InjuredAndroid
awesome-vulnerable-apps
InjuredAndroid | awesome-vulnerable-apps | |
---|---|---|
2 | 7 | |
461 | 846 | |
- | - | |
3.7 | 4.5 | |
almost 3 years ago | 13 days ago | |
Kotlin | ||
Apache License 2.0 | Creative Commons Zero v1.0 Universal |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
InjuredAndroid
awesome-vulnerable-apps
- The next step
-
Where to practice Owasp mobile top 10 vulnerabilities?-
As well as a whole list of vulnerable applications for different fields, including mobile of course: https://github.com/vavkamil/awesome-vulnerable-apps
-
Juice shop
OWAS PJuice Shop is awesome, you can find more apps for practice here https://github.com/vavkamil/awesome-vulnerable-apps/
-
Vulhub: Pre-Built Vulnerable Environments Based on Docker-Compose
https://github.com/vavkamil/awesome-vulnerable-apps#owasp-to... :
> OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
And there's a book, an Open Source Official Companion Guide book titled "Pwning Juice Shop":
- How to practice hacking topics
- Need some resources
-
Does doing CTF help?
It depends on how the CTF is designed. I would suggest to rather try the "vulnerable by design" exercises which I'm collecting here https://github.com/vavkamil/awesome-vulnerable-apps
What are some alternatives?
PixaPencil - [may be abandoned or transition to a new developer] A free and open source pixel art editor for Android. 🚀Get on F-Droid/GitHub!🚀
bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
FlorisBoard - An open-source keyboard for Android which respects your privacy. Currently in early-beta.
juice-shop - OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
xctvplayer - xCloud player for Google Chromecast with Google TV
awesome-ethical-hacking-resources - 😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.
MathRenderer - A simple and stright-forward library for displaying mathematical equations or formulas in your android application
awesome-bugbounty-tools - A curated list of various bug bounty tools
Android-Request-Inspector-WebView - Inspect and intercept full HTTP requests sent from Android WebViews
Interlace - Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Free-RASP-Android - Library for improving app security and threat monitoring on Android mobile devices.
Android-InsecureBankv2 - Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities