VyAPI: A cloud based vulnerable hybrid Android App
VyAPI – The Modern Cloud-Based Vulnerable Hybrid Android App VyAPI is a vulnerable hybrid Android app that’s vulnerable by design. We call it VyAPI because it’s flaws are pervasive and...
VyAPI – The Modern Cloud-Based Vulnerable Hybrid Android App VyAPI is a vulnerable hybrid Android app that’s vulnerable by design. We call it VyAPI because it’s flaws are pervasive and...
objection Runtime Mobile Exploration introduction – objection Runtime Mobile Exploration objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their...
smalien Investigating how an application handles users’ privacy-sensitive information is essential for mobile security researchers to understand the behavior of the application and determine whether it is harmless or malicious....
truegaze A static analysis tool for Android and iOS applications focusing on security issues outside the source code such as resource strings, third-party libraries, and configuration files. Structure The application...
EVABS (Extremely Vulnerable Android Labs) An open-source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners. The effort is to...
SUPER Android Analyzer SUPER is a command-line application that can be used in Windows, MacOS X and Linux, that analyzes .apk files in search for vulnerabilities. It does this by decompressing APKs...
Introduce Termux is an Android terminal emulator and Linux environment app that works directly with no rooting or setup required. A minimal base system is installed automatically – additional packages are available...
Reverse Engineering / Smartphone PenTest
by do son · Published June 20, 2019 · Last modified November 4, 2024
5jadx – Dex to Java decompiler Command-line and GUI tools for producing Java source code from Android Dex and Apk files Changelog v1.5 Main features Added support for: Scripting, uses...
Malware Analysis / Smartphone PenTest
by do son · Published June 1, 2019 · Last modified July 30, 2023
APKiD gives you information about how an APK was made. It identifies many compilers, packers, obfuscators, and other weird stuff. It’s PEiD for Android. For more information on what this tool can...
Reverse Engineering / Smartphone PenTest
by do son · Published May 26, 2019 · Last modified May 24, 2020
APK Studio A Cross-Platform IDE for Reverse-Engineering (Disassembling, Hacking & Rebuilding) Android applications – featuring a friendly UI and Code editor with Syntax-highlighting support. Features Disassembling & Rebuilding APKs Code...
WaTF-Bank What-a-Terrible-Failure Mobile Banking Application (WaTF-Bank), written in Java, Swift 4, Objective-C, and Python (Flask framework) as a backend server, is designed to simulate a “real-world” web services-enabled mobile banking...
sdrtrunk A cross-platform Java application for decoding, monitoring, recording, and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). SDRtrunk is an integrated application for demodulating radio...
Programming / Smartphone PenTest / Web Exploitation / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published February 4, 2019 · Last modified December 16, 2024
Jackhammer: One Security vulnerability assessment/management tool to solve all the security team problems. What is Jackhammer? Jackhammer is a collaboration tool built with an aim of bridging the gap between...
Quick Android Review Kit(QARK) Quick Android Review Kit – This tool is designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs. The tool is also capable of creating...
Apkatshu Apkatshu its a Tool for extracting urls, emails, ip address, and interesting data from APK files Apkatshu: a tool is written in bash/python for extracting interesting data from apk...