Skip to content

Releases: MobSF/Mobile-Security-Framework-MobSF

v2.0.0 Beta

22 Sep 01:38
@ajinabraham ajinabraham
v2.0.0
595c534
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.0 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

This release have database model changes and core framework changes.

  • Run setup.sh or setup.bat depending on your OS.
  • Migrate Database 
    python manage.py makemigrations
python manage.py makemigrations StaticAnalyzer
python manage.py migrate

v2.0.0 Beta Changelog

  • Features or Enhancements

    • Dynamic Analysis Support for Genymotion Android VMs 4.1 -9.0 x86
    • Improved Recent Scan
    • Replaced CapFuzz with HTTPtools
    • Automatic MobSFy with Xposed and Frida
    • Streaming logcat
    • Live API Monitor
    • Better SQlite DB View
    • Inbuilt Frida scripts for basic tasks
    • Custom Frida Script support
    • Frida Log Viewer
    • UI Changes
    • Browser PDF print support
    • Updated Tools
    • Baksmali performance improvements
    • Improved malware domain check
    • Multi OS Travis Support
    • Code QA

  • Bug Fixes

    • Typo Fix
    • Reduce False positives
Assets 2
Loading

v1.1.6 Beta

09 Aug 23:32
@ajinabraham ajinabraham
v1.1.6
b789a4c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1.6 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

This release have database model changes and core framework changes.

  • Run setup.sh or setup.bat depending on your OS.
  • Migrate Database 
    python manage.py makemigrations
python manage.py makemigrations StaticAnalyzer
python manage.py migrate

v1.1.6 Beta Changelog

  • Features or Enhancements

    • 70x performance improvements for large APKs
    • CVSS, CWE tagging with results
    • Trackers Detection
    • App Store/ Playstore Details of supported packages
    • Added Security Score, Average CVSS Score, VirusTotal & Tracker Detection
    • Coloured logging
    • Better Logging and Exception Handling
    • Travis CI/CD integration
    • Optimized & Updated Dockerfile
    • Super fast java decompiling with JADX
    • Large scale Code QA
    • Enforced mandatory code linting
    • Integrated automated travis tests in Linux and OSX
    • Moved to proper production servers Gunicorn & Waitress
    • Improved icon detection
    • Android APK app real name
    • Moved from Oracle JDK to OpenJDK
    • Reduce False Positives
    • Enforced Least privilege mode
    • Improved Setup scripts
    • Moved to androguard based certificate printing
    • File less local db updates for better cross platform support
    • Static Analyzer rule updates and accuracy improvement
    • REST API - Recent Scans
    • classdump support for iOS swift binaries
    • Updated dependencies
    • SonarCloud Integration

  • Bug Fixes

    • Fixed bug in Appx Analysis
    • Dynamic Analysis Bug Fix
    • Fix plist bug in iOS SCA
    • Performance Improvements
Assets 2
Loading

v1.0.3 Beta

19 Dec 19:20
@ajinabraham ajinabraham
v1.0.3Beta
e47dea7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.3 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

  • This release have database model changes. Read Updating MobSF
  • Run setup.sh or setup.bat

v1.0.3 Beta Changelog

  • Features or Enhancements

    • Android APK Scan Results Diffing Support
    • VirtualBox VM Headless mode
    • UI Changes
    • Improved Android icon analysis
    • CapFuzz for API Fuzzing
    • JSON Report REST API
    • Dependency Updates
    • Code QA and Refactoring
    • More unit tests
    • Update 3rd party tools
    • Improved APKiD Scans
    • Added Basic Environment Checks on first run
    • Docker support for PostgreSQL
    • Improved REST APIs
    • Android AVD 6 Support (Broken)
    • iOS IPA Analysis support in Linux
    • Improved Form Handling
    • REST API CORS Support
    • Improved Plist Parsing
    • Removed Faulty Binary Analysis
    • Improved Manifest Analysis
    • Updated Android Permission Mappings
    • New Setup and Run scripts for easy installation and usage
    • Updated Dockerfile
    • Multi Dex Support
    • Upstream Proxy Support
    • Improved String Extraction for Android

  • Bug Fixes

    • Fixed manifest view
    • Performance improvements
    • Find Java Bug fixes
    • Fixed APK String extraction
    • Fixed Regression Bug
    • Fixed Byte Bug
Assets 2
Loading

v0.9.5.5 Beta

17 Dec 14:07
@ajinabraham ajinabraham
v0.9.5.5
11d4640
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.9.5.5 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

  • This release have database model changes. Read Updating MobSF
  • Run pip install -r requirements.txt

v0.9.5.5 Beta Changelog

  • Features or Enhancements

    • Added support for VirusTotal API
    • Added APKtool for manifest extraction if AXMLPrinter2 fails
    • Updated dependencies
    • Improved android signer cert checks.
    • UI QA

