---

• GitHub: https://github.com/MobSF/Mobile-Security-Framework-MobSF
• Docs: https://mobsf.github.io/docs/ #public

All-in-one static/dynamic analysis for Android (APK/AAB) and iOS (IPA), with quick reports and useful findings.

#public

1. Start MobSF (Docker or local).
2. Open the web UI on http://localhost:8000.
3. Drag & drop an APK/IPA to run static analysis.
4. Review findings (permissions, hardcoded secrets, exported components, etc.).
5. Export the report for notes or client delivery.

• Docker (recommended):
  • Pull the official image per docs.
  • Run mapped to port 8000; persist data with a local volume.
• Local run (Python):
  • Clone repo → create venv → install requirements → run the server.

• Sign or repackage as needed for dynamic tests.
• Keep test samples and reports under version control (private).
• Sanitize reports before publishing anything publicly.

publish: true