RAT - Dendroid

Obs. I am not responsible for his actions, all links found on the internet.


A botnet is a collection of Internet-connected programs communicating with other similar programs in order to perform tasks which can be controlled from anywhere by remotely accessing the panel of the server system. This can be as mundane as keeping control of an Internet Relay Chat (IRC) channel, or it could be used to send spam email or participate in distributed denial-of-service attacks and do other things like cypto currency mining and stealing informations. The term is usually used with a negative or malicious connotation.


This one “Dendroid” which is a botnet especially developed for attacking android user’s which has the functionalities like

Media volume up/down
Ringer volume up/down
Screen On
Which can turn on screen remotely
Record Calls
Block SMS
Record Audio
Take Video
Take Photo
Send Text
Send Contacts
Get user accounts

Which can get the user accounts that are being used in that mobile

Call Number
Delete Call Logs
Open Webpage
Update the app
Delete Files ( audio, video, pictures, calls )
Get Browser History
Get Browser Bookmarks
Get Call History
Open Dialog Box
Get Inbox SMS
HTTP flood

Download Dendroid

Read More

We Are Legion - The Story of the Hacktivists Documentary

A documentary on the workings and beliefs of the self-described "hacktivist" collective, Anonymous.

By OffensiveSec

Read More

TPB AFK - The Pirate Bay Away From Keyboard

An intellectual freedoms documentary based around the interpersonal triumphs, and defeats of the three main characters against the largest industry in the known universe. The media industry.

By OffensiveSec

Read More

DEFCON - The Full Documentary

A film about the world's largest hacking convention and its 20th year running. Filmed over the summer of 2012 and containing hundreds of hours of interviews, parties, presentations and spectacle.
Over 280 hours of footage was recorded in support of the documentary, and five separate camera crews were in action.

Directed by Jason Scott with camerawork by Eddie Codel, Alex Buie, Drew Wallner, Rick Dakan, Steve Fish, Kyle Way and Rachel Lovinger. 
Produced by Jeff Moss and Russ Rogers.

By OffensiveSec

Read More

Hacker Documentary - Hackers Are People Too

Hackers do laundry. Hackers like movies. Hackers are people and could be your neighbors, your brother, your friends. Presenting a portrait of the hacking community, created by the community themselves, this film breaks down negative stereotypes by letting hackers show you that they are really no different from anyone else. Delving into areas such as the way hackers think, what is hacking, hackers in the media, and women in the security/hacking field, this film will have you questioning your ideas about what a 'hacker' really is.

By OffensiveSec

Read More

Revolution OS - Documentary about the Linux System (legended in portuguese)

Synopsis

The film begins with glimpses of Raymond, a Linux IPO, Torvalds, the idea of Open Source, Perens, Stallman, then sets the historical stage in the early days of hackers and computer hobbyists when code was shared freely. It discusses how change came in 1978 as Bill Gates, in his Open Letter to Hobbyists, pointedly prodded hobbyists to pay up. Stallman relates his struggles with proprietary software vendors at the MIT Artificial Intelligence Lab, leading to his departure to focus on the development of free software, and the GNU project.

Torvalds describes the development of the Linux kernel, the GNU/Linux naming controversy, Linux's further evolution, and its commercialization.

Raymond and Stallman clarify the philosophy of free software versus communism and capitalism, as well as the development stages of Linux.

Michael Tiemann discusses meeting Stallman in 1987, getting an early version of Stallman's GCC, and founding Cygnus Solutions.

Larry Augustin describes combining GNU software with a normal PC to create a Unix-like workstation at one third the price and twice the power of a Sun workstation. He relates his early dealings with venture capitalists, the eventual capitalization and commodification of Linux for his own company, VA Linux, and its IPO.

Brian Behlendorf, one of the original developers of the Apache HTTP Server, explains that he started to exchange patches for the NCSA web server daemon with other developers, which led to the release of "a patchy" webserver, dubbed Apache.

Frank Hecker of Netscape discusses the events leading up to Netscape's executives releasing the source code for Netscape's browser, one of the signal events which made open source a force to be reckoned with by business executives, the mainstream media, and the public at large.[1] This point was validated further after the film's release as the Netscape source code eventually became the Firefox web browser, reclaiming a large percentage of market share from Microsoft's Internet Explorer.

