An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

📲 Enumerate information from an app based on the APK file

Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.

Droz_scan is a automated script, that runs all the queries of drozer in a single run

This write-up will provide detailed description on how to bypass Guided Access mode on Apple iPhones.

Uncover usage of insecure functions, implementation of weak cryptography, encryption status, and the presence of security features like Position Independent Executable (PIE), Stack Canaries, and Automatic Reference Counting (ARC) in iOS Applications Binaries.

The MPT (Mobile Pentest Toolkit) is a must-have solution for your android penetration testing workflow.

Android App Security Checklist

A collection of android security related resources

🐰 [HaHacking: Notes] Android Malware Analysis

Mobile Application Penetration Testing checklist including iOS and Android

The CyberTalents repository is a collection of solutions and write-ups for challenges sourced from the CyberTalents platform. Organized topic, this repository serves as a resource for cybersecurity enthusiasts seeking to enhance their skills and understanding of security concepts.

OSX and iOS related security tools

PoC demonstrating how to perform OAuth Mobile App Impersonation through custom scheme hijacking.

The iOS Security Testing Framework

Read a plist file, write out any embedded plist files

Simple Bash scripts to make easier Android hacking (mobile pentesting).

Mobile security trainings based on android

frick - aka the first debugger built on top of frida - is a kick ass frida cli for reverse engineer inspired by the epic GDB init gef by @hugsy.

Bypass SSL certificate pinning for most applications