Jan 29, 2026Updated last month
- Radare2 and Frida better together.☆1,390Updated this week
- [Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes…☆1,123Feb 2, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- 📱 objection - runtime mobile exploration☆8,960Mar 12, 2026Updated 2 weeks ago
- Created by High-Tech Bridge, the Purposefully Insecure and Vulnerable Android Application (PIVAA) replaces outdated DIVA for benchmark of…☆106May 27, 2020Updated 5 years ago
- A collection of reverse engineering challenges for learning about the Android operating system and mobile security.☆372Nov 15, 2020Updated 5 years ago
- A collection of links related to Linux kernel security and exploitation☆6,386Mar 7, 2026Updated 2 weeks ago
- A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on…☆5,780Apr 3, 2024Updated last year
- Mobile security trainings based on android☆106Nov 12, 2020Updated 5 years ago
- A collection of vulnerable ARM binaries for practicing exploit development☆942Nov 15, 2021Updated 4 years ago