The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics and checklist, which is mapped OWASP Mobile Risk Top 10 for conducting pentest. Mobile Application Security Testing Distributions All-in-one Mobile Security Frameworks Android Application Penetration Testing Reverse Engineering and Static Analysis Dynamic and Runtime Analysis Network Analysis and Server Side Testing Bypassing Root Detection and SSL Pinning Security Libraries iOS Application Penetration Testing Access Filesystem on iDevice Reverse Engineering and Static Analysis Dynamic and Runtime Analysis Network Analysis and Server Side Testing Bypassing Root Detection and SSL Pinning Security Libraries Mobile Penetration Testing Lab Contribution License Mobile Application Security Testing Distributions Appie - A portable software package for Android Pentesting and an awesome alternative to existing Virtual machines. Android Tamer - Android Tamer is a Virtual / Live Platform for Android Security professionals. Androl4b - A Virtual Machine For Assessing Android application
FEATURES
SIMILAR TOOLS
A comprehensive guide to network security monitoring, teaching readers how to detect and respond to intrusions using open source software and vendor-neutral tools.
A condensed field guide for cyber security incident responders, covering incident response processes, attacker tactics, and practical techniques for handling incidents.
Comprehensive endpoint protection platform providing unified visibility and security for cloud workloads, endpoints, and containers.
A practical guide to enhancing digital investigations with cutting-edge memory forensics techniques, covering fundamental concepts, tools, and techniques for memory forensics.
A comprehensive guide to incident response, providing effective techniques for responding to advanced attacks against local and remote network resources.
A comprehensive reference guide covering Nessus vulnerability scanner configuration, management, API usage, and best practices.
A comprehensive reference guide providing practical examples and commands for using Hashcat to crack various types of password hashes.
A comprehensive guide to understanding and responding to modern ransomware attacks, covering incident response, cyber threat intelligence, and forensic analysis.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.