Mobile App Security Tools
Mobile application security tools for protecting iOS and Android applications from reverse engineering, tampering, and runtime attacks.
Browse 115 mobile app security tools
FEATURED
USE CASES
drozer is an open source Android security testing framework that identifies vulnerabilities in mobile apps and devices through Android Runtime and IPC endpoint interaction.
Mobile Audit is a Docker-based SAST and malware analysis tool that performs comprehensive security analysis of Android APK files, including vulnerability detection, certificate verification, and Virus Total integration.
Androwarn performs static analysis of Android applications using Dalvik bytecode examination to detect and report potentially malicious behaviors.
Runtime Mobile Security (RMS) is a powerful web interface powered by FRIDA for manipulating Android and iOS Apps at Runtime.
One stop shop for decompiling Android apps with a focus on regenerating R references.
DVHMA is an intentionally vulnerable Android hybrid mobile app built with Apache Cordova for security testing and educational purposes.
QARK is a static analysis tool that scans Android applications for security vulnerabilities and can generate proof-of-concept exploits for discovered issues.
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
CuckooDroid extends Cuckoo Sandbox to provide automated dynamic analysis of Android applications in a controlled sandbox environment.
A tool for translating Dalvik bytecode to Java bytecode for analyzing Android applications.
A Python tool for patching Dalvik bytecode in DEX files and assisting in Android application analysis
A standalone binary inspection tool for Android developers with support for various formats and dependencies.
A lightweight library for device identification and fingerprinting, written in Kotlin and 100% crash-free.
An unofficial Python API that enables programmatic searching, browsing, and downloading of Android apps from Google Play Store.
A command-line tool for downloading Android APK files from the Appland platform via npm installation.
Docker file for building Androguard dependencies with an optional interactive shell environment.
ELFcrypt encrypts ELF binaries with obfuscation and anti-debugging features to protect against reverse engineering.
AppMon is a Frida-based automated framework for monitoring and tampering with system API calls across macOS, iOS, and Android applications.
CFGScanDroid is a Java utility that compares control flow graph signatures to Android method control flow graphs for malicious application detection.
idb is a tool that simplifies iOS penetration testing and security research tasks, available in both command line and GUI versions.
OpenRASP is a runtime application self-protection solution that integrates into application servers to monitor and block threats in real-time using context-aware instrumentation.
Python wrapper for Android APK decompilation with various converter and decompiler options.
Mobile App Security Tools FAQ
Common questions about Mobile App Security tools, selection guides, pricing, and comparisons.
Mobile app protection includes code obfuscation to make decompilation harder, root/jailbreak detection to identify compromised devices, tamper detection to prevent app modification, certificate pinning to block MITM attacks, and runtime application self-protection (RASP) to detect and respond to attacks in real-time. These protections are especially important for apps handling financial transactions or sensitive data.
