My primary goal with this repo is to define a comprehensive Android application penetration testing guide. This is an operational guide with the intention to assist you while performing a pentest.



I will provide what I've learned / will learn at work and share it here with you. To improve this guide, I would highly appreciate your help with everything you have successfully used in the wild and/or experienced so far at work.



Gitbook-Link



I followed this OWASP Mobile Security Testing Guide and tried to summarize it.



Download the aapg.txt here