cyber-security-resources/mobile_security/README.md

# Mobile Device Security
The following are several of the resources covered in the Wireless Networks, IoT, and Mobile Devices Hacking (The Art of Hacking Series) LiveLessons.

## OWASP Resources

### OWASP Mobile Security Project
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Home

### OWASP Mobile Top 10:
* https://www.owasp.org/index.php/Mobile_Top_10_2016-Top_10
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=Top_10_Mobile_Risks

### OWASP Mobile Security Testing Guide:
* https://b-mueller.gitbooks.io/the-owasp-mobile-security-testing-guide/content

### OWASP Mobile Application Security Verification Standard (MASVS)
* https://www.owasp.org/images/6/61/MASVS_v0.9.4.pdf

## Android

### Android Research and Reverse Tools
* [Android Developer Studio](http://developer.android.com/sdk/index.html)
* [APKtool](http://ibotpeaches.github.io/Apktool/)
* [dex2jar](https://github.com/pxb1988/dex2jar)
* [Bytecode Viewer](https://bytecodeviewer.com/)
* [IDA Pro](https://www.hex-rays.com/products/ida/index.shtml)


### Android Reverse Engineering Arsenals
* https://www.owasp.org/index.php/OWASP_Mobile_Security_Project#tab=M-Tools

### APK Tool
* http://ibotpeaches.github.io/Apktool/

### Dex2jar and JD-GUI
Dex2jar and JD-GUI are two different tools that are often used for reverse engineering Android apps. Dex2jar converts .dex files to .jar. JD-GUI is a Java decompiler that can decompile .jar files to the original Java source.
* http://sourceforge.net/projects/dex2jar/
* http://jd.benow.ca

## Apple iOS

### Damn Vulnerable iOS Application (DVIA)
* DVIA Home Page
  * http://damnvulnerableiosapp.com
* DVIA OWASP Project Page
  * https://www.owasp.org/index.php/OWASP_DVIA
* DVIA Github Source
  * https://github.com/prateek147/DVIA
* DVIA Learning Resources
  * http://damnvulnerableiosapp.com/#learn