Security Training Share
sdrtrunk A cross-platform Java application for decoding, monitoring, recording and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). SDRtrunk is an integrated application for demodulating radio signals and decoding trunked...
House: A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python. It is designed for helping assess mobile applications by implementing dynamic function hooking and intercepting and intended to...
TROMMEL sifts through directories of files to identify indicators that may contain vulnerabilities. It identifies the following indicators related to: Secure Shell (SSH) key files Secure Socket Layer (SSL) key files Internet Protocol (IP)...
As a penetration tester, I know that you usually choose to use Kali Linux like penetration testing distribution. Kali Linux is a powerful distribution. It includes many, many pentesting tools. If you are Ubuntu/...
DROID-HUNTER 1. DROID-HUNTER Android application vulnerability analysis and Android pentest tool A. Support > App info check > Baksmaling android app > Decompile android app > Extract class file > Extract java code >...
Android-InsecureBankv2 This is a major update to one of my previous projects – “InsecureBank”. This vulnerable Android application is named “InsecureBankv2” and is made for security enthusiasts and developers to learn the Android insecurities...
objection Runtime Mobile Exploration introduction – objection Runtime Mobile Exploration objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their security posture without the...
StaCoAn is a cross-platform tool which aids developers, bug-bounty hunters and ethical hackers performing static code analysis on mobile applications*. This tool will look for interesting lines in the code which can contain: Hardcoded credentials API keys URL’s...
TOOLS » AFLogical – Android forensics tool developed by viaForensics » Amandroid – Is a static analysis framework for Android apps » Android backup extractor – Android backup extractor » Android Loadable Kernel Modules...
DVIA-v2 DVIA-v2 written in Swift along with additional vulnerabilities Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform for mobile security enthusiasts/professionals...
Hijacker Hijacker is a Graphical User Interface for the wireless auditing tools airodump-ng, aireplay-ng, and mdk3. It offers a simple and easy UI to use these tools without typing commands in a console and...
ZANTI is a penetration testing tool for Android platform. It supports sniffing connected networks, man-in-the-middle attacks, port scanning, cookie acquisition and route security testing. The tool was developed by Israeli mobile security company Zimperium. In...
Needle is an open source, modular framework to streamline the process of conducting security assessments of iOS apps. Assessing the security of an iOS application typically requires a plethora of tools, each developed for...
OWASP iGoat – A Learning Tool for iOS App Pentesting and Security iGoat is a learning tool for iOS developers (iPhone, iPad, etc.) and mobile app pentesters. It was inspired by the WebGoat project...
