Mobile

Tools and resources for pentesting on mobile applications.

asset-count

App/File Management

Tool Description Directory
adb Allows you to install packages and evaluate your changes. opensource
Airdroid Transfer files across devices, remote control Android devices, mirror screen, and manage SMS & notification on computer. freemium-service
Android File Transfer Browse and transfer files between your Mac computer and your Android device. opensource
iExplorer Transfers music, messages, photos, files and everything else. freemium-service
iFunbox General file management software for iPhone and other Apple products. N/A
iMazing Powerful user-friendly iOS device manager for Mac and PC. freemium-service

Bug Bounty Reports

Tool Description Directory
Android Reports & Reports Android reports and resources. last-commit opensource

Dynamic Analysis

Tool Description Directory
Bytecode Viewer A lightweight user friendly Java Bytecode Viewer. last-commit opensource
CuckooDroid Automated Android Malware Analysis with Cuckoo Sandbox. last-commit opensource
Cutter Reverse engineering platform powered by rizin. last-commit opensource
DECAF DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. last-commit opensource
Diggy Extract endpoints from apk files. last-commit opensource
Droid-FF The android fuzzing framework. last-commit no-recent-update opensource
Drozer Security testing framework for Android. last-commit opensource
Frida Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. last-commit opensource
Hooker Provides various tools and applications that can be use to automatically intercept and modify any API calls. last-commit no-recent-update opensource
House A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python. last-commit opensource
Inspeckage Tool developed to offer dynamic analysis of Android applications. last-commit no-recent-update opensource
MobSF An automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. last-commit opensource
PATDroid A collection of tools and data structures for analyzing Android applications and the system itself. last-commit no-recent-update opensource
ProbeDroid A dynamic Java code instrumentation for Android apps. Provides APIs for users to craft their own instrumentation tools. last-commit no-recent-update opensource
radare2 Set of libraries, tools and plugins to ease reverse engineering tasks. last-commit opensource
Runtime Mobile Security (RMS) Powered by FRIDA a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime. last-commit opensource

Flashing/Sideloading

Tool Description Directory
Cydia Impactor Use this tool to install IPA files on iOS and APK files on Android. N/A
Odin Used to flash a custom recovery firmware image to a Samsung Android device. N/A

Guides & References

Tool Description Directory
Android Application Penetration Testing Checklist Android pentesting checklist mindmap. opensource
iOS Pentesting iOS pentesting mindmap. opensource

Jailbreaking/Rooting

Tool Description Directory
canijailbreak A website which tells you whether you can jailbreak your iOS device. opensource
Checkra1n Jailbreak for iPhone 5s through iPhone X, iOS 12.0 and up. N/A
Chimera iOS 12 jailbreak to not only feature a CoreTrust bypass so that binaries don’t need to be resigned, but to also support A12 devices, including iPhone Xs, iPhone Xr, and the newest iPads. N/A
Double H3lix Jailbreak for 64-bit 10.x devices. N/A
Etason Jailbreak for all devices running iOS 8.4.1 32 bit. N/A
Evasi0n Jailbreak iPhone, iPad or iPod touch on iOS 7.0 – iOS 7.0.6. N/A
H3lix Jailbreak for 32-bit 10.x devices. N/A
Home Depot Jailbreak for iOS 9.x devices. N/A
IPSW Download current and previous versions of Apple’s iOS, iPadOS, watchOS, tvOS and audioOS firmware and receive notifications when new firmwares are released. N/A
Magisk Magisk is a suite of open source software for customizing Android, supporting devices higher than Android 5.0. N/A
Pangu Jailbreak Jailbreak for iOS 9.0 - 9.1. N/A
Phoenix Semi-untethered jailbreak for 9.3.5-9.3.6. All 32-bit devices supported. N/A
p0sixspwn iOS Jailbreak for 6.1.X. N/A
redsn0w Jailbreak for iOS 3-5. N/A
TaiG Jailbreak for iOS 8.X. N/A
unc0ver A jail​break tool. N/A

Labs/Practice

Tool Description Directory
DIVA DIVA (Damn insecure and vulnerable App) is an Android App intentionally designed to be insecure. no-recent-update opensource
DVHMA Damn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities. last-commit no-recent-update opensource
Injured Android A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style. last-commit opensource
InsecureBank v2 Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities. last-commit opensource
Oversecured Vulnerable Android App An Android app that aggregates all the platform’s known and popular security vulnerabilities. last-commit opensource
UnCrackable Apps A collection of mobile reverse engineering challenges for iOS and Android. last-commit opensource
Vuldroid Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code. last-commit opensource
VyAPI The Modern Cloud-Based Vulnerable Hybrid Android App. last-commit opensource
WaTF-Bank What a Terrible Failure Mobile Banking Application for Android and iOS. last-commit opensource

Online Services

Tool Description Directory
Android APK Decompiler Online android decompiler N/A
Ostorlab Online static taint analysis, 3rd party fingerprinting, and vulnerability analysis. freemium-service
Oversecured Android mobile app analyzer vulnerability scanner, designed for DevOps process integration. freemium-service
Quixxi An intelligent and integrated end-to-end mobile app security solution. freemium-service

Post Exploitation (Android)

