An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with mobile-security

A curated list of projects in awesome lists tagged with mobile-security .

https://github.com/mobsf/mobile-security-framework-mobsf

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

android-security api-testing apk cwe devsecops dynamic-analysis ios-security malware-analysis mastg masvs mobile-security mobsf mstg owasp rest runtime-security static-analysis web-security windows-mobile-security

Last synced: 01 Apr 2026

https://github.com/MobSF/Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

android-security api-testing apk cwe devsecops dynamic-analysis ios-security malware-analysis mastg masvs mobile-security mobsf mstg owasp rest runtime-security static-analysis web-security windows-mobile-security

Last synced: 19 Mar 2025

https://github.com/OWASP/owasp-mstg

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

android android-application compliancy-checklist dynamic-analysis hacking ios ios-app mast mastg mobile-app mobile-security mstg network-analysis pentesting reverse-engineering reverse-enginnering runtime-analysis static-analysis testing-cryptography

Last synced: 17 Aug 2025

https://github.com/owasp/owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

android android-application compliancy-checklist dynamic-analysis hacking ios ios-app mast mastg mobile-app mobile-security mstg network-analysis pentesting reverse-engineering reverse-enginnering runtime-analysis static-analysis testing-cryptography

Last synced: 14 May 2025

https://github.com/OWASP/owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

android android-application compliancy-checklist dynamic-analysis hacking ios ios-app mast mastg mobile-app mobile-security mstg network-analysis pentesting reverse-engineering reverse-enginnering runtime-analysis static-analysis testing-cryptography

Last synced: 19 Mar 2025

https://github.com/charles2gan/gda-android-reversing-tool

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.

decompiler malware-analysis mobile-security privacy-protection security-audit vulnerability-scanners

Last synced: 14 May 2025

https://github.com/charles2gan/GDA-android-reversing-Tool

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.

decompiler malware-analysis mobile-security privacy-protection security-audit vulnerability-scanners

Last synced: 24 Mar 2025

https://github.com/m0bilesecurity/rms-runtime-mobile-security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

android-security frida ios-security mobile-security reverse-engineering

Last synced: 13 May 2025

https://github.com/m0bilesecurity/RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

android-security frida ios-security mobile-security reverse-engineering

Last synced: 19 Mar 2025

https://github.com/impact-i/reflutter

Flutter Reverse Engineering Framework

bugbounty mobile-security reverse-engineering ssl-pinning

Last synced: 03 May 2026

https://github.com/Impact-I/reFlutter

Flutter Reverse Engineering Framework

bugbounty mobile-security reverse-engineering ssl-pinning

Last synced: 27 Mar 2025

https://github.com/ptswarm/reflutter

Flutter Reverse Engineering Framework

bugbounty mobile-security reverse-engineering ssl-pinning

Last synced: 28 Sep 2025

https://github.com/ptswarm/reFlutter

Flutter Reverse Engineering Framework

bugbounty mobile-security reverse-engineering ssl-pinning

Last synced: 12 Jul 2025

https://github.com/sh4hin/androl4b

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

android application-security malware-analyzer mobile-security penetration-testing reverse-engineering

Last synced: 16 May 2025

https://github.com/sh4hin/Androl4b

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

android application-security malware-analyzer mobile-security penetration-testing reverse-engineering

Last synced: 03 Aug 2025

https://github.com/frenchyeti/dexcalibur

[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

analysis android android-security apk dex frida frida-node gui hook hooking instrumentation-automation mobile-security reverse reverse-engineering security-tools smali

Last synced: 08 Apr 2025

https://github.com/FrenchYeti/dexcalibur

[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

analysis android android-security apk dex frida frida-node gui hook hooking instrumentation-automation mobile-security reverse reverse-engineering security-tools smali

Last synced: 24 Mar 2025

https://github.com/chichou/grapefruit

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

ios mobile mobile-security security-tools

Last synced: 02 Apr 2026

https://github.com/ChiChou/grapefruit

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

ios mobile mobile-security security-tools

Last synced: 01 Apr 2025

https://github.com/vincentcox/stacoan

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

bugbounty mobile-security security security-tools static-code-analysis

Last synced: 04 Apr 2025

https://github.com/ChiChou/Grapefruit

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

ios mobile mobile-security security-tools

Last synced: 13 Mar 2025

https://github.com/vincentcox/StaCoAn

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

bugbounty mobile-security security security-tools static-code-analysis

Last synced: 19 Mar 2025

https://github.com/suifei/fridare

强大的 Frida 重打包工具,用于 iOS 和 Android。轻松修改 Frida 特征,增强隐蔽性,绕过检测。简化逆向工程和安全测试。Powerful Frida repackaging tool for iOS and Android. Easily modify Frida servers to enhance stealth and bypass detection. Streamlines reverse engineering and security testing.