The film also documents the scope of the first full-scale LinuxWorld Summit conference, with appearances by Linus Torvalds and Larry Augustin on the keynote stage.


Much of the footage for the film was shot in Silicon Valley.

By OffensiveSec

Read More

SimplyEmail - Email Recon Made Fast And Easy, With A Framework To Build On

What is the simple email recon tool? This tool was based off the work of theHarvester and kind of a port of the functionality. This was just an expansion of what was used to build theHarvester and will incorporate his work but allow users to easily build Modules for the Framework. Which I felt was desperately needed after building my first module for theHarvester.

Scrape EVERYTHING - Simply

Current Platforms Supported:

• Kali Linux 2.0
• Kali Linux 1.0

A few small benefits:

• Easy for you to write modules (All you need is 1 required Class option and you're up and running)
• Use the built in Parsers for most raw results
• Multiprocessing Queue for modules and Result Queue for easy handling of Email data
• Simple intergration of theHarvester Modules and new ones to come
• Also the ability to change major settings fast without diving into the code

API Based Searches:

• When API based searches become avaliable, no need to add them to the Command line
• API keys will be auto pulled from the SimpleEmail.ini, this will activate the module for use

Get Started

Please RUN the simple Setup Bash script!!!

root@kali:~/Desktop/SimplyEmail# sh Setup.sh
or
root@kali:~/Desktop/SimplyEmail# ./Setup.sh

Standard Help

 ============================================================
 Curent Version: 0.5 | Website: CyberSyndicates.com
 ============================================================
 Twitter: @real_slacker007 |  Twitter: @Killswitch_gui
 ============================================================
------------------------------------------------------------
   ______  ________                       __ __
 /      \/        |                     /  /  |
/$$$$$$  $$$$$$$$/ _____  ____   ______ $$/$$ |
$$ \__$$/$$ |__   /     \/    \ /      \/  $$ |
$$      \$$    |  $$$$$$ $$$$  |$$$$$$  $$ $$ |
 $$$$$$  $$$$$/   $$ | $$ | $$ |/    $$ $$ $$ |
/  \__$$ $$ |_____$$ | $$ | $$ /$$$$$$$ $$ $$ |
$$    $$/$$       $$ | $$ | $$ $$    $$ $$ $$ |
 $$$$$$/ $$$$$$$$/$$/  $$/  $$/ $$$$$$$/$$/$$/

------------------------------------------------------------
usage: SimplyEmail.py [-all] [-e company.com] [-l] [-t html / flickr / google]
                      [-v]

Email enumeration is a important phase of so many operation that a pen-tester
or Red Teamer goes through. There are tons of applications that do this but I
wanted a simple yet effective way to get what Recon-Ng gets and theHarvester
gets. (You may want to run -h)

optional arguments:
  -all                  Use all non API methods to obtain Emails
  -e company.com        Set required email addr user, ex ale@email.com
  -l                    List the current Modules Loaded
  -t html / flickr / google
                        Test individual module (For Linting)
  -v                    Set this switch for verbose output of modules

Run SimplyEmail

Let's say your target is cybersyndicates.com

./SimplyEmail.py -all -e cybersyndicates.com  or in verbose  ./SimplyEmail.py -all -v -e cybersyndicates.com

This will run ALL modules that are have API Key placed in the SimpleEmail.ini file and will run all non-API based modules.

List Modules SimpleEmail

root@vapt-kali:~/Desktop/SimplyEmail# ./SimplyEmail.py -l

 ============================================================
 Curent Version: 0.5 | Website: CyberSyndicates.com
 ============================================================
 Twitter: @real_slacker007 |  Twitter: @Killswitch_gui
 ============================================================
------------------------------------------------------------
   ______  ________                       __ __
 /      \/        |                     /  /  |
/$$$$$$  $$$$$$$$/ _____  ____   ______ $$/$$ |
$$ \__$$/$$ |__   /     \/    \ /      \/  $$ |
$$      \$$    |  $$$$$$ $$$$  |$$$$$$  $$ $$ |
 $$$$$$  $$$$$/   $$ | $$ | $$ |/    $$ $$ $$ |
/  \__$$ $$ |_____$$ | $$ | $$ /$$$$$$$ $$ $$ |
$$    $$/$$       $$ | $$ | $$ $$    $$ $$ $$ |
 $$$$$$/ $$$$$$$$/$$/  $$/  $$/ $$$$$$$/$$/$$/

