#Android-security

Showing 47 of 47 repositories tagged #android-security, ranked by stars

MobSF
MobSF
Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Score
100
★ 21.4k ⑂ 3.7k +52/day
JavaScript
dwisiswant0
dwisiswant0
apkleaks

Scanning APK file for URIs, endpoints & secrets.

Score
33
★ 6.1k ⑂ 580 +21/day
Python
urbanadventurer
urbanadventurer
Android-PIN-Bruteforce

Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

Score
78
★ 4.7k ⑂ 833 +6/day
Shell
vaib25vicky
vaib25vicky
awesome-mobile-security

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Score
67
★ 3.5k ⑂ 376
DERE-ad2001
DERE-ad2001
Frida-Labs

The repo contains a series of challenges for learning Frida for Android Exploitation.

Score
97
★ 1.3k ⑂ 179 +2/day
reversenseorg
reversenseorg
dexcalibur

[Official] Android reverse engineering tool focused on dynamic instrumentation automation leveraging Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.

Score
100
★ 1.2k ⑂ 129 +1.2k/day
JavaScript
d78ui98
d78ui98
APKDeepLens

Android security insights in full spectrum.

Score
67
★ 991 ⑂ 131 +2/day
Python
dedsec1121fk
dedsec1121fk
DedSec

Official DedSec Project GitHub Repository

Score
100
★ 973 ⑂ 493 +1/day
Python
Cyber-Buddy
Cyber-Buddy
APKHunt

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Score
0
★ 968 ⑂ 102
Go
n0mi1k
n0mi1k
apk2url

An OSINT tool to quickly extract IP and URL endpoints from APKs by disassembling and decompiling

Score
33
★ 858 ⑂ 99 +3/day
Shell
suifei
suifei
fridare

强大的 Frida 重打包工具,用于 iOS 和 Android。轻松修改 Frida 特征,增强隐蔽性,绕过检测。简化逆向工程和安全测试。Powerful Frida repackaging tool for iOS and Android. Easily modify Frida servers to enhance stealth and bypass detection. Streamlines reverse engineering and security testing.

Score
100
★ 802 ⑂ 128
Go
Ralireza
Ralireza
Android-Security-Teryaagh

Android security guides, roadmap, docs, courses, write-ups, and teryaagh.

Score
89
★ 795 ⑂ 127
B3nac
B3nac
InjuredAndroid

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Score
44
★ 755 ⑂ 163
Kotlin
rewanthtammana
rewanthtammana
Damn-Vulnerable-Bank

Damn Vulnerable Bank is designed to be an intentionally vulnerable android application. This provides an interface to assess your android application security hacking skills.

Score
56
★ 752 ⑂ 238
Java
cryptwareapps
cryptwareapps
Malware-Database

A large repository of malware samples with 2500+ malware samples & source codes for a variety of platforms by Cryptware Apps.

Score
90
★ 594 ⑂ 131 +4/day
Assembly
insidersec
insidersec
insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Score
11
★ 552 ⑂ 80
Go
abhi-r3v0
abhi-r3v0
Adhrit

Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.

Score
66
★ 543 ⑂ 119
JavaScript
ImKKingshuk
ImKKingshuk
LockKnife

LockKnife: The Ultimate Android Security Research Tool. A unified TUI workspace and headless CLI for deep Android security research, built for researchers and hackers. Powered by Python orchestration and a Rust-accelerated core, enabling AI agent–driven hacking, credential recovery/cracking, APK analysis, intelligence gathering, runtime inspection.

Score
93
★ 507 ⑂ 108 +1/day
Python
feicong
feicong
sec_skills

软件安全工程师技能表

Score
62
★ 478 ⑂ 91
NullPounce
NullPounce
pounce-keys

PounceKey's is a Accessibility Service keylogger

Score
86
★ 388 ⑂ 65
C
z3n70
z3n70
Frida-Script-Runner

Web-based Frida framework and toolkit for Android & iOS penetration testing, mobile security, and dynamic analysis, featuring AI-assisted Frida script generation.

Score
83
★ 371 ⑂ 75 +2/day
JavaScript
mpast
mpast
mobileAudit

Django application that performs SAST and Malware Analysis for Android APKs

Score
79
★ 228 ⑂ 50
HTML
abhi-r3v0
abhi-r3v0
EVABS

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

Score
0
★ 224 ⑂ 44
CMake
MalwareSamples
MalwareSamples
Android-Malware-Samples

Android Malware Samples

Score
17
★ 121 ⑂ 16 +1/day
sterrasec
sterrasec
apkutil

a useful utility for android app security testing

Score
0
★ 100 ⑂ 17
Python
hojjatsajjadinia
hojjatsajjadinia
AndRoPass

Tool to check the strength of Android root and emulator detection

Score
10
★ 98 ⑂ 16
Python
HanSoBored
HanSoBored
Zygisk-Loader

A dynamic, Zygisk module for hot-swapping native libraries into Android applications without rebooting.

Score
0
★ 84 ⑂ 15
C
RedMadRobot
RedMadRobot
PINkman

PINkman is a library to help implementing an authentication by a PIN code in a secure manner. The library derives hash from the user's PIN using Argon2 function and stores it in an encrypted file. The file is encrypted with the AES-256 algorithm in the GCM mode and keys are stored in the AndroidKeystore.

