A Security Tool for Bug Bounty, Pentest and Red Teaming.

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

Manage Android application in Linux (CLI)

ADB-Toolkit V2 for easy ADB tricks with many perks in all one. ENJOY!

Installer for ADB, Fastboot, and other Android tools on Linux, macOS, ChromeOS, and Windows

Open Redirection Analyzer

A wrapper around grep, to help you grep for things

APK Infrastructure Investigator

Unofficial frida extension for VSCode

Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.

Oversecured Vulnerable Android App

A Huge Learning Resources with Labs For Offensive Security Players

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods…

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy lea…

Scanning APK file for URIs, endpoints & secrets.

Flutter Mobile Application Reverse Engineering Tool

With this script you can bypass both root detection and ssl pinning for your android app.

Simple and secure SSL public key pinning for React Native. No native configuration needed, set up in <5 minutes.

Flutter Reverse Engineering Framework

Easy SSL pinning validation and reporting for iOS, macOS, tvOS and watchOS.

Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.

This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Basics on commands/tools/info on how to assess the security of mobile applications

pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching

403/401 Bypass Methods + Bash Automation + Your Support ;)