An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

📲 Enumerate information from an app based on the APK file

Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.

Droz_scan is a automated script, that runs all the queries of drozer in a single run

This write-up will provide detailed description on how to bypass Guided Access mode on Apple iPhones.

Uncover usage of insecure functions, implementation of weak cryptography, encryption status, and the presence of security features like Position Independent Executable (PIE), Stack Canaries, and Automatic Reference Counting (ARC) in iOS Applications Binaries.

Android App Security Checklist

A collection of android security related resources

The MPT (Mobile Pentest Toolkit) is a must-have solution for your android penetration testing workflow.

OSX and iOS related security tools

The iOS Security Testing Framework

🐰 [HaHacking: Notes] Android Malware Analysis

Mobile Application Penetration Testing checklist including iOS and Android

Read a plist file, write out any embedded plist files

Simple Bash scripts to make easier Android hacking (mobile pentesting).

Mobile security trainings based on android

frick - aka the first debugger built on top of frida - is a kick ass frida cli for reverse engineer inspired by the epic GDB init gef by @hugsy.

CapFuzz - capture, fuzz & intercept web traffic.

Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing.

Automated Binary Analysis on iOS