MobileApp-Pentest-Cheatsheet
alphaicon


MobileApp-Pentest-Cheatsheet | alphaicon | |
---|---|---|
1 | 2 | |
4,763 | 149 | |
3.0% | 0.0% | |
0.0 | 3.6 | |
about 1 year ago | about 1 year ago | |
R | ||
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
MobileApp-Pentest-Cheatsheet
-
Testing mobile applications for security vulnerabilities (assignment)
Not a pentester but Kali/metasploit/msfvenom/owasp all spring to mind. Also https://github.com/tanprathan/MobileApp-Pentest-Cheatsheet good luck I'm sure someone may come along with a simpler approach.
alphaicon
What are some alternatives?
awesome-frida - Awesome Frida - A curated list of Frida resources http://www.frida.re/ (https://github.com/frida/frida)
awesome-network-analysis - A curated list of awesome network analysis resources.
Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
oligrapher - JavaScript app for displaying annotated network graphs based on data from LittleSis
owasp-mastg - The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
scapy - Scapy: the Python-based interactive packet manipulation program & library.
Leesons-Modding-Instructions - The recordings of my 2 and 1/2 week journey to get a setup running for dynamic testing of Android malware
Pattern - Web mining module for Python, with tools for scraping, natural language processing, machine learning, network analysis and visualization.
awesome-malware-analysis - Defund the Police.
bap - Binary Analysis Platform
IVRE - Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.

