Mobile Security Framework (MobSF)

The Mobile Security Framework (MobSF) is an intelligent, automated, open source application for all applications on mobile ( / iOS / Windows), capable of performing static and dynamic analysis.

It can be used for efficient and fast analysis of applications , iOS και Windows Mobile και υποστηρίζει και τα δυαδικά αρχεία (APK, IPA & APPX) και τον πηγαίο κώδικα των εφαρμογών.

MobSF can also perform web API security testing with API Fuzzer which can do information gathering, header parsing , identifying specific mobile API vulnerabilities such as XXE, SSRF, Path Traversal, IDOR and other issues related to Session and API Rate Limiting.

Application snapshots

Static Analysis - Android APK

Static Analysis - iOS IPA

Static Analysis - Windows APPX

Dynamic Analysis - Android APK

Web API Fuzzer

Specifications

  • iOS Swift Source Code
  • Improved iOS Swift and Objective C rules
  • OWASP MASVS / MSTG support
  • Supports new PDF Reports
  • Improved SAST Core
  • Improved iOS Application Transport Security Checks
  • Improved iOS Permission Checks
  • Add IP to Geolocation feature for Domain Malware Check
  • Export and IP from IPA files
  • App Risk Calculation by App Security Score
  • Improved Recent Scan View
  • Add Jtool2 support
  • Code QA
  • New Docs Site

Information on using and installing the program, you will find here.

 

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).