{"id":26896763,"url":"https://github.com/rodolfomarianocy/Tricks-Pentest-Android-and-iOS-Applications","last_synced_at":"2025-04-01T04:01:54.081Z","repository":{"id":62787620,"uuid":"533378116","full_name":"rodolfomarianocy/Tricks-Pentest-Android-and-iOS-Applications","owner":"rodolfomarianocy","description":"Some Useful Tricks for Pentest Android and iOS Apps","archived":false,"fork":false,"pushed_at":"2024-10-27T22:14:37.000Z","size":94,"stargazers_count":52,"open_issues_count":0,"forks_count":10,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-10-28T01:32:37.349Z","etag":null,"topics":["android","attack","exploitation","hacking","hacking-mobile","ios","mobile","penetration-testing","pentest","pentest-android","pentest-ios","pentesting","tips","tricks","vulnerability"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rodolfomarianocy.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-09-06T15:05:50.000Z","updated_at":"2024-10-27T22:50:34.000Z","dependencies_parsed_at":"2023-11-15T04:23:49.308Z","dependency_job_id":"54be253c-b412-4f6d-9c2c-d6b9091baaa0","html_url":"https://github.com/rodolfomarianocy/Tricks-Pentest-Android-and-iOS-Applications","commit_stats":null,"previous_names":["rodolfomarianocy/tricks-pentest-android-and-ios-applications"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rodolfomarianocy","download_url":"https://codeload.github.com/rodolfomarianocy/Tricks-Pentest-Android-and-iOS-Applications/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246580463,"owners_count":20800110,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["android","attack","exploitation","hacking","hacking-mobile","ios","mobile","penetration-testing","pentest","pentest-android","pentest-ios","pentesting","tips","tricks","vulnerability"],"created_at":"2025-04-01T04:01:53.000Z","updated_at":"2025-04-01T04:01:54.073Z","avatar_url":"https://github.com/rodolfomarianocy.png","language":"JavaScript","funding_links":[],"categories":["JavaScript"],"sub_categories":[],"readme":"\u003ch1 align=\"center\"\u003eTricks - Mobile Penetration Tester (Android and iOS)\u003c/h1\u003e  \n\n\u003cp align=\"center\"\u003e\n   \u003cimg height=600 src=\"https://github.com/rodolfomarianocy/Tricks-Pentesting-Android-and-IOS-Applications/assets/54555784/1ecb7d7b-9d4e-467f-8400-8208bd62972c\" /\u003e\n\u003c/p\u003e\n\u003ch2 align=\"center\"\u003e [x] In construction...\u003c/h2\u003e\n\n## Tricks Pentest Mobile - Android [Topics]\n- [Basic Apps Android](basic_apps_android.md)\n  - [Android Architecture](basic_apps_android.md#android-architecture)\n  - [Configuring Emulated Environment](basic_apps_android.md#configuring-the-emulated-environment)\n  - [Communication with ADB (Android Debug Mode)](basic_apps_android.md#communication-with-adb-android-debug-mode)\n  - [Extract and Install apk](basic_apps_android.md#extract-and-install-apk)\n\n- [Reverse Engineering Android](reverse_engineering_android.md)\n  - [Sign the app](reverse_engineering_android.md#sign-the-app)\n  - [Install .aab](reverse_engineering_android.md#install-aab)\n  - [Smali Assembler and Disassembler](reverse_engineering_android.md#generate-smali)\n  - [Dex to Java Decompiler](reverse_engineering_android.md#smali-assembler-and-disassembler)\n  - [Reverse Engineering React Native in Bundle](reverse_engineering_android.md#reverse-engineering-react-native-in-bundle)\n  - [Dump Information About an Object File - Lib](reverse_engineering_android.md#dump-information-about-an-object-file---lib)\n \n- [Intercepting Traffic in Android Apps](intercepting_traffic_in_android_apps.md)\n  - [Configuring Proxy](intercepting_traffic_in_android_apps.md#configuring-proxy)\n  - [Adding Certificate to User](intercepting_traffic_in_android_apps.md#adding-certificate-to-user)\n  - [Adding Certificate to the System](intercepting_traffic_in_android_apps.md#adding-certificate-to-the-system)\n  - [Intercepting Mobile Apps in Flutter](intercepting_traffic_in_android_apps.md#intercepting-mobile-apps-in-flutter)\n\n- [Magisk Tricks](magisk_tricks.md)\n  - [Root AVD with Magisk - Emulated Environment](magisk_tricks.md#root-avd-with-magisk---emulated-environment)\n  - [Plugins to automate recurring actions](magisk_tricks.md#plugins-to-automate-recurring-actions)\n\n- [Hooking with Frida and Objection on Android](hooking-frida-objection-android.md)\n  - [Install and Configure Frida and Objection](hooking-frida-objection-android.md#install-and-configure-frida-and-objection)\n  - [Frida Tricks](hooking-frida-objection-android.md#frida-tricks)\n  - [Objection Tricks](hooking-frida-objection-android.md#objection-tricks)\n  - [Frida Scripts for Enumeration](hooking-frida-objection-android.md#frida-scripts-for-enumeration)\n\n- [Client-Side Protections - Android](client_side_protections_android.md)\n  - [Anti-Root Bypass](client_side_protections_android.md#anti-root-bypass)\n  - [Anti-Emulator Bypass](client_side_protections_android.md#anti-emulator-bypass)\n  - [SSL Pinning Bypass](client_side_protections_android.md#ssl-pinning-bypass)\n  - [End-to-End Encryption Bypass](client_side_protections_android.md#end-to-end-encryption-bypass)\n  - [Anti-Debugging Bypass](client_side_protections_android.md#anti-debugging-bypass)\n  - [Anti-Frida Bypass](client_side_protections_android.md#anti-frida-bypass)\n  - [Flag Secure Bypass](client_side_protections_android.md#flag-secure-bypass)\n\n- [Access Control Android](access_control_android.md)\n  - [Activity Exploitation](access_control_android.md#activity-exploitation)\n  - [Content Provider Exploitation](access_control_android.md#content-provider-exploitation)\n  - [Android Debug Mode Enabled](access_control_android.md#android-debug-mode-enabled)\n  - [Crack Android Pattern Lock](access_control_android.md#crack-android-pattern-lock)\n\n- [Insecure Data Storage Android](insecure_data_storage_android.md)\n  - [SQLite Databases](insecure_data_storage_android.md#databases)\n  - [Shared Preferences](insecure_data_storage_android.md#shared-preferences)\n  - [Internal Storage](insecure_data_storage_android.md#internal-storage)\n  - [External Storage](insecure_data_storage_android.md#external-storage)\n  - [Backups for Sensitive Data](insecure_data_storage_android.md#backups-for-sensitive-data)\n  - [Dumping memory for Sensitive Data](insecure_data_storage_android.md#dumping-memory-for-sensitive-data)\n  - [Keystore](insecure_data_storage_android.md#keystore)\n    \n## Tricks Pentest Mobile - iOS [Topics]\n- [Basic Apps iOS](basic_apps_ios.md)\n  - [iOS Architecture](basic_apps_ios.md#ios-architecture)\n  - [Extracting a Decrypted .ipa from a Jailbroken Device](basic_apps_ios.md#extracting-a-decrypted-ipa-from-a-jailbroken-device)\n  - [Install/Uninsttall an ipa](basic_apps_ios.md#installuninstall-an-ipa)\n\n- [Reverse Engineering iOS](reverse_engineering_ios.md)\n  - [Signing and Installing a Third-Party iOS Application - Require MacOS](reverse_engineering_ios.md#signing-and-installing-a-third-party-ios-application---require-macos)\n  - [Assembler and Disassembler](reverse_engineering_ios.md#assembler-and-disassembler)\n  - [Dumping Class Information in Objective-C](reverse_engineering_ios.md#dumping-class-information-in-objective-c)\n  - [Using swift-demangle](reverse_engineering_ios.md#using-swift-demangle)\n\n- [Intercepting Traffic in iOS Apps](intercepting_traffic_in_ios_apps.md)\n  - [Configuring Proxy](intercepting_traffic_in_ios_apps.md#configuring-proxy)\n  - [Adding Certificate to User](intercepting_traffic_in_ios_apps.md#adding-certificate-to-user)\n  - [Adding Certificate to System](intercepting_traffic_in_ios_apps.md#adding-certificate-to-system)\n\n- [Jailbreak Information](jailbreak_information.md)\n  - [Jailbreak Types (Untethered, Semi-Untethered, Semi-Tethered, Tethered)](jailbreak_information.md#jailbreak-types-untethered-semi-untethered-semi-tethered-tethered)\n  - [Jailbreak Methods (Rootful, Rootless)](jailbreak_information.md#jailbreak-methods-rootful-rootless)\n  - [Communicating with your Jailbroken Device](jailbreak_information.md#communicating-with-your-jailbroken-device)\n    \n- [Hooking with Frida and Objection on iOS](hooking-frida-objection-ios.md)\n  - [Install and Configure Frida and Objection](hooking-frida-objection-ios.md#install-and-configure-frida-and-objection)\n  - [Frida Tricks](hooking-frida-objection-ios.md#frida-tricks)\n  - [Patching .ipa - Objection (non Jailbroken) - Require MacOS](patching-ipa---objection-non-jailbroken---require-macos)\n  - [Objection Tricks](hooking-frida-objection-ios.md#objection-tricks)\n  - [Frida Scripts for Enumeration](hooking-frida-objection-ios.md#frida-scripts-for-enumeration)\n\n- [Client-Side Protections - iOS](client_side_protections_ios.md)\n  - [Anti-Jailbreak Bypass](client_side_protections_ios.md#anti-jailbreak-bypass)\n  - [Anti-Emulator Bypass](client_side_protections_ios.md#anti-emulator-bypass)\n  - [SSL Pinning Bypass](client_side_protections_ios.md#ssl-pinning-bypass)\n  - [Anti-Frida Bypass](client_side_protections_ios.md#anti-frida-bypass)\n  - [End-to-End Encryption Bypass](client_side_protections_ios.md#end-to-end-encryption-bypass)\n \n- [Insecure Data Storage - iOS](insecure_data_storage_ios.md)\n  - [NSUserDefaults/UserDefaults](insecure_data_storage_ios.md#nsuserdefaultsuserdefaults)\n  - [PList Files](insecure_data_storage_ios.md#plist-files)\n  - [SQLite](insecure_data_storage_ios.md#sqlite)\n  - [Core Data](insecure_data_storage_ios.md#core-data)\n  - [Dumping Memory for Sensitive Data](insecure_data_storage_ios.md#dumping-memory-for-sensitive-data)\n  - [Keychain](insecure_data_storage_ios.md#keychain)\n  - [Backup](insecure_data_storage_ios.md#backup)\n  - [Realm](insecure_data_storage_ios.md#realm)\n  - [Cache](insecure_data_storage_ios.md#cache)\n \n## Tricks Pentest Mobile General- [Topics]\n- [Creating Scripts in Frida](creating_scripts_frida.md)\n  - [Hook and Java Reflection](creating_scripts_frida.md#hooking-and-java-reflection)\n  - [Structure for Creating the Script in Frida](structure-for-creating-the-script-in-frida)\n  - [Hands-On Scripts](creating_scripts_frida.md#hands-on-scripts)\n- [Misconfigured Google Maps API Key Hardcoded](misconfigured_google_maps_api_key_hardcoded.md#misconfigured-google-maps-api-key-hardcoded)\n- [Facilitating Tools](facilitating_tools.md#facilitating-tools)\n  - [Mobile Security Framework (MobSF) [Android/iOS]](facilitating_tools.md#mobile-security-framework-mobsf-androidios)\n  - [scrcpy - screen copy [Android]](facilitating_tools.md#scrcpy---screen-copy-android)\n  - [3uTools - Useful Apple Mobile Device Management Tool [iOS]](facilitating_tools.md#3utools---useful-apple-mobile-device-management-tool-ios)\n  - [Frida iOS hook - Tool to help Frida more easily](facilitating_tools.md#frida-ios-hook---tool-to-help-frida-more-easily)\n  - [Grapefruit - iOS runtime application instrumentation tool based on frida](facilitating_tools.md#grapefruit---ios-runtime-application-instrumentation-tool-based-on-frida)\n  - [Runtime Mobile Security (RMS) - developed by FRIDA, it is a web interface that helps manipulate Android and iOS applications at runtime](facilitating_tools.md#runtime-mobile-security-rms---developed-by-frida-it-is-a-web-interface-that-helps-manipulate-android-and-ios-applications-at-runtime)\n  - [Quick Android Review Kit [Android] - for searching for vulnerabilities in apps, capable of generating PoC's through the creation of deployable APKs and/or ADB commands for exploitation](facilitating_tools.md#quick-android-review-kit-android---for-searching-for-vulnerabilities-in-apps-capable-of-generating-pocs-through-the-creation-of-deployable-apks-andor-adb-commands-for-exploitation)\n  - [Pithus - Mobile threat intelligence for the masses [Android/iOS]](facilitating_tools.md#pithus---mobile-threat-intelligence-for-the-masses-androidios)\n  - [libimobiledevice - \"A cross-platform FOSS library written in C to communicate with iOS devices natively\" [iOS]](facilitating_tools.md#libimobiledevice---a-cross-platform-foss-library-written-in-c-to-communicate-with-ios-devices-natively-ios)\n- [TLS and mTLS](tls_and_mtls.md)\n- [Open Source Projects for Protection in Mobile Apps](open_source_projects_protections_mobile_apps.md)\n- [Hands-on Labs](hands_on_labs.md)\n  - [InsecureBankv2 [Android]](hands_on_labs.md#insecurebankv2-android)\n  - [Damn Vulnerable Bank [Android]](hands_on_labs.md#damn-vulnerable-bank-android)\n  - [goatdroid.apk [Android]](hands_on_labs.md#goatdroidapk-android)\n  - [OVAA (Oversecured Vulnerable Android App) [Android]](hands_on_labs.md#ovaa-oversecured-vulnerable-android-app-android)\n  - [EVABS (Extremely Vulnerable Android Labs) [Android]](hands_on_labs.md#evabs-extremely-vulnerable-android-labs-android)\n  - [Insecureshop [Android]](hands_on_labs.md#insecureshop-android)\n  - [Allsafe [Android]](hands_on_labs.md#allsafe-android)\n  - [DVIA-v2 [iOS]](hands_on_labs.md#dvia-v2-ios)\n  - [DVIA [iOS]](hands_on_labs.md#dvia-ios)\n  - [OWASP iGoat (Swift) [iOS]](hands_on_labs.md#owasp-igoat-swift-ios)\n  - [Oversecured Vulnerable iOS App [iOS]](hands_on_labs.md#oversecured-vulnerable-ios-app-ios)\n  - [UnSAFE Bank [Android/iOS]](hands_on_labs.md#unsafe-bank-androidios)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frodolfomarianocy%2FTricks-Pentest-Android-and-iOS-Applications/lists"}