------------------------------------------------------------
 [*] Available Modules are:

  1)  Modules/GooglePDFSearch.py
  2)  Modules/HtmlScrape.py   
  3)  Modules/GitHubUserSearch.py
  4)  Modules/Whoisolgy.py    
  5)  Modules/CanaryBinSearch.py
  6)  Modules/YahooSearch.py  
  7)  Modules/GitHubCodeSearch.py
  8)  Modules/OnionStagram.py 
  9)  Modules/AskSearch.py    
  10) Modules/EmailHunter.py  
  11) Modules/WhoisAPISearch.py
  12) Modules/SearchPGP.py    
  13) Modules/GoogleSearch.py 
  14) Modules/GitHubGistSearch.py
  15) Modules/RedditPostSearch.py
  16) Modules/FlickrSearch.py 

Understanding Reporting Options:

One of the most frustrating aspects of Pen-testing is the tools' ability to report the findings and make those easily readable. This may be for the data provided to a customer or just the ability to report on source of the data.
So I'm making it my goal for my tools to take that work off your back and make it as simple as possible! Let's cover the two different reports generated.

Text Output:

With this option results are generated and appended to a running text file called Email_List.txt. this makes it easy to find past searches or export to tool of choice. 

Example:

    ----------------------------------

    Email Recon: 11/11/2015 05:13:32
    ----------------------------------
bo@mandiant.com
in@mandiant.com
sc@mandiant.com
je@mandiant.com
su@mandiant.com
----------------------------------
    Email Recon: 11/11/2015 05:15:42
    ----------------------------------
bo@mandiant.com
in@mandiant.com
sc@mandiant.com
je@mandiant.com
su@mandiant.com

HTML Output:

As I mentioned before a powerful function that I wanted to integrate was the ability to produce a visually appealing and rich report for the user and potentially something that could be part of data provided to a client. Please let me know with suggestions!

Email Source:

Email Section:

• Html report now shows Alerts for Canary Search Results! 

Current Email Evasion Techniques

• The following will be built into the Parser Soon:
• shinichiro.hamaji at gmail.com
• shinichiro.hamaji AT gmail.com
• simohayha.bobo at gmail.com
• "jeffreytgilbert" => "gmail.com"
• felix021 # gmail.com
• hirokidaichi[at]gmail.com
• hirokidaichi[@]gmail.com
• hirokidaichi[#]gmail.com
• xaicron{ at }gmail.com
• xaicron{at}gmail.com
• xaicron{@}gmail.com
• xaicron(@)gmail.com
• xaicron + gmail.com
• xaicron ++ gmail.com
• xaicron ## gmail.com
• bekt17[@]gmail.com
• billy3321 -AT- gmail.com
• billy3321[AT]gmail.com
• ybenjo.repose [[[at]]] gmail.com
• sudhindra.r.rao (at) gmail.com
• sudhindra.r.rao nospam gmail.com
• shinichiro.hamaji (.) gmail.com
• shinichiro.hamaji--at--gmail.com

Build Log:

Changelog (Current v0.6):

===================================
Framework Improvements v0.7:
-----------------------------
(x) Add unicode / UT8 Decoding to the parser options
(x) Added Version Check

Modules Added in v0.7
-----------------------------
(x) Google Docx Search

Issues Fixed in v0.7:
-----------------------------
(x) Fixed issues with Except statement in a few modules
(x) Fixed Case Mathcing Issues with target Domain

===================================
Modules Added in v0.6
-----------------------------
(x) Google Doc Search
(x) Google Xlsx Search

===================================
Modules Added in v0.5
-----------------------------
(x) Reddit Post Search added
(x) Google PDF search

===================================
Modules Added in v0.4
-----------------------------
(x) GitHubUser added

Issues Fixed in v0.4:
-----------------------------
(x) Setup File Fix
(x) issues with strip in Html

Framework Improvements v0.4:
-----------------------------
(x) Added Source of email collection
    to final report in bootstrap.
(x) Added Verbose options for Modules
    to handle Vebose printing.
(x) Added Alerts to HTML report
    when emails are gathered from canary.

===================================
Modules Added in v0.3:
-----------------------------
(x) OnionStagram (Instagram User Search)
(x) AskSearch - Port from theHarvester

Issues Fixed in v0.3:
----------------------------
(x) Added Parser to GitHubCode Search
(x) Moved wget to 2 sec timeout

===================================
Modules Added in v0.2:
-----------------------------
(x) EmailHunter Trial API

Issues Fixed in v0.2:
-----------------------------
(x) Fixed Issues with SetupScript 
(x) Changes Output Text file name

===================================
Modules Added in v0.1:
-----------------------------
(x) HtmlScrape Added to Modules 
(x) SearchPGP Added to Modules - Port form theHarvester
(x) Google Search - Port form theHarvester
(x) Flickr Page Search
(x) GitHub Code Search
(x) GitHubGist Code Search
(x) Whois Non-Auth API Search
(x) Whoisology Search
(x) Yahoo Search - Port from theHarvester
(x) Canary (Non-API) PasteBin Search for Past Data Dumps!

Issues Fixed in v0.1:
-----------------------------
(x) Wget fails to follow redirects in some cases
(x) Fixed Issues with google search
(x) Major change with how the Framework Handles Consumer and Producred Model
(x) Fix Issues with Join() and Conducter

Imprrovements in v0.1:
-----------------------------
(x) Added in valid UserAgents and headers
(x) HTML Scrape now has opption to save or remove is mirror
(x) HTML Scrape UTF-8 issues fixed

Build out Path:

Modules Under Dev:
-----------------------------
( ) StartPage Search (can help with captcha issues)
( ) Searching SEC Data
( ) Exalead Search - Port from theHarvester
( ) PwnBin Search 
( ) PasteBin Searches 
( ) Past Data Dumps
( ) psbdmp API Based and non Alert

Framework Under Dev:
-----------------------------
( ) New Parsers to clean results
( ) Fix import errors with Glob
( ) Add in "[@]something.com" to search Regex and engines
( ) Add errors for Captcha limit's
( ) Add Threading/Multi to GitHub Search
( ) Add Source of collection to HTML Output

Download SimplyEmail

Read More

RootHelper - A Bash Script That Downloads And Unzips Scripts That Will Aid With Privilege Escalation On A Linux System

RootHelper

Roothelper will aid in the process of privilege escalation on a Linux system that has been compromised, by fetching a number of enumeration and exploit suggestion scripts. The latest version downloads four scripts. Two enumeration shellscripts and two exploit suggesters, one written in perl and the other one in python.

The credits for the scripts it fetches go to the original authors.

Priv-Esc scripts

LinEnum  

Shellscript that enumerates the system configuration.

unix-privesc-check  

Shellscript that enumerates the system configuration and runs some privilege escalation checks as well.

linuxprivchecker  

A python implementation to suggest exploits particular to the system that's been compromised.

Linux_Exploit_Suggester  

A perl script that that does the same as the one mentioned above.

Usage

To use the script you will need to get it on the system you've compromised, from there you can simply run it and it will show you the options available and an informational message regarding the options. For clarity i will post it below as well.

The 'Help' option displays this informational message.    The 'Download' option fetches the relevant files and places them in the /tmp/ directory.    The option 'Download and unzip' downloads all files and extracts the contents of zip archives to their individual subdirectories respectively, please  note; if the 'mkdir' command is unavailable however, the operation will not succeed and the 'Download' option should be used instead    The 'Clean up' option removes all downloaded files and 'Quit' exits roothelper.  

Credits for the other scripts go to their original authors.

https://github.com/rebootuser/LinEnum
https://github.com/PenturaLabs/Linux_Exploit_Suggester
http://www.securitysift.com/download/linuxprivchecker.py
https://github.com/pentestmonkey/unix-privesc-check

Download Roothelper

Read More

Antitrust - (Ameaça Virtual)

A computer programmer's dream job at a hot Portland-based firm turns nightmarish when he discovers his boss has a secret and ruthless means of dispatching anti-trust problems.

