Red Teaming and Malware Analysis
  • About
  • Red Teaming
  • Cheat Sheet
    • Web
      • Misc
      • File Upload bypass
      • Authentication bypass
      • SQL Injection
      • XSS
      • XXE
      • Reverse-shell
      • Webshell
      • (De)Serialization
    • Active Directory
    • Services by port
      • Enum
      • 5060 - SIP
      • 25 - SMTP
      • 135 - RPC
      • 445 - SMB
      • 11211 - PHPMemCached
      • ldap
    • Hardening
    • Stuff
      • Basic tips/scripts
      • OpenBSD & NetBSD
      • File Transfer
      • Pivoting
  • Active Directory 101
    • Dumping Active Directory DNS using adidnsdump
    • PrintNightmare
    • From DFSCoercer to DA
  • Fuzzing and Web
    • Server Side Template Injection (SSTI)
    • Finding SSRF (all scope)
    • Format String Exploitation
    • Cache Poisoning using Nuclei
  • Initial Foothold
    • Browser In The Browser (BITB) Attack
    • Phishing with Office
      • Weaponizing XLM 4.0 macros
  • Privilege Escalation (Privesc)
    • AV/EDR Bypass
      • Bypass AV/EDR using Safe Mode
      • Resources
    • UAC bypass
    • Process migration like meterpreter
  • Lateral Movement (Pivoting)
    • From Windows VPN + Kali VPN + DC
      • By using Proxifier
  • Persistence
  • Command and Control (C&C)
    • CobaltStrike 101
      • Pivoting DMZ: weevely + ngrok + CS Pivot COMBO via Linux
      • Extras + Plugins
      • Resources
  • Data Exfiltration
    • Extracting certs/private keys from Windows using mimikatz and intercepting calls with burpsuite
  • CVE & Exploits / CTF
    • Privilege Escalation
    • Serialization
    • CVEs
      • CHIYU IoT devices
      • Chamilo-lms-1.11.x - From XSS to account takeover && backdoor implantation
    • CVE - Submission Guides
  • Tools
    • Intel
    • OSINT
    • DNS
    • WEB
      • API and WS Hacking
      • Web Discovery
      • Web Fuzzing
      • Path Traversal
      • GraphQL
      • JWT
    • Infrastructure and Network
      • Scan and Discovery
        • Network mapper
      • Automated Scanners
      • Misc
      • Active Directory
        • Burpsuite with Kerberos Auth
      • Cloud & Azure
      • Command and Control (C&C)
      • (De)serialization
      • Lateral Movement
      • Powershell
    • Privilege Escalation
    • Exfiltration
    • Persistence
    • Password & Cracking
      • Wordlists
      • Tips
      • Rainbow Crackalack
    • Static Code Analysis
    • Reporting
  • Resources
  • Pwnage
    • WiFi
      • HOSTAPD-WPE
      • Rogue APP
      • WPA3 Downgrade attack
    • NRF
    • rubber ducky
  • Malware Analysis
  • Unpacking
  • Basic tips
  • Malware instrumentation with frida
  • Tools
    • Debuggers / Disassemblers
    • Decompilers
    • Detection and Classification
    • Deobfuscation
    • Debugging and Reverse Engineering
    • Memory
    • File Analysis
    • Emulators
    • Network Traffic Analysis
    • Other
    • Online Tools
  • Resources
    • DFIR FTK Imager
    • Convert IP Range into CIDR
    • Parsing Large Raw Files and Excluding Country IP Address Ranges
    • Windows Logs Automation
      • amcache.hve
    • Windows EventViewer Analysis | DFIR
    • Prevent Windows shutdown after license expire
    • Firewall raw Logs
  • Mobile
    • Tools
    • Reverse iOS ipa
      • Jailbreak
      • Install Frida iPhone 5S
      • Frida instrumentation
      • Resources / Extra features
    • Reverse Android APKs
      • Android Dynamic Analysis
      • Bypass root + Frida
      • SSL unpining frida + Fiddler/Burp
      • Backdooring/patch APKs
    • Basic tips
    • Resources
  • IoT / Reverse / Firmware
    • Basic tips
      • Repair NTFS dirty disks
    • Reverse IoT devices
      • Reverse TP-Link Router TL-WR841N
      • Reverse Trendnet TS-S402 firmware
      • Full emulate Netgear WNAP320
      • Reverse ASUS RT-AC5300
      • Reverse LinkOne devices
    • Tools
      • Qemu + buildroot 101
      • Kernel
    • Resources
Powered by GitBook
On this page
  • Download APK CLI
  • Nuclei templates mobile

Was this helpful?

  1. Mobile

Tools

PreviousFirewall raw LogsNextReverse iOS ipa

Last updated 2 years ago

Was this helpful?

: Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, XAPK, IPA & APPX) along with zipped source code and provides REST APIs for seamless integration with your CI/CD or DevSecOps pipeline.The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.

is a free user-friendly vulnerability scanner for Android APK and API thatโ€™s exclusively designed and developed to identify APK and API level vulnerabilities. It includes API vulnerability scan module (both integrated and standalone API), APK vulnerability scan module and report section module.

IPA decrypy: passionfruit or using class-dump-dyndl.

## mobexler VM ##
npm_config_user=root npm install -g passionfruit
passionfruit
adb shell "su -c '/data/local/tmp/frida-server-14.2.18-android-arm &'" 
rms

Download APK CLI

Nuclei templates mobile

java -jar .\apktool.jar d -s 'xxx.com.apk' -o output
echo "/home/kali/Desktop/output" | /home/kali/go/bin/nuclei -t Keys

: Tool to look for several security-related Android application vulnerabilities.

: The new bridge between Burp Suite and Frida!

qark
Brida
Mobile-Security-Framework-MobSF
Yaazhini
LogoGitHub - skylot/jadx: Dex to Java decompilerGitHub
LogoJava decompiler online / APK decompiler - Decompiler.com
LogoDrozer TutorialHackTricks
LogoMobexler - Mobile Application Penetration Testing Platform
LogoVirtual devices with real-world accuracyCorellium
LogoYaazhini - Free Android APK & API Vulnerability Scanner | Vegabird
LogoGitHub - ChiChou/grapefruit: (WIP) Runtime Application Instruments for iOS. Previously PassionfruitGitHub
LogoGitHub - ChiChou/grapefruit: (WIP) Runtime Application Instruments for iOS. Previously PassionfruitGitHub
Insecure iOS Storage - DVIAv2 Part 1Offensive Research
LogoReleases ยท m0bilesecurity/RMS-Runtime-Mobile-SecurityGitHub
LogoGitHub - Konloch/bytecode-viewer: A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)GitHub
LogoGitHub - FSecureLABS/drozer: The Leading Security Assessment Framework for Android.GitHub
LogoGitHub - federicodotta/Brida: The new bridge between Burp Suite and Frida!GitHub
LogoGitHub - GoSecure/frida-xamarin-unpin: A Frida script to bypass Xamarin certificate pinning implementationsGitHub
LogoGitHub - optiv/mobile-nuclei-templatesGitHub
LogoGitHub - EFForg/apkeepGitHub