The Mobile Security Framework (MobSF) is an intelligent, automated, open source application for all applications on mobile computer (android / iOS / Windows), capable of performing static and dynamic analysis.
It can be used for efficient and fast analysis better safetyof applications Android, iOS και Windows Mobile και υποστηρίζει και τα δυαδικά αρχεία (APK, IPA & APPX) και τον πηγαίο κώδικα των εφαρμογών.
MobSF can also perform web API security testing with API Fuzzer which can do information gathering, header parsing security, identifying specific mobile API vulnerabilities such as XXE, SSRF, Path Traversal, IDOR and other issues related to Session and API Rate Limiting.
Application snapshots
Static Analysis - Android APK
Static Analysis - iOS IPA
Static Analysis - Windows APPX
Dynamic Analysis - Android APK
Web API Fuzzer
Specifications
- iOS Swift Source Code Support
- Improved iOS Swift and Objective C rules
- OWASP MASVS / MSTG support
- Supports new PDF Reports
- Improved SAST Core
- Improved iOS Application Transport Security Checks
- Improved iOS Permission Checks
- Add IP to Geolocation feature for Domain Malware Check
- Export url and IP from IPA files
- App Risk Calculation by App Security Score
- Improved Recent Scan View
- Add Jtool2 support
- Code QA
- New Docs Site
Information on using and installing the program, you will find here.