AndroBugs Framework is an Android vulnerability analysis system that helps developers or hackers find potential security vulnerabilities in Android applications. It offers efficient scanning (less than 2 minutes per scan on average) and high accuracy. Features include finding security vulnerabilities, checking for missing best practices, identifying dangerous shell commands, collecting information from millions of apps, and assessing app security protection. The tool is designed for Android developers or hackers on Windows and does not require the installation of Python 2.7 or any 3rd-party libraries.
FEATURES
SIMILAR TOOLS
Tools and documentation for validating hardware security requirements on x86 platforms, including bootable USB key creation and platform configuration verification.
iOS Reverse Engineering Toolkit for automating common tasks in iOS penetration testing.
A comprehensive collection of wordlists for bruteforcing and password cracking, covering various hashing algorithms and sizes.
A Graphical Realism Framework for Industrial Control Simulation organized as 5 VirtualBox VMs for realistic ICS network simulation.
Semi-tethered jailbreak for iPhone 5s to iPhone X, running iOS 12.0 and up, using the 'checkm8' bootrom exploit.
Web-based tool for browsing mobile applications sandbox and previewing SQLite databases.
A tool for quantitative risk analysis of Android applications using machine learning techniques.
An Active Defense framework for detecting and responding to phishing attacks in Office 365 Message Trace logs.
An open-source project for dynamic analysis of Android applications using the Android Substrate framework.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.