MobSFBuildScanner integrates Selenium with the Mobile Security Framework (MobSF) for continuous static analysis of mobile builds.
Static Code Analysis for iOS/Android builds.
This tool is designed for developers and security professionals who need to perform static code analysis on iOS and Android applications. By automating the analysis process, it helps identify vulnerabilities in mobile builds efficiently.
Ensure Docker is installed and running before executing the installation commands.
Run the command: $ docker pull opensecurity/mobile-security-framework-mobsf
Run the command: $ docker run -it -p 8000:8000 opensecurity/mobile-security-framework-mobsf:latest
Alternatively, run: $ docker-compose up -d
Open your browser and navigate to http://localhost:8000/$ mvn clean test -Dtest=MobileStaticAnalysis -Durl="http://localhost:8000/" -Dpath="/Users/imostafa/Downloads/" -DbuildName="Security-Build.apk"
Runs mobile static analysis on an Android APK file.
$ mvn clean test -Dtest=MobileStaticAnalysis -Durl="http://localhost:8000/" -Dpath="/Users/imostafa/Downloads/" -DbuildName="Security-Build.ipa"
Runs mobile static analysis on an iOS IPA file.
$ gradle clean test -Durl="http://localhost:8000/" -Dpath="/Users/imostafa/Downloads/" -DbuildName="Security-Build.apk"
Runs mobile static analysis on an Android APK file using Gradle.
$ gradle clean test -Durl="http://localhost:8000/" -Dpath="/Users/imostafa/Downloads/" -DbuildName="Security-Build.ipa"
Runs mobile static analysis on an iOS IPA file using Gradle.