You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 4-6.RSVP
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

api-security-tester

Package Overview
Dependencies
Maintainers
1
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

api-security-tester

A machine learning based mobile app security testing framework

0.2.0
pipPyPI
Maintainers
1

API Security Tester

A machine learning-based framework for testing and assessing mobile application security vulnerabilities.

Features

  • Vulnerability detection using machine learning
  • Security risk assessment
  • Detailed security reports generation
  • Advanced metrics calculation (ROC-AUC, PR-AUC)
  • Support for multiple security features analysis

Installation

pip install api-security-tester

Quick Start

from api_security_tester import MobileAppSecurityFramework

# Initialize the framework
framework = MobileAppSecurityFramework()

# Example security features to analyze
app_features = {
    'storage_encryption_level': 0.8,
    'api_security_score': 0.7,
    'data_transmission_security': 0.9,
    'authentication_strength': 0.8,
    'input_validation_score': 0.7,
    'network_communication_security': 0.8,
    'third_party_library_risk': 0.2,
    'runtime_permissions_management': 0.7,
    'code_obfuscation_level': 0.6,
    'certificate_pinning_implementation': 0.8
}

# Detect vulnerabilities
results = framework.detect_vulnerabilities(app_features)

# Generate security report
report = framework.generate_security_report(results)
print(report)

Security Features

The framework analyzes the following security aspects:

  • Storage Encryption Level
  • API Security
  • Data Transmission Security
  • Authentication Strength
  • Input Validation
  • Network Communication Security
  • Third-party Library Risk
  • Runtime Permissions Management
  • Code Obfuscation
  • Certificate Pinning

Advanced Usage

Training Custom Models

# Generate and train with custom dataset
framework.generate_dataset(n_samples=1000)
framework.load_dataset('mobile_app_vulnerabilities.csv')
framework.build_ml_model()
framework.train_model()

# Save trained model
framework.save_model('custom_model.h5')

Calculating Advanced Metrics

# Get model performance metrics
metrics = framework.calculate_advanced_metrics()
print(f"ROC-AUC Score: {metrics['roc_auc']}")
print(f"PR-AUC Score: {metrics['pr_auc']}")

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

This project is licensed under the MIT License - see the LICENSE file for details.

Support

For support, please open an issue in the GitHub repository or contact contact@ashinno.com

FAQs

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Active Supply Chain Attack: npm Phishing Campaign Leads to Prettier Tooling Packages Compromise

Security News

Active Supply Chain Attack: npm Phishing Campaign Leads to Prettier Tooling Packages Compromise

Popular npm packages like eslint-config-prettier were compromised after a phishing attack stole a maintainer’s token, spreading malicious updates.

By Sarah Gooding  -  Jul 19, 2025
npm Phishing Email Targets Developers with Typosquatted Domain

Security News

/

Research

npm Phishing Email Targets Developers with Typosquatted Domain

A phishing attack targeted developers using a typosquatted npm domain (npnjs.com) to steal credentials via fake login pages - watch out for similar scams.

By Sarah Gooding  -  Jul 18, 2025