android-security app-analysis cydia dynamic-instrumentation frida frida-server frida-tools golang ios-security mobile-security penetration-testing python reverse-engineering security-tools shell

Last synced: 12 Jan 2026

https://github.com/nowsecure/secure-mobile-development

A Collection of Secure Mobile Development Best Practices

android apple best-practices gitbook ios mobile-security nowsecure secure-development

Last synced: 02 Apr 2025

https://github.com/chichou/vscode-frida

Unofficial frida extension for VSCode

android ios mobile-security reverse-engineering vscode

Last synced: 18 Mar 2026

https://github.com/abhi-r3v0/Adhrit

Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.

analysis android android-security apk blackhat2020 blackhatarsenal dex enjarify ghera java mobile-security reverse-engineer security security-tools smali smalisca

Last synced: 08 May 2025

https://github.com/ChiChou/vscode-frida

Unofficial frida extension for VSCode

android ios mobile-security reverse-engineering vscode

Last synced: 12 Jul 2025

https://github.com/mateuszk87/BadIntent

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

android burp-extensions mobile-security pentesting

Last synced: 24 Mar 2025

https://github.com/1ultimat3/BadIntent

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

android burp-extensions mobile-security pentesting

Last synced: 11 Jul 2025

https://github.com/sh4hin/MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

android ios mobile-security penetration-testing

Last synced: 26 Mar 2025

https://github.com/sh4hin/mobileapp-pentest-cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

android ios mobile-security penetration-testing

Last synced: 13 May 2025

https://github.com/theqmaks/phantom-frida

Build anti-detection Frida server from source. ~90 patches covering 16 detection vectors, weekly auto-builds with random names.

android anti-detection frida frida-server instrumentation mobile-security pentesting reverse-engineering security stealth

Last synced: 26 Apr 2026

https://github.com/z3n70/Frida-Script-Runner

Frida Script Runner is a versatile web-based tool designed for Android and iOS penetration testing purposes.

android android-security bypass dynamic-analysis frida-gui ios ios-security mobile-security pentest security security-tools tools

Last synced: 08 Jul 2026

https://github.com/abhi-r3v0/EVABS

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

android-app android-application-vulnerabilities android-ctf android-labs android-pentest android-security application-security ctf-challenges ctf-platform mobile-app mobile-ctf mobile-pentest mobile-security pentesting vulnerable

Last synced: 29 Apr 2025

https://github.com/wn-na/react-native-capture-protection

🛡️ A React Native library to prevent and detect for screen capture, screenshots and app switcher for enhanced security. Fully compatible with both Expo and CLI.

android app-switcher detector expo ios mobile-security privacy react-native screen-capture screenrecord screenshot screenshot-protection security

Last synced: 26 Dec 2025

https://github.com/craiu/mobiletrackers

A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted marketing and aggressive ads libraries.

mobile-security pihole pihole-adblocker-list pihole-ads-list pihole-blocklists privacy-enhancing-technologies privacy-protection telemetry-domains

Last synced: 15 Feb 2026

https://github.com/Lakr233/iOSreExtension

A fast and elegant extension for VSCode used for iOSre projects.

ios iosre jailbreak mobile-security reverse-engineering vscode-extension

Last synced: 12 Jul 2025

https://github.com/htbridge/pivaa

Created by High-Tech Bridge, the Purposefully Insecure and Vulnerable Android Application (PIVAA) replaces outdated DIVA for benchmark of mobile vulnerability scanners.

android-application mobile-security vulnerable-application

Last synced: 26 Mar 2025

https://github.com/HTBridge/pivaa

Created by High-Tech Bridge, the Purposefully Insecure and Vulnerable Android Application (PIVAA) replaces outdated DIVA for benchmark of mobile vulnerability scanners.

android-application mobile-security vulnerable-application

Last synced: 13 Mar 2025

https://github.com/ringmast4r/tower-hunter

Cell tower logger and anomaly detector for Linux mobile devices. Monitors cellular connections, logs tower data with GPS, and detects suspicious activity.

cell-tower cybersecurity imsi-catcher linux mobile-security privacy stingray surveillance

Last synced: 21 Jun 2026

https://github.com/appsecco/VyAPI

VyAPI - A cloud based vulnerable hybrid Android App

application-security aws-cognito mobile-security vulnerable-app

Last synced: 11 Jul 2025

https://github.com/anof-cyber/mobsecco

Cloning apk for bypassing code tampering detection, Google Safety Net and scanning vulnerable plugins

android apk bug-bounty bugbounty cordova cybersecurity mobile-security penetration-testing pentesting pentesting-tools python

