Category: Smartphone PenTest
NFCGate NFCGate is an Android application meant to capture, analyze, or modify NFC traffic. It can be used as a researching tool to reverse engineer protocols or assess the security of protocols against traffic...
apkLeaks Scanning APK file for URIs, endpoints & secrets. Changelog v2.6.1 Patch Remove trailing comma (hotfix #52) Installation Linux $ sudo apt-get install libssl-dev swig -y OSX $ brew install openssl swig Windows You need...
apk-medit Apk-medit is a memory search and patch tool for debuggable apk without root & ndk. It was created for mobile game security testing. Motivation Memory modification is the easiest way to cheat in...
AMDH An Android Mobile Device Hardening is written with python3 Motivations AMDH was created to help to automate and listing all applications installed devices and also to protect privacy in this “big” age of...
ADBSploit A python-based tool for exploiting and managing Android devices via ADB. Functionalities List Devices Connect Devices TCPIP Forward Ports Airplane Managment Wifi Managment Sound Control List/Info Apps WPA Supplicant Extraction Install/Uninstall Apps Shutdown/Reboot...
iblessing iblessing is iOS security exploiting toolkit, it mainly includes application information collection, static analysis, and dynamic analysis. iblessing is based on a unicorn engine and capstone engine. Features 🔥 Cross-platform: Tested on macOS and Ubuntu. iOS App static info extract,...
UnSAFE Bank UnSAFE Bank is a core virtual banking suite designed with the aim to incorporate the cybersecurity risks and various test cases such that newbie, developers, and security analysts can learn, hack and...
AndroPyTool This is a tool for extracting static and dynamic features from Android APKs. It combines different well-known Android apps analysis tools such as DroidBox, FlowDroid, Strace, AndroGuard or VirusTotal analysis. Provided a source...
Frida/QBDI Android API Fuzzer This experimental fuzzer is meant to be used for API in-memory fuzzing on Android. The design is highly inspired and based on AFL/AFL++. ATM the mutator is quite simple, just...
Android Application Analyzer The tool is used to analyze the content of the android application in local storage. Feature Strings command on “so or library” file Compatible with python3 Deep search :- Find all...
Ghost Framework Ghost Framework is an Android post-exploitation framework that uses an Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration....
InjuredAndroid – CTF A vulnerable Android application with ctf examples based on bug bounty findings, exploitation concepts, and pure creativity. Changelog v1.0.12 This release includes the missing x86_64 library for the Flutter module. Setup...
Obfuscapk – A black-box obfuscation tool for Android apps. Obfuscapk is a modular Python tool for obfuscating Android apps without needing their source code, since apktool is used to decompile the original apk file and to...
Apktool It is a tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to the nearly original form and rebuild them after making some modifications; it makes possible to...
VyAPI – The Modern Cloud-Based Vulnerable Hybrid Android App VyAPI is a vulnerable hybrid Android app that’s vulnerable by design. We call it VyAPI because it’s flaws are pervasive and it communicates not just...