By OffensiveSec

Read More

Killchain - A Unified Console To Perform The "Kill Chain" Stages Of Attacks

“Kill Chain” is a unified console with an anonymizer that will perform these stages of attacks:


º Reconnaissance 
º Weaponization 
º Delivery 
º Exploit 
º Installation 
º Command & Control 
º And Actions 

Dependant tool sets are:

1) Tor -- For the console build in anonymizer.
2) Set -- Social-Engineer Toolkit (SET), attacks against humans.
3) OpenVas -- Vulnerability scanning and vulnerability management.
4) Veil-Evasion -- Generate metasploit payloads bypass anti-virus.
5) Websploit -- WebSploit Advanced MITM Framework.
6) Metasploit -- Executing exploit code against target.
7) WiFite -- Automated wireless auditor, designed for Linux.

Download Killchain

Read More

squitch pentest – A simple and small pentesting linux distro

Features

º ubuntu based
º gnome 2 desktop
º kernel 3.0.0.15
º pentesting tools

Download squitch

Read More

CAINE 7.0 - DeepSpace 64bit

CAINE (Computer Aided INvestigative Environment) is a Linux distribution specifically designed for digital forensics. It is based on Ubuntu.

The latest edition is CAINE 7, code-named DeepSpace. It is based on Ubuntu 14.04 LTS and, therefore, UEFI and Secure Boot ready.

It comes with some new features, including booting into a read-only mode whereby all block devices are not writable, and a VNC server and client that allows remote control of a Caine 7 installation.

This post offers screenshots from a test installation of CAINE 7 in a virtual environment.

This is the installation boot menu. If you want to install CAINE in a virtual environment (using VirtualBox) on Ubuntu, select the Boot Live in safe graphics mode. Booting using the default will only give you a garbled display.

Download CAINE 7.0

Read More

F.H.C - FORENSIC LIVE CD IMAGER

Forensic Hard Copy, is a Linux distribution, bootable CD (LiveCD), exclusively created to automate and speed up the copy of the storage devices. These procedures of copy are commonly in use in computer forensics. In computer science is orthodox practice, acquire data from the offending media in order to protect them from any alteration or damage, then later analyze the identical copy. The project was created to meet the operational needs of the police involved in investigations, the technical consultants (CTU) and part IT(CTU), ensuring the durability and the use of evidence in computer science criminal trial.


Has been used open source software, open-source scripts and to give all users the ability to understand, if necessary, the actual operation of the software in the process of copying or image acquisition. The process has been automated through a script-wizard that guides you step by step in the copy of a support. The new release has a 2.6.32 kernel which has a wide compatibility with controllers and disks. The recognition is done through media connections IDE, SATA, Firewire and USB, so you can also copy data to external media to the machine being analyzed.

Download F.H.C

Read More

OWASP - Droid Fusion

OWASP Droid Fusion is a platform for android mobile or any other mobile for doing Malware Analysis, Development, Application Pentesting and Forensics. You can use it in any mobile security research, and if you have Droid Fusion, you don’t need to worry about finding tools. There are more then 60 tools and scripts and it is free.

Tool Features

º SBFlash
º Heimdall CLI
º Heimdall Gui
º Fastboot

Android Exploitation

º Mercury
º Android Framework For Exploitation
º Smartphone Pentest Framework
º Metasploit

Pentest Application

º Burpsuite
º Wireshark
º Zap
º Ettermap
º W3af
º Zenmap

Device Forensic

º Aflogical
º Dc 3dd
º iPhone Backup Analyzer
º Scalpel
º Sleuthkit

Miscellaneous

º Android Kitchen
º Android Bruteforce
º iPhone Bruteforce
º Fastboot
º HconSTF
º Arduino IDE
º Record my desktop

Download Droid Fusion

Read More

Android Pentest Tools - Bugtroid

Bugtroid is an innovative tool developed by the team of Bugtraq-Team. The main features of this apk, is that it has more than 200 Android and Linux tools (PRO) for pentesting and forensics through its Smarthphone or tablet. It has a menu categorized according to the nature of the tool may find


º Anonymity
º Search People
º Audit for frequencies 802.11 (Wireless and Bluetooth)
º Mapping Networks
º Remote
º DDOS
º Sniffers
º Pentesting
º Security
º Examiner
º Web Analysis
º Cryptography
º Brute Force
º Antivirus
º System

From the application menu you can:


º Check the information on the tool.
º Install the application.
º Uninstall the Application.
º Run the Application (PRO)


Also paragraph settings available, which will serve to manage and install certain requirements for the proper functioning of the tools as well as other fnciones:


º Set wallpaper
º Install the minimum requirements for running the tools
º Install shortcuts on the desktop (PRO)
º Install shortcuts Console (PRO)
º Installation of interpreters: Perl, Python, Ruby, PHP and Mysql (PRO)

Download Bugtroid

Read More

SPF - Smartphone Pentest Framework

The product of a DARPA Cyber Fast Track grant, the Smartphone Pentest Framework is an open source security tool, designed to aid in assessing the security posture of smartphones in an environment. SPF Version 0.1 contains remote attacks, client side attacks, social engineering attacks, and post exploitation, targeting smartphone devices.

SPF is an on going project with plans in the works for support for additional devices, more modules in each attack vector category, integration with existing tools such as Metasploit and SET, etc.

Download SPF

Read More

Revenssis - Smartphone Pentest Suite

Nicknamed as the “Smartphone Version of Backtrack”, Revenssis Penetration Suite is a set of all the useful types of tools used in Computer and Web Application security. Tools available in it include: Web App scanners, Encode/Decode & Hashing tools, Vulnerability Research Lab, Forensics Lab, plus the must-have utilities (Shell, SSH, DNS/WHOIS Lookup, Traceroute, Port Scanner, Spam DB Lookup, Netstat… etc). All these fitting in an application approx. 10MB (post installation).


Features 

º All Web Vulnerability Scanners including:
º SQL injection scanner
º XSS scanner
º DDOS scanner
º CSRF scanner
º SSL misconfiguration scanner
º Remote and Local File Inclusion (RFI/LFI) scanners
º Useful utilities such as:
º WHOIS lookup, IP finder, Shell, SSH, Blacklist lookup tool, Ping tool,
º Forensic tools (in imlementation) such as malware analyzers, hash crackers, network           sniffer, ZIP/RAR password finder, social engineering toolset, reverse engineering tool
º Vulnerability research lab (sources include: Shodan vulnerability search engine,                   ExploitSearch, Exploit DB, OSVDB and NVD NIST
º Self scan and Defence tools for your Android phone against vulnerabilities
º Connectivity Security Tools for Bluetooth, Wifi and Internet. (NFC, Wifi Direct and USB in     implementation)

Download Revenssis

Read More

Reverse engineering - Androguard

Androguard is mainly a tool written in python to play with :

º Dex/Odex (Dalvik virtual machine) (.dex) (disassemble, decompilation),
º APK (Android application) (.apk),
º Android’s binary xml (.xml),
º Android Resources (.arsc).

Features:


º Map and manipulate DEX/ODEX/APK/AXML/ARSC format into full Python objects,
º Diassemble/Decompilation/Modification of DEX/ODEX/APK format,
º Decompilation with the first native (directly from dalvik bytecodes to java source codes)         dalvik decompiler (DAD),
º Access to the static analysis of the code (basic blocks, instructions, permissions (with           database from http://www.android-permissions.org/) …) and create your own static               analysis tool,
º Analysis a bunch of android apps,
º Analysis with ipython/Sublime Text Editor,
º Diffing of android applications,
º Measure the efficiency of obfuscators (proguard, …),
º Determine if your application has been pirated (plagiarism/similarities/rip-off indicator),
º Check if an android application is present in a database (malwares, goodwares ?),
º Open source database of android malware (this opensource database is done on my free     time, of course my free time is limited, so if you want to help, you are welcome !),
º Detection of ad/open source librairies (WIP),
º Risk indicator of malicious application,
º Reverse engineering of applications (goodwares, malwares),
º Transform Android’s binary xml (like AndroidManifest.xml) into classic xml,
º Visualize your application with gephi (gexf format), or with cytoscape (xgmml format), or       PNG/DOT output,
º Integration with external decompilers (JAD+dex2jar/DED/…)

Downlaod Androguard

Read More

ASEF - Android Security Evaluation Framework

ASEF

Have you ever looked at your Android applications and wondered if they are watching you as well? Whether it’s a bandwidth-hogging app, aggressive adware or even malware, it would be interesting to know if they are doing more than what they are supposed to and if your personal information is exposed. Is there really a way to automatically evaluate all your apps – even hundreds of them – to harvest their behavioral data, analyze their run pattern, and at the same time provide an interface to facilitate a vast majority of evolving security tests with most practical solutions?

