There are 68 repositories under android-security topic.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Scanning APK file for URIs, endpoints & secrets.
Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
A big list of Android Hackerone disclosed reports and other resources.
[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
The repo contains a series of challenges for learning Frida for Android Exploitation.
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
Oversecured Vulnerable Android App
Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.
Android security guides, roadmap, docs, courses, write-ups, and teryaagh.
Swiss army knife for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
软件安全工程师技能表
Android Security Resources.
A Collection of Android (Samsung) Security Research References
A large repository of malware samples with 2500+ malware samples & source codes for a variety of platforms by Cryptware Apps.
Android security insights in full spectrum.
Android library to reveal or obfuscate strings and assets at runtime
CWAC-NetSecurity: Simplifying Secure Internet Access
Django application that performs SAST and Malware Analysis for Android APKs
PounceKey's is a Accessibility Service keylogger for Android 5 to 13! full launcher stealth. choose between receiving logs via IP, Gmail, or Discord. No txt files on device, straight buffer in logcat. Signal backdoor, best android keylogger!
"Opening Pandora's Box through ATFuzzer: Dynamic Analysis of AT Interface for Android Smartphones" ACSAC 2019
An app showcase of some techniques to improve Android app security
[OUTDATED & UNSUPPORTED] Droid Watcher - Android Spy Application