The ‘Night City’ blackmarket is powered by ‘Droidcoin’. An anonymous crypto-currency. The rogue androids seem to have hacked the ‘Nighty…

Offensive website security Bug bounty Ethical hacking

iOS/android frida library for reversing. Contribute to 4ch12dy/FridaLib development by creating an account on GitHub.

I just uploaded a small script to @fridadotre CodeShare to check if keyboard caching is disabled for text inputs in the current view. This allows to dynamically verify @OWASP_MSTG STORAGE‑5 requirement on iOS apps. https://t.co/zy0q19C1zb

I've created a modified version of checkm8 that doesn't cause your iPhone to crash when loading img4 images (e.g. iBSS): https://t.co/XxSg04RuKH Also includes a signature check removal tool to load unsigned images (currently only supports iPhone 5s, only…

A presentation created with Slides.

Jailbreak for iPhone 5s through iPhone X, iOS 12.0 and up

🌟v2 of my free Intro to Android App Reverse Engineering workshop is here! 🌟 I've added 3 new exercises, walk-through videos for all 7 exercises, a new module on obfuscation, & exercises on vuln hunting rather than just malware. I hope it helps! https://t.co/8h2Wjfus1t

Every iOS security guide . Contribute to 0xmachos/iOS-Security-Guides development by creating an account on GitHub.

The tool is used to analyze the content of the android application in local storage. - NotSoSecure/android_application_analyzer

TL;DR – There are many Android SSL pinning bypass scripts available for Frida. However, those don’t always work on obfuscated applications. If the application uses OkHttp, there’s…

👾👾 Genymotion_ARM_Translation Please enjoy！. Contribute to m9rco/Genymotion_ARM_Translation development by creating an account on GitHub.

Use Frida and Objection! By now you should know how to install Burp Suite and set it up to proxy your iOS device. If this is all you do then you will come up against TLS errors. You have to use Frida and Objection to inject an SSL bypass into the app you're…

My previous blogposts explained how to intercept Flutter traffic on Android ARMv8, with a detailed follow along guide for ARMv7. This blogpost does the same for iOS. ⚠️ Update August 2022 ⚠️An upda…

A Magisk/KernelSU module that automatically adds user certificates to the system root CA store - NVISOsecurity/AlwaysTrustUserCerts

Intercepting HTTPS traffic is a necessity with any mobile security assessment. By adding a custom CA to Android, this can easily be done. As of Android Nougat, however, apps don’t trust clien…

Elder driver Xposed Framework. Contribute to ElderDrivers/EdXposed development by creating an account on GitHub.