Android Pin BruteforceUnlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
Awesome Reverse EngineeringReverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Apk Meditmemory search and patch tool on debuggable apk without root & ndk
EvabsAn open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
AndroidlibraryAndroid library to reveal or obfuscate strings and assets at runtime
OvaaOversecured Vulnerable Android App
ApkleaksScanning APK file for URIs, endpoints & secrets.
Atfuzzer"Opening Pandora's Box through ATFuzzer: Dynamic Analysis of AT Interface for Android Smartphones" ACSAC 2019
Awesome Mobile SecurityAn effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
Android SecurityAn app showcase of some techniques to improve Android app security
CoeusAndroid apk/sdk Scan包括android apk/sdk 安全审计代码扫描以及国内政策扫描
Droid Watcher[OUTDATED & UNSUPPORTED] Droid Watcher - Android Spy Application
AmdhAndroid Mobile Device Hardening
Rms Runtime Mobile SecurityRuntime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Axploreraxplorer - Android Permission Mappings
PinkmanPINkman is a library to help implementing an authentication by a PIN code in a secure manner. The library derives hash from the user's PIN using Argon2 function and stores it in an encrypted file. The file is encrypted with the AES-256 algorithm in the GCM mode and keys are stored in the AndroidKeystore.
Aproxandroid proxy setting tool
R2fridaRadare2 and Frida better together.
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
AdhritAndroid Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.
InjuredandroidA vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
Cwac SecurityCWAC-Security: Helping You Help Your Users Defend Their Data
CheckoutVerifierVerify your In-App Purchase receipts & protect your Apps from hacking, patching used by Piracy Apps like Lucky Patcher.
Damn-Vulnerable-BankDamn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.
mobileAuditDjango application that performs SAST and Malware Analysis for Android APKs
dumproidAndroid process memory dump tool without ndk.
apkutila useful utility for android app security testing