Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF support mobile app binaries (APK, IPA & APPX) along with zipped source code and provides REST APIs for seamless integration with your CI/CD or DevSecOps pipeline. The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.
Download current and previous versions of Apple's iOS, iPadOS, watchOS, tvOS and audioOS firmware and receive notifications when new firmwares are released.
connect iOS device and computer to the same WiFi network
run this command in a OSX terminal window: rvictl -s x where x is the UDID of your iOS device. You can find the UDID of your iOS device via iTunes (make sure you are using the UDID and not the serial number).
goto Wireshark Capture->Options, a dialog box appears, click on the line rvi0 then press the Start button.
Firebase is a development platform with more than 15 products, and one of them is Firebase Real-time Database. It can be leveraged by application developers to store and sync data with a NoSQL cloud-hosted database. The data is stored as JSON and is synchronized in real-time to every connected client and also remains available even when the application goes offline.
objection is a runtime mobile exploration toolkit, powered by Frida, built to help you assess the security posture of your mobile applications, without needing a jailbreak.
This repo is going to be archived. It's being rebuilt from the ground up, and a new project will be annonced once it's finished. It has a better organized architecture, and it should be much more stable and easier to contribute. There may be rebranding if I come up with something. Therefore, I'll stop accepting bug reports and feature requests here. Please join our Discord Channel to track updates.
Clutch is a high-speed iOS decryption tool. Clutch supports the iPhone, iPod Touch, and iPad as well as all iOS version, architecture types, and most binaries.
Clutch requires a jailbroken iOS device with version 8.0 or greater.
iFunbox is one of the best universal file management software for iPhone and other Apple products. Browse and manage files and directories on iPhone, iPad, iPod Touch on PC in a window similar to windows explorer, so that all types of Apple devices can share each other's resources, allowing you to easily upload or export movies, music, e-book , Desktop, photos, and applications. It can also turn your iPhone into a USB flash drive for easy file carrying. These functions can be easily implemented without jailbreak.
Core function 1: Full control of iPhone / iPad file system
Core function 2: One-stop App installation and backup
Core Function 3: Fast universal file access
Core Function 4: No jailbreak access to application sandbox
Core function 5: Wallpaper function
Core function 6: Export music and videos from iPhone / iPod
iExplorer is the ultimate iPhone manager. It transfers music, messages, photos, files and everything else from any iPhone, iPod, iPad or iTunes backup to any Mac or PC computer. It's lightweight, quick to install, free to try, and up to 70x faster and more resource efficient than the competition.
Direct download APK file and install the app manually onto your Android devices.
How does Online APK Downloader Work? Google Play Store app works by using a protocol called protobuf API (protocol buffers), and the Free Online APK Downloader uses the same API. It generates the direct download links and downloads APK file (Android App Bundle or APK & OBB file) directly from the Google servers without the need of Google account.
A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
Comparitech’s security research team led by Bob Diachenko examined 515,735 Android apps, which comprise about 18 percent of all apps on Google Play.
Of the 155,066 Firebase apps analyzed, 11,730 had publicly exposed databases. 9,014 of them even included write permissions
Of the 11,730 publicly exposed databases, 4,282 leaked user information. The rest were empty or contained no user information, but were still vulnerable to attack.
General
iOS
~/Library/Application Support/MobileSync/Backup/
\Users\(username)\AppData\Roaming\Apple Computer\MobileSync\Backup\
Android
Firebase
site:.firebaseio.com "COMPANY NAME HERE"
Unsorted