  • Bug Fixes

    • Fixed icon extraction bug
    • Fixed icon bug in linux where Library is not loaded
    • Fixed AndroidManifest.xml parsing bug
    • Fixed broken Docker file
    • Fixed plist extraction bug on Linux
    • Fixed iOS Code review bug
    • Fixed Recent Scan bug in REST API
Assets 2
Loading

v0.9.5.4 Beta

29 Aug 09:22
@ajinabraham ajinabraham
v0.9.5.4
ba705c2
Compare
Choose a tag to compare
v0.9.5.4 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

  • This release have database model changes. Read Updating MobSF
  • Run pip install -r requirements.txt

v0.9.5.4 Beta Changelog

  • Features or Enhancements
    • REST API for MobSF and API Docs
    • Icon Extractor Android Static Analysis
    • Updating Libraries to latest
    • Malware Analysis Code refactoring
    • Updated ADB binaries
    • Code Refactoring Android Static Analysis
    • Android and iOS new static analysis rules added
  • Bug Fixes
    • iOS file analysis bug fix
    • iOS Classdump exception fix
    • Unicode Unzip fix
    • sqlitedb isinstance bug fix
    • Dockerfile error fix
    • Bug Fix in skip classes
    • Bug Fix in https traffic decryption due to tornado upgrade
    • iOS Binary analysis regex fix
    • Android binary analysis bug fix
Assets 2
Loading

v0.9.5.2 Beta

24 Apr 08:25
@ajinabraham ajinabraham
v0.9.5.2
d10e42a
This commit was signed with the committer’s verified signature.
ajinabraham Ajin Abraham
GPG key ID: 9D4C606A53B2D819
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.9.5.2 Beta

v0.9.5.2 Beta Changelog

  • Features or Enhancements

    • Supports Android ARM Emulator for Android Dynamic Analysis. Thanks to Matan Dobrushin - Documentation
    • Android Dynamic Analysis Code QA and Refactoring
    • Delete Scan Results from DB and related files under Recent Scan
    • Detects Apps Signed with SHA1-RSA
    • Added APKiD to MobSF Android APK Static Analysis
    • Python Dependency updates
    • Dockerfile updated
    • Added unit test for delete scan

  • Bug Fixes

    • Fixed Android Certificate Analyzer find match bug
    • Android Static Analyzer content provider rules bug fix
    • Windows Static Analyzer Bugfixes
    • Moved from buggy syntaxhighlighter to highlightjs
Assets 2
Loading

v0.9.4.2 Beta

01 Mar 07:12
@ajinabraham ajinabraham
v0.9.4.2
e76125c
Compare
Choose a tag to compare
v0.9.4.2 Beta

SECURITY RELEASE

  • Fixed a Security Bug that affects Windows Users.
Assets 2
Loading

v0.9.4.1 Beta

25 Feb 07:28
@ajinabraham ajinabraham
v0.9.4.1
04b942f
Compare
Choose a tag to compare
v0.9.4.1 Beta

v0.9.4.1 Beta Changelog

  • Features or Enhancements
    • Restructured iOS Code
  • Bug Fixes
    • USE_HOME Bug Fix (Major)
Assets 2
Loading

v0.9.4 Beta

22 Feb 13:48
@ajinabraham ajinabraham
v0.9.4
10c35a3
Compare
Choose a tag to compare
v0.9.4 Beta

IMPORTANT - IF YOU ARE UPDATING MOBSF

  • This release have database model changes. Read Updating MobSF
  • We are using a new and faster PDF generation library . Read PDF Report Generation
  • Run pip install -r requirements.txt

v0.9.4 Beta Changelog

  • Features or Enhancements
    • Android Binary/ELF Analysis and Resource Analysis
    • Android App Static Analysis: Tapjacking Detection
    • Android App Static Analysis: Better Exported Component Analysis
    • iOS App Static Analysis: Listing App Permissions
    • iOS App Static Analysis: ATS Check
    • Better and Faster PDF Generation
    • Updated Dependencies
    • Optimised DB Interactions
    • Unit Tests for Static Analyzer, PDF Report Generation
  • Bug Fixes
    • Windows App Static Analyzer Bug Fix
    • Fixed all PDF Related Bugs
    • Windows App Static Analyzer: BinScope Bug Fix
    • iOS App Static Analysis: Plist Bug Fix
Assets 2
Loading

v0.9.3.7 Beta

07 Dec 06:53
@ajinabraham ajinabraham
v0.9.3.7
18b37c0
Compare
Choose a tag to compare
v0.9.3.7 Beta
  • Major Unicode Bug Fix
  • Update Check Feature
  • Windows App Static Analysis Bug Fix on Setup script
Assets 2
Loading