🌐MAPT References

• Mobile Application Penetration Testing - TCM

• OWASP MASTG (Mobile Application Security Testing Guide)

• OWASP Mobile Top 10

• HackTricks - Android APK Checklist

• HackTricks - iOS Pentesting Checklist

• Course and FAQs - Discord

• awesome-mobile-security

Introduction

Certifications

• INE eMAPT

• GIAC Mobile Device Security Analyst (GMOB)

Mobile App Pentesting

• OWASP MASTG

Lab Set Up

• VMware Workstation Player

• VirtualBox + VirtualBox Extension Pack

• Kali Linux

  • Kali VM Installation - VMware - syselement

  • pimpmykali

Android

• Android Application Security

• Android Platform Overview - MASTG

• Chmod Calculator

• Android API Levels

• Kotlin

  • Kotlin - JetBrains

• Android Build Process

  • Deep dive into Android build process - Abhishek Kumar

  • Application Signing

• apktool

• jadx

• Android Studio

• Genymotion

Android Static Analysis

• InjuredAndroid

• AndroidManifest.xml

  • Permissions

• apktool

• jadx-gui

• CyberChef

• Mobile-Security-Framework-MobSF

Android Dynamic Analysis

• Bypassing Certificate Pinning

  • SSL Bypassing - Neelam Soni

  • SSL Pinning and Vulnerabilities Handling in Android - Sachin Rajput

• BurpSuite

• Proxyman (macOS)

• mitmproxy

• Apktool

• Frida

  • Frida CodeShare

• Objection

  • Patching Android Applications - Objection

  • Patching an APK with Objection – CorSecure

  • patch-apk

• pidcat

Android Bug Bounty & Red Teaming

• HackerOne Android programs

• O.MG Cable - Hak5

• USB Ninja Cable - Hacker Warehouse

• Manual - Embedding Meterpreter in Android APK - Black Hills Information Security

• Ghost Framework

  • Protect Your Phone From Hackers Now! Watch How Hackers Remotely Access A Phone! - Loi Liang Yang

iOS

• iOS Custom Firmware Guide

• AppleDB - Software & Devices

• Apple Platform Security

• iOS Platform Overview - MASTG

• Apple Developer Program

• Xcode

• IPATool

• Corellium Virtual Hardware

• Appetize.io

iOS Dynamic Analysis

• Proxyman for iOS

• Atlantis for iOS

• SecJuice Intro to Frida & Objection

  • iOS Pentesting Tools Part 3: Frida and Objection

• iOS CFW Guide