Skip to content

Releases: MobSF/Mobile-Security-Framework-MobSF

v0.9Beta

08 Mar 20:56
@ajinabraham ajinabraham
0.9
fffe738
Compare
Choose a tag to compare
v0.9Beta
  • Improved and Responsive UI
  • Search stored Static Analysis reports with APK MD5
  • Recent Scan View
  • Added Live Device/VM ScreenCast on Dynamic Analyzer view
  • Added Basic Touch event based Interaction with ScreenCast
  • Better Error Handling and Logging
  • Improved Web Proxy
  • Added a centralized log file for MobSF
  • A new UI component to show the count of vulnerable components of Android App
  • Tooltips explaining code nature
  • All new API Fuzzer that can do Information Gathering, detect Security Headers, identify vulnerabilities like XXE, SSRF, Path Traversal, IDOR, Rate Limit Checking and perform Session related logical checks.
    api tester
  • Update APKs and pushed them to VM
  • Updated and stable MobSF VM 0.2
  • Added rules to static analyzer
  • Added Custom VM and Android Device Support for MobSF Dynamic Analysis
  • MobSF VM can now bypass Anti-Emulator Checks
  • Support for Dynamically Installing and Removing MobSF RootCA
  • Bug Fixes
    • Fixed Java path finding issue in windows
    • Fixed Set-Cookie Handling issue of Web Proxy
    • Fixed some UI issues
    • Fixed a bug in finding VirtualBox path in Mac and Linux
Loading

v0.8.8.2 Beta

17 Sep 20:17
@ajinabraham ajinabraham
0.8.8.2
90756ef
Compare
Choose a tag to compare
v0.8.8.2 Beta
  • Fixed IPA mimetype issue
  • Realigned Documentation
  • VM Updated
Loading

v0.8.8.1 Beta

10 Sep 10:37
@ajinabraham ajinabraham
0.8.8.1
274b822
Compare
Choose a tag to compare
v0.8.8.1 Beta
  • New name: Mobile Security Framework (MobSF)
  • Added Dynamic Analysis
  • VM Available for Download
  • Fixed RCE
  • Fixed Broken Manifest File Parsing Logic
  • Sqlite DB Support
  • Fixed Reporting with new PDF report
  • Rescan Option
  • Detect Root Detection
  • Added Requiremnts.txt
  • Automated Java Path Detection
  • Improved Manifest and Code Analysis
  • Fixed Unzipping error for Unix.
  • Activity Tester Module
  • Exported Activity Tester Module
  • Device API Hooker with DroidMon
  • SSL Certificate Pinning Bypass with JustTrustMe
  • RootCloak to prevent root Detection
  • Data Pusher to Dump Application Data
  • pyWebproxy to decrypt SSL Traffic
Loading

v0.8.7 Beta

10 Jul 11:30
@ajinabraham ajinabraham
0.8.7
bb4b8aa
Compare
Choose a tag to compare
v0.8.7 Beta
  • Improved Static Analysis Rules
  • Better AndroidManifest View
  • Search in Files
Loading

v0.8.6 Beta

13 Jun 07:58
@ajinabraham ajinabraham
0.8.6
f636f44
Compare
Choose a tag to compare
v0.8.6 Beta
  • Detects implicitly exported component from manifest.
  • Added CFR decompiler support
  • Fixed Regex DoS on URL Regex
Loading

v0.8.5 Beta

19 May 07:06
@ajinabraham ajinabraham
0.8.5
42097ef
Compare
Choose a tag to compare
v0.8.5 Beta

Bug Fix to support IPA MIME Type: application/x-itunes-ipa

Loading

v0.8.4 Beta

16 May 14:21
@ajinabraham ajinabraham
0.8.4
47b08a3
Compare
Choose a tag to compare
v0.8.4 Beta
  • Improved Android Static Code Analysis speed (2X performance)
  • Static Code analysis on Dexguard protected APK.
  • Fixed a Security Issue - Email Regex DoS.
  • Added Logging Code.
  • All Browser Support.
  • MIME Type Bug fix to Support IE.
  • Fixed Progress Bar.
Loading

v0.8.3 Beta

02 May 19:28
@ajinabraham ajinabraham
0.8.3
abc6929
Compare
Choose a tag to compare
v0.8.3 Beta
  • View AndroidManifest.xml & Info.plist
  • Supports iOS Binary (IPA)
  • Bug Fix for Linux (Ubuntu), missing MIME Type Detection
  • Check for Hardcoded Certificates
  • Added Code to prevent from Directory Traversal
Loading