Releases · Schmiemandev/dvfa

DVFA v1.0 - Initial Public Release (10 OWASP Challenges)

This is the initial stable release of the DVFA Security Laboratory. This project provides a specialized training environment for mobile security researchers, mapping 10 realistic vulnerabilities to the OWASP Mobile Top 10 and MASVS.

Key Features

Vulnerability Mapping: 10 challenges covering the spectrum from Insecure Local Storage to Advanced AOT Binary Analysis.
Integrated Mock Backend: Includes a Dockerized Python/Flask API to facilitate network interception and traffic analysis.
Technical Documentation: Includes a comprehensive SOLUTIONS.md covering technical analysis, exploitation procedures, and industry-standard remediation.
Architecture: Native ARM binaries compiled without obfuscation to support realistic reverse-engineering scenarios.

Technical Specifications

Build Target: Android (Release)
Target Architecture: arm64-v8a
File Size: 55.8MB
Obfuscation: Disabled

Integrity Verification

To ensure the integrity of the binary, verify the SHA-256 hash after downloading:

b7d3985f4bff6fa2d1c3d4fb97014ce9213a32d9045e21827d23cb3f833f49fc

Installation Note: Download the app-release.apk attached below. For the full "White-Box" experience, refer to the source code provided in this repository.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

DVFA v1.0 - Initial Public Release (10 OWASP Challenges)

Key Features

Technical Specifications

Integrity Verification

Uh oh!

Releases: Schmiemandev/dvfa

DVFA v1.0 - Initial Public Release (10 OWASP Challenges)

DVFA v1.0 - Initial Public Release (10 OWASP Challenges)

Key Features

Technical Specifications

Integrity Verification

Uh oh!