Offensive Security Tool: Mobile Security Framework (MobSF)

by | Jun 16, 2022 | Tools

Premium Content

Patreon

Subscribe to Patreon to watch this episode.

Reading Time: 4 Minutes

GitHub Link

 

Mobile Security Framework (MobSF)

Performing Pentesting on Mobile Application by the Red Team means you are dealing with either APK (Android), IPA (IOS), or EXE (Windows), you need to have a vast knowledge of how you can perform not only automated tests and attacks but also Dynamic, which requires a special setup and specific tools, with special knowledge on how you can look under the hood within the source code itself, trying to find various range of vulnerabilities.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. MobSF supports mobile app binaries (APK, XAPK, IPA & APPX) along with zipped source code and provides REST APIs for seamless integration with your CI/CD or DevSecOps pipeline. The Dynamic Analyzer helps you to perform runtime security assessment and interactive instrumented testing.

 

See Also: OSINT Tool: Metabigor

 

Documentation

 

 

Static Analysis – Android

Static Analysis - Android

 

Static Analysis – Android Source Tree-view

Static Analysis - Android Source Tree-view

 

 

 

Static Analysis – iOS

Static Analysis - iOS

 

Dynamic Analysis – Android APK

Dynamic Analysis - Android APK

 

Web API Viewer

Web API Viewer

 

See Also: The Difference between Vulnerability Assessment and Pentesting

Merch

Recent Articles

Offensive Security & Ethical Hacking Course

Begin the learning curve of hacking now!


Information Security Solutions

Find out how Pentesting Services can help you.


Join our Community

Share This