Android Security Evaluation Framework (ASEF) performs this analysis while alerting you about other possible issues. It will make you aware of unusual activities of your apps, will expose vulnerable components and help narrow down suspicious apps for further manual research. ASEF is an Open Source tool for scanning Android Devices for security evaluation. Users will gain access to security aspects of android apps by using this tool with its default settings.

Download ASEF

Read More

Android Pentest Tools - drozer

drozer

drozer (formerly Mercury) is the leading security testing framework for Android.

drozer allows you to search for security vulnerabilities in apps and devices by assuming the role of an app and interacting with the Dalvik VM, other apps' IPC endpoints and the underlying OS.

drozer provides tools to help you use, share and understand public Android exploits. It helps you to deploy a drozer Agent to a device through exploitation or social engineering. Using weasel (MWR's advanced exploitation payload) drozer is able to maximise the permissions available to it by installing a full agent, injecting a limited agent into a running process, or connecting a reverse shell to act as a Remote Access Tool (RAT).


drozer is open source software, maintained by MWR InfoSecurity, and can be downloaded from:

mwr.to/drozer

Download drozer

Read More

Framework - Android Device Testing (dtf)

About

The Android Device Testing Framework ("dtf") is a data collection and analysis framework to help individuals answer the question: "Where are the vulnerabilities on this mobile device?" Dtf provides a modular approach and built-in APIs that allows testers to quickly create scripts to interact with their Android devices. By default, dtf does not include any modules, but a collection of testing modules is made available on the Cobra Den website (www.thecobraden.com/projects/dtf/). These modules allow testers to obtain information from their Android device, process this information into databases, and then start searching for vulnerabilities (all without requiring root privileges). These modules help you focus on changes made to AOSP components such as applications, frameworks, system services, as well as lower-level components such as binaries, libraries, and device drivers. In addition, you'll be able to analyze new functionality implemented by the OEMs and other parties to find vulnerabilities.


Prerequisites

To use dtf, you will need at least the following:

º JRE 1.7
º Python 2.6 or higher
º A true Bash shell (no Dash!!!), with general purpose Linux utilities (sed, awk, etc.)
º sqlite3
º The Android SDK


Using DTF

For details on getting started with dtf, check out the documentation over at the www.thecobraden.com/projects/dtf/.

Licenses

Dtf is licensed under the Apache License, Version 2.0, but contains additional code from other projects. Check the NOTICE file for additional projects and licensing.

Download Android Device Testing Framework

Read More

Android Pentest Tools - Shark for Root

Shark for Root

Traffic sniffer, works on 3G and WiFi (works on FroYo tethered mode too). To open dump use WireShark or similar software, for preview dump on phone use Shark Reader. Based on tcpdump. Please leave comments/send e-mail if you have any problems/suggestions.

Download Shark for Root

Read More

AppUse – Android Pentest Platform Unified Standalone Environment

AppUse Virtual Machine, developed by AppSec Labs, is a unique (and free) system, a platform for mobile application security testing in the android environment, and it includes unique custom-made tools.

Features

 º New Application Data Section
 º Tree-view of the application’s folder/file structure
 º Ability to pull files
 º Ability to view files
 º Ability to edit files
 º Ability to extract databases
 º Dynamic proxy managed via the Dashboard
 º New application-reversing features
 º Updated ReFrameworker tool
 º Dynamic indicator for Android device status
 º Bugs and functionality fixes

Download AppUse

Read More

Android Pentest Tools - dSploit

dSploit


dSploit is an Android network analysis and penetration suite which aims to offer to IT security experts/geeks the most complete and advanced professional toolkit to perform network security assessments on a mobile device.


Features


º WiFi Cracking
º RouterPWN
º Trace
º Port Scanner
º Inspector
º Vulnerability finder
º Login cracker
º Packet forger
º Man in the middle
º Simple sniff
º Password sniff
º Session Hijacker
º Kill connections
º Redirect
º Replace images
º Replace videos
º Script injector
º Custom filter

Download dSploit

Read More