Ajin Abraham
Ajin Abraham
Lot of places have open file pointers like https://github.com/torque59/Nosql-Exploitation-Framework/blob/master/dbattacks/utils.py#L116 close all the file pointers after use. This will save memory. Also replace open with `io.open` which is unicode safe. using`with`...
I should port pattern matcher kotlin rules to semgrep.
Add a Security Section and an example
Is there some way i can add SSL pinning support to volley(http://developer.android.com/training/volley/index.html).
``` var serialize = require('node-serialize'); var x = '{"rce":"_$$ND_FUNC$$_function (){console.log(\'exploited\')}()"}' serialize.unserialize(x); ``` I don't know if this is a functionality as you are using `eval()` internally, but the module should...
APKiD currently supports APK and DEX files. Can the support be also extended to AAR/JAR. I tried converting AAR/JAR to DEX and scanning with APKiD, but the binary features are...
can this kind of detection be supported? The WebViewActivity defines an intent filter that uses the deep link insecureshop://com.insecureshop https://z4ki.medium.com/android-deep-links-exploitation-4abade4d45b4 _Originally posted by @ohyeah521 in https://github.com/MobSF/Mobile-Security-Framework-MobSF/pull/2322#discussion_r1448895013_
https://github.com/MobSF/Mobile-Security-Framework-MobSF/issues/2195 ``` Hi, recently I work on a collection of Semgrep rules to cover the static tests described by the OWASP MASTG. This is the official repo: https://github.com/mindedsecurity/semgrep-rules-android-security Why not...
### Describe the Pull Request ``` DESCRIBE THE DETAILS OF PULL REQUEST HERE ``` ### Checklist for PR - [ ] Run MobSF unit tests and lint `tox -e lint,test`...
I realize this is an old (and closed) issue, but recently, I found something that could help. There is an updated list of malware domains that can be found here:...