Mobile Apps Security Testing
@MobileSecurityTesting
2.01K subscribers
9 files
428 links
Download Telegram
About
Blog
Apps
Platform
Join
Mobile Apps Security Testing
2.01K subscribers
Mobile Apps Security Testing
https://medium.com/@tiensinodev/basic-android-encryption-dos-and-don-ts-7bc2cd3335ff
Medium
Basic Android Encryption Do’s and Don’ts
This article is meant to be a collection of things I found useful to know while building an encryption layer within an Android app. If you…
511 views
Mobile Apps Security Testing
https://medium.com/@viyatb/a-walk-through-the-damn-vulnerable-hybrid-mobile-app-dvhma-e25c5d609508
Medium
A walk through the Damn Vulnerable Hybrid Mobile App (DVHMA)
I have been doing more of mobile application security testing these days and I found the list of intentionally vulnerable apps…
529 views
Mobile Apps Security Testing
https://blog.fortinet.com/2017/04/05/how-to-repair-a-dex-file-in-which-some-key-methods-are-erased-with-nops
Fortinet Blog
How to repair a DEX file, in which some key methods are erased with NOPs
During the process of analyzing android malware, we usually meet some APK samples which hide or encrypt their main logic code.  Only at some point does the actual code exist in the memory, so we ne…
546 views
Mobile Apps Security Testing
https://github.com/vincentcox/StaCoAn
GitHub
GitHub - vincentcox/StaCoAn: StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing…
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications. - vincentcox/StaCoAn
556 views
Mobile Apps Security Testing
https://medium.com/bugbountyhunting/bug-bounty-hunting-tips-2-target-their-mobile-apps-android-edition-f88a9f383fcc
Medium
Bug Bounty Hunting Tips #2 —Target their mobile apps (Android Edition)
If you read through the disclosed bug bounty reports on platforms such as hackerone.com it is clear that most bug bounty hunters are…
585 views
Mobile Apps Security Testing
Mobile Security Reading Room: A reading room which contains well categorised technical reading material about mobile penetration testing, mobile malware, mobile forensics and all kind of mobile security related topics. Please feel free to suggest links you liked.

https://mobile-security.zeef.com/oguzhan.topgul
614 views
Mobile Apps Security Testing
Mobile Application Hacking Diary (Ep.1) : https://t.co/xL1KzzmvjG , Ep 2 : https://t.co/7tnF4248EK
Exploit-Db
Papers
Mobile Application Hacking Diary Ep.1
602 views
Mobile Apps Security Testing
https://www.blackhat.com/docs/asia-15/materials/asia-15-Grassi-The-Nightmare-Behind-The-Cross-Platform-Mobile-Apps-Dream.pdf
589 views
Mobile Apps Security Testing
https://www.htbridge.com/mobile/
584 views
Mobile Apps Security Testing
http://androidcracking.blogspot.co.id/2011/06/anti-tampering-with-crc-check.html
androidcracking.blogspot.co.uk
anti-tampering with crc check
one way an app will try to detect if it has been tampered with is to look at classes.dex inside the apk. just so you know, java code is com...
600 views
Mobile Apps Security Testing
http://androidcracking.blogspot.co.id/2011/06/protection-by-checking-for-debuggers.html
androidcracking.blogspot.co.uk
protection by checking for debuggers
one way to figure out what an app is doing is to use a debugger so you can step through line by line. apktool makes it possible to debug app...
618 views
Mobile Apps Security Testing
https://github.com/CalebFenton/simplify
GitHub
GitHub - CalebFenton/simplify: Android virtual machine and deobfuscator
Android virtual machine and deobfuscator. Contribute to CalebFenton/simplify development by creating an account on GitHub.
625 views
Mobile Apps Security Testing
http://androidcracking.blogspot.co.id/2013/10/nihilus-reversing-dexguard-5x.html
Blogspot
Nihilus' Reversing DexGuard 5.x
Here's another tutorial kindly written by Nihilus . It's a teardown of reversing DexGuard's protections, which are legion, along with som...
625 views
Mobile Apps Security Testing
http://androidcracking.blogspot.co.id/2013/01/string-decryption-with-dex2jar.html
androidcracking.blogspot.co.uk
string decryption with dex2jar
i have been getting a lot of questions about string decryption lately, so let's talk. let's say you have an app and notice encrypted stri...
648 views
Mobile Apps Security Testing
http://file.digitalinterruption.com/Secure%20Mobile%20Development.pdf
657 views
Mobile Apps Security Testing
MADLIRA - Malware detection using learning and information retrieval for Android
https://github.com/dkhuuthe/MADLIRA
GitHub
GitHub - dkhuuthe/MADLIRA: Malware detection using learning and information retrieval for Android
Malware detection using learning and information retrieval for Android - GitHub - dkhuuthe/MADLIRA: Malware detection using learning and information retrieval for Android
657 views
Mobile Apps Security Testing
https://www.ictsecuritymagazine.com/articoli/rop-cercare-gadget-nelle-applicazioni-android/
ICT Security Magazine
Attacchi ROP: cercare gadget nelle applicazioni Android - ICT Security Magazine
Scopri come individuare i gadget ROP per sfruttare vulnerabilità su Android ARM attraverso attacchi Return Oriented Programming (ROP). Utilizza strumenti come Ropper per creare catene ROP efficaci, aggirando i sistemi di sicurezza.
667 views
Mobile Apps Security Testing
axplorer (Android explorer) is a static analysis tool to study Android's application framework's internals. It generates high-precision call-graphs for middleware services that are subsequently analyzed via control-flow slicing.
https://github.com/reddr/axplorer
GitHub
GitHub - reddr/axplorer: axplorer - Android Permission Mappings
axplorer - Android Permission Mappings. Contribute to reddr/axplorer development by creating an account on GitHub.
712 views
Mobile Apps Security Testing
https://bugbountyforum.com/blog/security/h1-202-ctf/
Bugbountyforum
H1 202 CTF
Bug Bounty Forum is a 150+ large community of security researchers sharing information with each other.
716 views
Mobile Apps Security Testing
http://pierrchen.blogspot.co.id/2016/09/an-walk-through-of-android-uidgid-based.html
Blogspot
Android Security: An Overview Of Application Sandbox
Linux, Container, Android, kubernetes, DevOps, Open Source, Software Design, Golang, Software Architecture, Distributed system
761 views