MobSF

MobSF (Mobile Security Framework) is an open-source automated mobile application security testing platform that performs static analysis, dynamic analysis, malware analysis, and web API security testing for Android, iOS, and Windows mobile applications by analyzing APK, IPA, APPX binaries and source code to identify vulnerabilities, insecure code patterns, privacy issues, and compliance violations. The framework integrates seamlessly into DevSecOps and CI/CD pipelines through REST APIs and CLI tools to provide comprehensive security assessments with detailed vulnerability reports, runtime instrumented testing capabilities, network traffic analysis, and automated penetration testing features that enable development teams and security researchers to detect and remediate mobile security risks throughout the application lifecycle.