m0bilesecurity/RMS-Runtime-Mobile-Security

Features

• Instrumentation & Hooking - Implements dynamic instrumentation and function hooking to intercept and modify application behavior in real-time.
• Runtime Class Modifications - Provides capabilities for modifying Java classes and method implementations at runtime to change application behavior.
• Mobile Reverse Engineering Tools - Analyzes system API calls and traces method execution to reverse engineer mobile application architecture.
• External Script Execution - Enables extending application behavior by executing external JavaScript scripts within a target process without recompilation.
• Runtime Script Injection - Allows the execution of custom JavaScript scripts within target mobile processes to add dynamic logic.
• Android Application Reverse Engineering - A comprehensive toolkit for reverse engineering and auditing Android applications using runtime hooking.
• Certificate Pinning Bypasses - Includes a specialized utility to disable certificate validation, allowing the interception and inspection of encrypted network traffic.
• Mobile Penetration Testing Frameworks - Provides a framework for identifying vulnerabilities and bypassing security protections like SSL pinning.
• Mobile Runtime Exploration Toolkits - Provides a toolkit for interacting with the memory, state, and runtime of mobile applications during active execution.
• Runtime Behavior Manipulators - Modifies Java classes and method behavior in active mobile processes to bypass security controls.
• Runtime Manipulation - Intercepts function calls and alters Java classes in real time to change how a mobile application executes.
• Bytecode Manipulation - Provides capabilities to modify compiled Java classes at runtime to bypass security checks and alter program flow.
• Dynamic Binary Instrumentation - Uses dynamic binary instrumentation to monitor and modify mobile application behavior at runtime.
• Runtime Method Tracing - Allows real-time interception and monitoring of method execution, including arguments and return values, within active processes.
• Runtime Function Hooking - Intercepts and modifies function calls within a running mobile application to analyze or alter behavior.
• Android Sandbox Explorers - Provides a web interface for browsing and managing files within the private data directories of installed apps.
• Remote Runtime Controllers - Provides a web-based interface to send control signals and manage the instrumentation engine remotely.
• Private Data Directory Mapping - Maps the internal protected filesystem of mobile applications to a readable structure for external browsing.
• System-Call Interception - Intercepts low-level system calls and native functions to observe and manipulate operating system interactions.
• Instrumentation Control Interfaces - Ships a web-based interface for controlling and manipulating mobile application runtimes via Frida.
• Penetration Testing Tools - Serves as a specialized tool for identifying and exploiting application vulnerabilities during security auditing.
• System Call Monitors - Tracks calls to specific system APIs and native functions to observe low-level operating system interactions.
• Mobile Security Frameworks - Web interface for runtime manipulation of mobile applications.
• Dynamic Analysis Tools - Web interface for manipulating Android apps at runtime.
• Mobile Security - Web interface for runtime manipulation of Android classes and methods.
• Security Analysis Frameworks - Web interface for runtime manipulation of mobile applications.

Star history