Links

Tools

Mobile-Security-Framework-MobSF: Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, XAPK, IPA & APPX) along with zipped source code and provides REST APIs for seamless integration with your CI/CD or DevSecOps pipeline.The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.
qark: Tool to look for several security-related Android application vulnerabilities.
IPA decrypy: passionfruit or using class-dump-dyndl.
## mobexler VM ##
npm_config_user=root npm install -g passionfruit
passionfruit
adb shell "su -c '/data/local/tmp/frida-server-14.2.18-android-arm &'"
rms
Brida: The new bridge between Burp Suite and Frida!

Download APK CLI

Nuclei templates mobile

java -jar .\apktool.jar d -s 'xxx.com.apk' -o output
echo "/home/kali/Desktop/output" | /home/kali/go/bin/nuclei -t Keys