Reverse Engineering / Smartphone PenTest
by do son · Published November 29, 2019 · Last modified July 24, 2023
Apktool It is a tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to the nearly original form and rebuild them after making some modifications; it makes possible to...
Information Gathering / Smartphone PenTest
by do son · Published October 15, 2021 · Last modified May 9, 2023
Static Token And Credential Scanner STACS is a YARA-powered static credential scanner that supports binary file formats, analysis of nested archives, composable rulesets and ignores lists, and SARIF reporting. What does STACS support? Currently,...
Reverse Engineering / Smartphone PenTest
by do son · Published June 20, 2019 · Last modified April 21, 2023
jadx – Dex to Java decompiler Command-line and GUI tools for producing Java source code from Android Dex and Apk files Changelog v1.4.7 Features [core] Inline lambdas by instance field (#1800) [plugins] Allow to...
APKHunt | OWASP MASVS Static Analyzer APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers...
Forensics / Smartphone PenTest
by do son · Published June 14, 2017 · Last modified November 20, 2022
AmandroidAmandroid is a static analysis framework for Android apps.The Android platform is immensely popular. However, malicious or vulnerable applications have been reported to cause several security problems. Currently, there is no effective method that...
Malware Analysis / Smartphone PenTest
by do son · Published May 2, 2020 · Last modified October 25, 2022
AndroPyTool This is a tool for extracting static and dynamic features from Android APKs. It combines different well-known Android apps analysis tools such as DroidBox, FlowDroid, Strace, AndroGuard or VirusTotal analysis. Provided a source...
Agrigento Agrigento is based on black-box differential analysis, and it works in two steps: first, it establishes a baseline of the network behavior of an app; then, it modifies sources of private information, such...
Needle is an open source, modular framework to streamline the process of conducting security assessments of iOS apps. Assessing the security of an iOS application typically requires a plethora of tools, each developed for...
Bandicoot is a Python toolbox to analyze mobile phone metadata. It provides a complete, easy-to-use environment for data-scientist to analyze mobile phone metadata. With only a few lines of code, load your datasets, visualize...
Android Hooker Hooker is an opensource project for dynamic analyses of Android applications. This project provides various tools and applications that can be use to automatically intercept and modify any API calls made by...
