Work in progress...

Work in progress...

Mobile penetration testing android & iOS command cheatsheet

As a bug hunter, are your bug bounty reports getting rejected because you don't use a "malicious" Proof of Concept (PoC) app to exploit the vulnerabilities? I've got you covered!

Automation of some MAPT activities and interaction with the mobile Android device.

Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.

Phishing mobile application made in React Native for both Android and iOS devices.

Uncover usage of insecure functions, implementation of weak cryptography, encryption status, and the presence of security features like Position Independent Executable (PIE), Stack Canaries, and Automatic Reference Counting (ARC) in iOS Applications Binaries.

Droz_scan is a automated script, that runs all the queries of drozer in a single run

Scrape files for sensitive information, and generate an interactive HTML report. Based on Rabin2.

Extract and convert property list files from SQLite database files and from other property list files.

Create PoC Android Apps for Deep Link Hijacking.

Simple script to setup a local hosted network for Mobile Application Penetration Testing

🐰 [HaHacking: Notes] Android Malware Analysis

A curated resource for mobile security testing based on OWASP MASTG. Includes notes, tools, and practical examples for pentesters and developers.

[Beta testing] Android bruteforcing tool for apps pentesting, simulating manual user typing with adb

A comprehensive collection of Frida scripts and Python tools for Android dynamic analysis. Includes PoCs for bypassing SSL pinning, root detection, obfuscation, and client-side cryptographic integrity checks.