Frida Script Collection
40+ Frida scripts for dynamic instrumentation of Android/iOS apps: bypass SSL pinning, root detection, biometric auth, encryption hooks.
Arsenal
Professional offensive security tools & exploit frameworks
120
Tools
12
Categories
iOS IPA Analyzer
Static analysis tool for iOS applications (.ipa): extracts binary, analyzes entitlements, searches for secrets, maps URLs and endpoints.
Mobile API Interceptor Proxy Config
Mobile traffic interception setup: CA cert installation, SSL pinning bypass, proxy routing for Android/iOS.
Android Malware Development Basics
Tutorial with source code for building a basic Android RAT: reverse shell, SMS interception, camera capture, location tracking, persistence.
SMS Phishing (Smishing) Toolkit
Scripts for smishing campaigns: mass SMS sending via APIs, mobile-optimized landing pages, click tracking and credential capture.
Magisk Module for Pentest
Magisk module that installs pentesting tools on rooted Android: tcpdump, nmap, frida-server, busybox, proxychains.
Mobile App SSL Pinning Bypass Guide
Exhaustive guide with 12 SSL pinning bypass techniques for Android and iOS: Frida, Objection, Xposed, manual patching, network-level.
Android Intent Fuzzer
Tool for fuzzing exported Android components: Activities, Services, BroadcastReceivers, ContentProviders. Detects crashes and data leaks.
Mobile Forensics Data Extractor
Scripts for forensic data extraction from rooted Android devices: messages, contacts, photos, browsing history, installed apps.
Buffer Overflow Lab — Stack Smashing 101
Hands-on lab with 10 progressive vulnerable binaries: from basic stack overflow to ret2libc. Includes detailed writeups.
Active Directory Attack Path Lab
Virtualized environment with 5 Windows machines + DC for practicing AD attacks: Kerberoasting, AS-REP roasting, DCSync, Golden Ticket.
Web Application Hacking Challenges Pack
25 progressive web challenges: SQLi, XSS, SSTI, SSRF, deserialization, auth bypass. Each with Docker app + writeup.