Score
22
★ 83 ⑂ 11
Kotlin
3ls3if
3ls3if
Cybersecurity-Notes

Cybersecurity Notes For Intermediate and Advanced Hackers | CEH Exam Prep Also Included

Score
72
★ 83 ⑂ 27
0xSHAK1B
0xSHAK1B
TIKTOK-SSL-Pinning-Bypass

Bypass TikTok SSL/TLS certificate pinning on Android to intercept & analyze HTTPS traffic — root & no-root, works with Burp Suite, mitmproxy & Reqable (2026).

Score
76
★ 78 ⑂ 8 +1/day
JavaScript
duckniii
duckniii
SeekPrivacy

An Activist Grade Privacy & Security App that provides multi-layered defense by isolating data within encrypted sandbox, inaccessible to other apps, the OS, or unauthorized physical extraction - With the Belief "Privacy Without the Tradeoff of Ease"

Score
69
★ 75 ⑂ 3 +4/day
Kotlin
arceuzvx
arceuzvx
Cybersecurity_resources

A comprehensive collection of free cybersecurity eBooks categorized by topics and updated regularly

Score
59
★ 70 ⑂ 9 +2/day
TheQmaks
TheQmaks
soSaver

A Frida-based utility for dynamically extracting native (.so) libraries from Android applications.

Score
48
★ 62 ⑂ 9
Python
0u44
0u44
NFCman

A Universal Android NFC research and analysis toolkit. Made for Android security researchers and developers. Clone, analyze, and test contactless cards including MIFARE, NTAG, and ISO14443 protocols. Features card data extraction, analysis tools, and emulation capabilities for penetration testing and research.

Score
55
★ 62 ⑂ 17 +3/day
Shell
TheQmaks
TheQmaks
areclaw

Android Reverse Engineering Command-Line Automation Workspace. AI-driven security analysis with Claude Code.

Score
52
★ 58 ⑂ 7 +1/day
JavaScript
alby77689-design
alby77689-design
Wuzen-Framework---Advanced-Mobile-Security-Research-Platform

Advanced mobile security research platform for authorized testing and educational purposes

Score
38
★ 48 ⑂ 23
OWASP
OWASP
mas-crackmes

The MAS Crackmes aka. UnCrackable Apps, a collection of mobile reverse engineering challenges part of the OWASP MAS project.

Score
7
★ 31 ⑂ 14
C
beenuar
beenuar
shieldapp-android

All-in-one Android security suite — deepfake detection, antivirus, Tor VPN, breach monitoring, phishing scanner, and 50+ security tools. On-device, no API keys, open source.

Score
45
★ 31 ⑂ 4
Kotlin
Qtty
Qtty
jadx-mcp-server

A Pure-Java MCP Server for JaDX Android Reverse Engineering Tool

Score
3
★ 29 ⑂ 5 +2/day
Java
GH0ST3CH
GH0ST3CH
BLE-Hound

An Android app that actively scans and identifies nearby BLE devices like trackers (AirTags, Tiles, etc.), gadgets (Ray-Ban glasses, Flipper Zeros, etc.), drones, and more in real time. Focused on customizable environmental awareness and BLE research. Now features offensive bluetooth spam attacks!

Score
41
★ 28 ⑂ 4
Kotlin
safebuffer
safebuffer
remote-adb-scan

pure python remote adb scanner + nmap scan module

Score
0
★ 23 ⑂ 13
Lua
dhakal-bibek
dhakal-bibek
DedupeAI

Burp Suite extension + port-based highlighter: dedupes HTTP history into a live unique-request feed and color-codes attacker/victim traffic by listener port (PwnFox-style) — built for Android/iOS multi-account IDOR/BOLA testing, with Magic Cookie, Match & Replace, and .http export for Claude Code / AI.

Score
34
★ 18 ⑂ 3 +2/day
Java
transitive-champaign778
transitive-champaign778
ApkClaw

Automate Android devices with an LLM agent that takes natural language commands from messaging apps and runs device tasks autonomously

Score
28
★ 13 ⑂ 2
Kotlin
hanhanhanz
hanhanhanz
cyber-security-sources

List of resources about CyberSecurity such as CTF, DFIR, Offsec, etc

Score
14
★ 12 ⑂ 2 +1/day
dodal-omkar
dodal-omkar
no-exit-please_Frida_Script_Android

A universal Frida Script that prevents application self-termination at Java and native layers on Android.

Score
24
★ 10 ⑂ 4
JavaScript
0xSHAK1B
0xSHAK1B
Messenger-SSL-Pinning-Bypass

Bypass Facebook Messenger SSL/TLS certificate pinning on Android to intercept & analyze HTTPS traffic — root & no-root, works with Burp Suite & mitmproxy (2026).

Score
21
★ 10 ⑂ 3
Shell
HasnainDarkNet
HasnainDarkNet
AndroRAT12

Advanced Android Remote Administration Tool (RAT) for Educational Security Testing | Meterpreter Payload Generator | Play Protect Bypass | Stealth Mode | Full Device Control

Score
31
★ 10 ⑂ 8
Python
Related Topics
#android#mobile-security#reverse-engineering#security#penetration-testing#apk#security-tools#ios-security#malware-analysis#frida#pentesting#cybersecurity

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly