OpenSecurity

🧪 iOS Pentesting: Step-by-step guide on "IPA Binary Analysis" using MobSF. Guide: inesmartins.github.io/mobsf-ipa-bina… #infosec #pentesting

Another DevSecOps Article🤖 Setup Mobsfscan in Azure DevOps pentestguy.com/setup-mobsfsca… #mobsfscan #azuredevops #devsecops

／ 今週の #セキュリティブログ🔐 ＼ 今回はモバイルアプリ用の #セキュリティ 診断プラットフォーム「#MobSF」での動的解析についてご紹介✨ #Android で入力した機密情報が内部ストレージに残ってしまう問題を検出できるか確認してみました💡ぜひご一読を❗ 詳細はこちら🔽 jpn.nec.com/cybersecurity/…

I will be releasing the brand new MobSF iOS Dynamic Analyzer powered by Frida and @CorelliumHQ at @BlackHatEvents Arsenal, London UK. Here is a sneak peak: youtu.be/i-pEascyxc8?si… Catch me live on Thursday, December 7 1.00 PM

Happy Monday! MobSF v3.7.6 is out! 🎉 * Now supports independent scanning of AAR, JAR, Static Libraries (.a) and Dynamic Libraries (.so, .dylib) * Improved String extraction for APKs And a lot more under the hood improvements. github.com/MobSF/Mobile-S…

Recently did a React/Next.js secure code review. Here is a checklist that will help you spot some common vulnerabilities. github.com/ajinabraham/We… #appsec #nextjs #reactjs #codereview

Analysis of Malicous APK using MobSF (Part 1) hacklido.com/blog/473-analy…

Capturing Mobile App Network Traffic with MobSF and Burp. MobSF takes care of * Proxy Root CA install * Generic SSL Pinning/Certificate Transparency bypass * Generic Root/Debugger check bypass See Docs: mobsf.github.io/docs/#/mobsf_d…

MobSF v3.6.9 is out! 🎉 The latest docker image now supports quick and easy Dynamic Analysis with Android Studio AVD, Genymotion, and Corellium Android VMs. See the updated docs: mobsf.github.io/docs/#/mobsf_d…

Optimize Android App Development With Docker, SonarQube, Detekt, and MobSF { by @paulknulst } from @hashnode hashnode.knulst.de/optimize-andro… #docker #devops #programming #SoftwareEngineer #developer #js #DataScience

Queremos anunciar a @TomasIsasia con su charla “MobSF: análisis estático de aplicaciones IOS en Windows” que nos presentará en #MorterueloCON2k23. #Hacking #Ciberseguridad #Cuenca

mobsfscan with @codemagicio blog.codemagic.io/mobsfscan-with…

Shoutout to the folks at @AlgoSecure for their generous donation towards the MobSF open source project 🎉 #HappyHolidays

LambdaSpy is a neat PoC, an MITM proxy style lambda extension to intercept/modify lambda events. The trick: Overwrite the environment variable in Rapid’s heap memory. clearvector.com/blog/lambda-sp… github.com/clearvector/la… Great work @clearvectorhq

／ 今週の #セキュリティブログ 🔐 ＼ #モバイルアプリケーション (Android/iOS/Windows)の解析ができるフレームワーク #MobSF (Mobile-Security-Framework) を用いたiOSアプリのセキュリティ診断をご紹介✨ 解析した結果、どんな問題が検出されるか❓ぜひご覧ください🔽 jpn.nec.com/cybersecurity/…

Oh, a #LOLbin again? 🙄 1. Set HV_SSH_COMMAND to your exe 2. Launch "hvc.exe ssh dummyparam" 3. Enjoy!

Just published an article that explains how to use #Docker to improve your #Android app #security and code quality by using @SonarQube, Detekt, and MobSF (@OpenSecurity_IN) combined in a software-quality-chain! knulst.de/optimize-andro… #opensource #programming #100DaysOfCode

MobSF v3.6.0 Released 🚀 False Positive Triaging support + new REST APIs just landed in. Feel free to play with our demo instance: mobsf.live #mobsf #MobileSecurity

Terminado la jornada en #RootedConValencia por todo lo alto con @tisasia y su charla “MobSF & IPA vs Windows” Agárrame la horchata!🥛@rootedcon

Testing security is crucial. 🛡 Let us walk you through the steps of setting up the #MobSF Scan tool on an #AWS EC2 machine with #Docker and Bitrise to be able to run your static analysis tests easily! ✅ blog.bitrise.io/post/run-your-…