Last synced: 28 Oct 2025

https://github.com/xebia/mobilehacktools

A repository for scripting a mobile attack toolchain

android ios mobile-security mobile-security-testing pentest

Last synced: 11 Jul 2025

https://github.com/aress31/sci

Framework designed to automate the process of assembly code injection (trojanising) within Android applications.

android assembly code-injection framework malware mobile-security pentesting python reverse-engineering smali spyware trojan

Last synced: 22 Mar 2025

https://github.com/wultra/powerauth-mobile-sdk

PowerAuth mobile SDK adds capability for authentication and transaction signing into the mobile apps (iOS, tvOS, watchOS, Android).

android android-sdk authentication banking ios ios-sdk mobile mobile-security passwordless passwordless-authentication psd2 sdk security strong-customer-authentication

Last synced: 31 Jul 2025

https://github.com/approov/appauth-oauth2-books-demo

A companion repo for the blog article: https://blog.approov.io/adding-oauth2-to-mobile-android-and-ios-clients-using-the-appauth-sdk

api-security approov approov-demo mobile mobile-app mobile-security

Last synced: 28 Apr 2025

https://github.com/d0gkiller87/Frida-libcurlUnpinning

A Frida script to bypass libcurl (NDK) SSL-Pinning protection in Android apps.

frida frida-javascript frida-scripts frida-snippets mobile-security reverse-engineering ssl-pinning

Last synced: 11 Jul 2025

https://github.com/safebuffer/remote-adb-scan

pure python remote adb scanner + nmap scan module

android-security mobile-security penetration-testing

Last synced: 15 May 2025

https://github.com/romikavinda/root_jailbreak_sniffer

A Flutter Plugin to Detect root on Android (Magisk to some extent) and jailbreak on iOS

android android-security dart fluter ios jailbreak magisk mobile-security mobileappsecurity owasp root

Last synced: 21 Feb 2026

https://github.com/cyb3rmx/androidsecnotes

Tutorials, notes and walkthroughs about Android application security.

android android-security application-security cheatsheet guide mobile-security pentesting tutorials

Last synced: 15 Mar 2025

https://github.com/adulau/fascia

FASCIA is an open source software to collect, aggregate and store IMSI and related information including MCC, MNC, LAC and CellID (or other meta-information)

gsm mobile-phone mobile-security network-analysis network-security

Last synced: 17 Mar 2026

https://github.com/dotanuki-labs/android-archives-watchdog

A tool to shift-left sensitive changes on your Android deployable archives

android android-tools automation ci mobile-security

Last synced: 12 Apr 2025

https://github.com/romikavinda/app_integrity_checker

Flutter plugin to verify the integrity of the app and detect if it has been tampered at run time.

andriod android-security appsecurity dart flutter ios mobile-app mobile-security mobilesecurity owasp

Last synced: 23 Oct 2025

https://github.com/ngoclesydney/Cyber-Security-for-Mobile-Platforms

The subject provides an in-depth technical overview of mobile security architectures, new security risks and threats of modern mobile platforms and operating systems. Lab tutorials provide students with programming techniques (Android) in Cryptography, Network security, and Database security, and security tools in mobile penetration testing.

mobile-security

Last synced: 11 Jul 2025

https://github.com/itemic/rotacsufbo

did u know the name of the repo is obfuscator backwards?

android android-security javaparser mobile-security obfuscate obfuscation obufscator proguard security

Last synced: 26 Jun 2025

https://github.com/mkbeh/fereda

Cli tool for restoring hide and removed images from gallery and different messengers on Android.

android cli-tool cybersecurity gallery linux messengers mobile-forensics mobile-security recovery regex restoring-hide

Last synced: 26 Jul 2025

https://github.com/XecLabs/Mobile

The repo hold all our (mobile security) & applications reports.

android-app appsec information-gathering mobile-security

Last synced: 11 Jul 2025

https://github.com/wultra/powerauth-admin

This reporitory was moved to https://github.com/wultra/powerauth-server repository

administration authentication mobile-security security

Last synced: 11 Jul 2025

https://github.com/bad-antics/nullkia

NullKia Mobile Security Framework - Tools in Nim, Crystal, V, D, Red, Odin, Haxe, Zig, Kotlin, Lua, PHP, Python | bad-antics | discord.gg/killers

android android-hacking baseband bootloader-unlock checkm8 crystal firmware-hacking haxe infosec ios-jailbreak mobile-security nim nullkia nullsec odin-lang penetration-testing samsung-knox security-framework unusual-languages vlang

Last synced: 31 Jan 2026