Tool Description Directory
dmesg Prints Android kernel messages. Already installed on device. last-commit
Dumpsys a tool that runs on Android devices and provides information about system services. Already installed on device. N/A
EggShell iOS/macOS/Linux Remote Administration Tool. last-commit no-recent-update opensource
jarsigner Jar, Android apk, Eclipse RCP signer. last-commit opensource
keystore-explorer GUI replacement for the Java command-line utilities keytool and jarsigner. last-commit opensource
MITMProxy An interactive TLS-capable intercepting HTTP proxy for penetration testers. last-commit opensource
Plistsubtractor Read a plist file, write out any embedded plist files. last-commit no-recent-update opensource
ProxyDroid Global Proxy for Android. last-commit opensource
Simplify Android virtual machine and deobfuscator. last-commit opensource
TCPDump The TCPdump network dissector. last-commit opensource

Post Exploitation (iOS)

Tool Description Directory
BinaryCookieReader A tool to read the binarycookie format of Cookies on iOS applications. last-commit no-recent-update opensource
ClassDumpiOS iOS port from nygard/class-dump. last-commit no-recent-update opensource
Cycript Explore and modify running applications on either iOS or Mac OS X using a hybrid of Objective-C++ and JavaScript. last-commit no-recent-update opensource
DumpDecrypted Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. last-commit no-recent-update opensource
EggShell iOS/macOS/Linux Remote Administration Tool. last-commit no-recent-update opensource
KTool Cross-platform MachO/ObjC Static binary analysis tool & library. class-dump + otool + lipo + more. last-commit opensource
lipo Used to thin out un-used code. opensource
MITMProxy An interactive TLS-capable intercepting HTTP proxy for penetration testers. last-commit opensource
MobileAssistant A tool to facilitate testing of iOS apps with Burp Suite. N/A
Needle The iOS Security Testing Framework. last-commit archive opensource
Objection A lightweight dependency injection framework for Objective-C. last-commit no-recent-update opensource
RVICTL Capture packets sent/received by iOS devices. last-commit opensource
Sileo A fast, beautiful, powerful and efficient APT Package Manager designed for jailbroken device. freemium-service
SSLKillSwitch Blackbox tool to disable SSL certificate validation. last-commit no-recent-update opensource
SSLKillSwitch2 Blackbox tool to disable SSL certificate validation. last-commit opensource
TCPDump The TCPdump network dissector. last-commit opensource

Reverse Engineering

Tool Description Directory
bfdecrypt Utility to decrypt App Store apps on jailbroken iOS 11.x last-commit opensource
Clutch Fast iOS executable dumper. last-commit opensource
flexdecrypt Decrypt iOS Apps and Mach-O binaries. last-commit opensource
FoulDecrypt A lightweight and simpling iOS binary decryptor. last-commit opensource
r2flutch Tool to decrypt iOS apps using r2frida. last-commit opensource

Static Analysis

Tool Description Directory
Android Check Static code analysis plugin for Android project. last-commit no-recent-update opensource
Androwarn Static code analyzer for malicious Android applications. last-commit no-recent-update opensource
APKLab A tool for reverse engineering 3rd party, closed, binary Android apps. last-commit opensource
APKLeaks Scanning APK file for URIs, endpoints & secrets. last-commit opensource
APK Studio The objective of this scanner is to find for misconfiguration, sensitive data and insecure components. last-commit opensource
APKTool Seamlessly integrates the best open-source tools right inside VS Code. opensource
Argus-SAF Static analysis framework. last-commit opensource
Checkstyle A tool for checking Java source code for adherence to a Code Standard or set of validation rules. last-commit opensource
DeGuard Statistical Deobfuscation for Android. opensource
Deoptfuscator Reverse the control-flow obfuscation performed by DexGuard on open-source Android applications. last-commit opensource
Droid-Hunter Android application vulnerability analysis and Android pentest tool. last-commit no-recent-update opensource
Error Prone Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time. last-commit opensource
FindBugs Uses static analysis to inspect Java bytecode for occurrences of bug patterns. no-recent-update opensource
Find Security Bugs Find Security Bugs is the SpotBugs plugin for security audits of Java web applications. last-commit opensource
FlowDroid Statically computes data flows in Android apps and Java programs. last-commit opensource
Gradle Supports many popular static analysis (Checkstyle, PMD, FindBugs, etc) via a set of built-in plugins. last-commit opensource
Infer Infer is a static analysis tool for Java, C++, Objective-C, and C. Infer is written in OCaml. last-commit opensource
JADX Dex to Java decompiler. last-commit opensource
Mobile Audit SAST and Malware Analysis for Android Mobile APKs. last-commit opensource
MobSF An automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. last-commit opensource
PMD Finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth. last-commit opensource
Qark designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs. last-commit no-recent-update opensource
Quark An Obfuscation-Neglect Android Malware Scoring System. last-commit opensource
Smali An assembler/disassembler for the dex format used by dalvik, Android’s Java VM implementation. last-commit opensource
Smali-CFG Smali Control Flow Graph’s last-commit opensource
Soot Smali Control Flow Graph’s last-commit opensource
Sparta Static program analysis for reliable trusted apps. last-commit opensource
StaCoAn A crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications last-commit archive opensource
Trueseeing A fast, accurate and resillient vulnerabilities scanner for Android apps. last-commit opensource
Yaazhini A fast, accurate and resillient vulnerabilities scanner for Android apps. N/A

Video Content

Tool Description Directory
B3nac Sec Dedicated mobile ethical hacking N/A

Virtualization

Tool Description Directory
Android Tamer Live Platform for Android Security professionals. no-recent-update
AppUse Mobile app security testing, Android and iOS applications. Custom-made tools and scripts created by AppSec Labs. paid-product

Whitepapers

Tool Description Directory
Android Rooting:Methods, Detection, and Evastion Written by San-Tsai Sun, Andrea Cuadros, and Konstantin Beznosov. N/A