Android Pentesting with MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Requirements
Windows 10
- Install Git
- Install Python 3.7-3.9
- Install JDK 8+
- Install Microsoft Visual C++ Build Tools
- Install OpenSSL (non-light)
- Download & Install wkhtmltopdf as per the wiki instructions
- Add the folder that contains
wkhtmltopdfbinary to environment variable PATH.
Mac
- Install Git
- Install Python 3.7-3.9
- macOS Catalina users must uninstall existing python3 and install the one from Python.org. After installation, go to
/Applications/Python 3.7/and runUpdate Shell Profile.commandfirst and thenInstall Certificates.command - Install JDK 8+
- Install command line tools
xcode-select --install - Download & Install wkhtmltopdf as per the wiki instructions
sudo installer -pkg /Library/Developer/CommandLineTools/Packages/macOS_SDK_headers_for_macOS_10.14.pkg -target /
Linux
- Install Git
sudo apt-get install git - Install Python 3.7-3.9
sudo apt-get install python3.7 - Install JDK 8+
sudo apt-get install openjdk-8-jdk - Install the following dependencies
sudo apt install python3-dev
sudo apt install python3-dev python3-venv python3-pip build-essential libffi-dev libssl-dev libxml2-dev libxslt1-dev libjpeg8-dev zlib1g-dev wkhtmltopdf
Installation
Windows 10
git clone https://github.com/MobSF/Mobile-Security-Framework-MobSF.git
cd Mobile-Security-Framework-MobSF
setup.batMac/Linux
git clone https://github.com/MobSF/Mobile-Security-Framework-MobSF.git
cd Mobile-Security-Framework-MobSF
./setup.sh