Security Training Share
StaCoAn is a cross-platform tool which aids developers, bug-bounty hunters and ethical hackers performing static code analysis on mobile applications*. This tool will look for interesting lines in the code which can contain: Hardcoded credentials API keys URL’s...
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have the working knowledge of Linux, Bash, Metasploit, Apktool, the...
Introduce Termux is an Android terminal emulator and Linux environment app that works directly with no rooting or setup required. A minimal base system is installed automatically – additional packages are available using the APT package...
sdrtrunk A cross-platform Java application for decoding, monitoring, recording and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). SDRtrunk is an integrated application for demodulating radio signals and decoding trunked...
jadx – Dex to Java decompiler Command line and GUI tools for produce Java source code from Android Dex and Apk files Changelog v0.8 Features core: fixed deobfuscation for method and fields core: many fixes for...
objection Runtime Mobile Exploration introduction – objection Runtime Mobile Exploration objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their security posture without the...
House: A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python. It is designed for helping assess mobile applications by implementing dynamic function hooking and intercepting and intended to...
TROMMEL sifts through directories of files to identify indicators that may contain vulnerabilities. It identifies the following indicators related to: Secure Shell (SSH) key files Secure Socket Layer (SSL) key files Internet Protocol (IP)...
As a penetration tester, I know that you usually choose to use Kali Linux like penetration testing distribution. Kali Linux is a powerful distribution. It includes many, many pentesting tools. If you are Ubuntu/...
DROID-HUNTER 1. DROID-HUNTER Android application vulnerability analysis and Android pentest tool A. Support > App info check > Baksmaling android app > Decompile android app > Extract class file > Extract java code >...
Android-InsecureBankv2 This is a major update to one of my previous projects – “InsecureBank”. This vulnerable Android application is named “InsecureBankv2” and is made for security enthusiasts and developers to learn the Android insecurities...
TOOLS » AFLogical – Android forensics tool developed by viaForensics » Amandroid – Is a static analysis framework for Android apps » Android backup extractor – Android backup extractor » Android Loadable Kernel Modules...
DVIA-v2 DVIA-v2 written in Swift along with additional vulnerabilities Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform for mobile security enthusiasts/professionals...
Hijacker Hijacker is a Graphical User Interface for the wireless auditing tools airodump-ng, aireplay-ng, and mdk3. It offers a simple and easy UI to use these tools without typing commands in a console and...
