Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...

Automated Firebase security scanner to check for unauthorized read and write access on firestore, realtime databases, storage buckets and remote configs

A curated resource for mobile security testing based on OWASP MASTG. Includes notes, tools, and practical examples for pentesters and developers.

A Bash tool to automatically install BurpSuite certificates into Android system stores (e.g. Genymotion) via ADB

deepLink is a python script allowing to list and verify deeplinks from Android apps using an ADB access or an APK file. It can also list some potential deeplinks handling in code samples using pattern matches.