VyAPI: A cloud based vulnerable hybrid Android App
VyAPI – The Modern Cloud-Based Vulnerable Hybrid Android App VyAPI is a vulnerable hybrid Android app that’s vulnerable by design. We call it VyAPI because it’s flaws are pervasive and...
Category: Smartphone PenTest
objection v1.11 released: runtime mobile exploration
objection Runtime Mobile Exploration introduction – objection Runtime Mobile Exploration objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their...
[BlackHat tool] smalien: Information flow analysis tool for Android applications
smalien Investigating how an application handles users’ privacy-sensitive information is essential for mobile security researchers to understand the behavior of the application and determine whether it is harmless or malicious....
truegaze v0.1.7 releases: Static analysis tool for Android/iOS apps focusing on security issues
truegaze A static analysis tool for Android and iOS applications focusing on security issues outside the source code such as resource strings, third-party libraries, and configuration files. Structure The application...
EVABS: Extremely Vulnerable Android Labs
EVABS (Extremely Vulnerable Android Labs) An open-source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners. The effort is to...
super: Secure, Unified, Powerful and Extensible Rust Android Analyzer
SUPER Android Analyzer SUPER is a command-line application that can be used in Windows, MacOS X and Linux, that analyzes .apk files in search for vulnerabilities. It does this by decompressing APKs...
Install Penetration Testing Toolkit on any Android devices
Introduce Termux is an Android terminal emulator and Linux environment app that works directly with no rooting or setup required. A minimal base system is installed automatically – additional packages are available...
jadx v1.5 released: Dex to Java decompiler
5jadx – Dex to Java decompiler Command-line and GUI tools for producing Java source code from Android Dex and Apk files Changelog v1.5 Main features Added support for: Scripting, uses...
APKiD v2.1.5 releases: Android Application Identifier for Packers, Protectors, Obfuscators and Oddities
APKiD gives you information about how an APK was made. It identifies many compilers, packers, obfuscators, and other weird stuff. It’s PEiD for Android. For more information on what this tool can...
APK Studio v5.2.4 releases: reverse-engineering android applications
APK Studio A Cross-Platform IDE for Reverse-Engineering (Disassembling, Hacking & Rebuilding) Android applications – featuring a friendly UI and Code editor with Syntax-highlighting support. Features Disassembling & Rebuilding APKs Code...
WaTF Bank v1.0 releases: Terrible Failure Mobile Banking Application for Android and iOS
WaTF-Bank What-a-Terrible-Failure Mobile Banking Application (WaTF-Bank), written in Java, Swift 4, Objective-C, and Python (Flask framework) as a backend server, is designed to simulate a “real-world” web services-enabled mobile banking...
sdrtrunk v0.6.0 releases: decoding, monitoring, recording and streaming trunked mobile
sdrtrunk A cross-platform Java application for decoding, monitoring, recording, and streaming trunked mobile and related radio protocols using Software Defined Radios (SDR). SDRtrunk is an integrated application for demodulating radio...
jackhammer: Security vulnerability assessment/management tool
Jackhammer: One Security vulnerability assessment/management tool to solve all the security team problems. What is Jackhammer? Jackhammer is a collaboration tool built with an aim of bridging the gap between...
Quick Android Review Kit(QARK): look for several security related Android application vulnerabilities
Quick Android Review Kit(QARK) Quick Android Review Kit – This tool is designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs. The tool is also capable of creating...
Apkatshu: extracting urls ,emails ,ip address and interesting data from APK files
Apkatshu Apkatshu its a Tool for extracting urls, emails, ip address, and interesting data from APK files Apkatshu: a tool is written in bash/python for extracting interesting data from apk...
