Yaazhini – Free Android APK & API Vulnerability Scanner

Yaazhini is a free vulnerability scanner for android APK and API. It is a user-friendly tool that you can easily scan any APK and API of android application and find the vulnerabilities. Yaazhini includes vulnerability scan of API, the vulnerability of APK and reporting section to generate a report.System RequirementsOperating Systems Mac OSX(64bit), Windows(64bit & 32bit)RAM Minimum Usage 4GB of available memory. 16GB required for larger Android AppsStorage 10GB of available disk spaceDependancy Software Java 1.8+Advantages of Yaazhini    Scan Android APK by just one click    Scan Android Application REST API (emulator, device)    Generate report    Free to use    Easy to useHow to use Yaazhini Android Application APK Scanner    Start the Yaazhini Application.    Provide the project name    Upload the APK file    Click on Upload & Scanbutton    After the scan gets completed we can see all detail of vulnerability and generate the reportYaazhini – Android Application Rest API ScannerYaazhini – Android Application Rest API Scanner can help you to find the following attacks    SQL Injection    Command Injection    Header Injection    Cross-site Scripting ( possibilities )    Missing Security Headers    Sensitive Information Disclosure in Response Headers    Sensitive Information Disclosure in Error messages    Missing Server Side Input Validation    Unwanted Use of HTTP Methods    Improper HTTP Response and moreHow to use Yaazhini Android Application Rest ScannerStart Application.Tests MobileSecurity TestingTesting ToolCommand LineTesting SuiteDevice Or EmulatorCreate a New Project.Add the New Request in the Created Project.Provide Proper Headers, URL, and Data.Save and Run the Scan From the Menu Bar.After Scan Gets Completed Click on Generate Report From the Menu Bar.Sample Reports for YaazhiniYaazhini-Android APK Scanner Sample report starts with a quick summary of the findings and risk ratings. Each finding has a detailed explanation in terms of risk and recommendations about the vulnerability. The vulnerabilities are ordered by the risk level.Get Here: Yaazhini-Android APK Scanner Sample Report.Yaazhini -Mobile Application Scanner Sample report Sample report starts with a quick summary of the findings and risk ratings. Each finding has a detailed explanation in terms of risk and recommendations about the vulnerability. The vulnerabilities are ordered by the risk level.Get Here: Yaazhini- Mobile Application Scanner Sample report.Download Yaazhini

Link: http://feedproxy.google.com/~r/PentestTools/~3/6kC6ytwB1jU/yaazhini-free-android-apk-api.html

LiveHiddenCamera – Library Which Record Live Video And Audio From Android Device Without Displaying A Preview

Live Hidden Camera (LHC) is a library which record live video and audio from Android device without displaying a preview.How to useI’ve created a library to make it more usable. The only requirement is to add the library to your project and pass the Rtmp URL to it.Additionally you should care about:Your application should have the following permissions in Manifest.xml:

Link: http://www.kitploit.com/2019/06/livehiddencamera-library-which-record.html

ANDRAX v3 – The First And Unique Penetration Testing Platform For Android Smartphones

ANDRAX The first and unique Penetration Testing platform for Android smartphones.Thanks to Jessica Helena she made ANDRAX v3 possible.What is ANDRAXANDRAX is a penetration testing platform developed specifically for Android smartphones, ANDRAX has the ability to run natively on Android so it behaves like a common Linux distribution, But more powerful than a common distribution!Why is Android so powerful?Simple, everyone has a smartphone and spends all the time with it! We have the possibility to camouflage easily in the middle of everyone, the processor architecture of most Android smartphones is ARM a modern and robust architecture extremely superior to the rest, With touch screens we can run the tools with great agility and take advantage of the graphical interface of Android, we can get in almost anywhere with our smartphones…In technical terms, ANDRAX and NetHunter should never be compared, ANDRAX is a penetration testing platform for Android smartphones and NetHunter is just a Debian emulator running with chroot.Termux is not our enemy, Termux is an application that allows installation of many Linux packages using a Debian environment running natively on Android.ANDRAX and Termux have a similar development, ANDRAX and Termux share many libs and GNU/Linux resources.But Termux is not a penetration testing platform, it’s software to bring basic tools found in a Debian environment. Penetration tests are not something basic! But advanced techniques that involve advanced tools and a advanced environment to conduct good tests!So you can install many tools manually in Termux but it would be extremely difficult to optimize and configure them to take 100% of the required potential for penetration testing.Termux runs without root privileges and this makes it very difficult to use advanced tools. Features and ToolsTool listInformation GatheringWhoisBind DNS toolsDnsreconRaccoonDNS-CrackerFirewalkScanningNmap – Network MapperMasscanSSLScanAmapPacket CraftingHping3NpingScapyHexinjectNcatSocatNetwork HackingARPSpoofBettercapMITMProxyEvilGINX2WebSite Hacking0d1nWapiti3Recon-NGPHPSploitPhotonXSSerCommixSQLMapPayloadmaskAbernathY-XSSPassword HackingHydraNcrackJohn The RipperCRUNCHWireless HackingVMP Evil APAircrack-NG ToolsCowpattyMDK3ReaverExploitationMetaSploit FrameworkRouterSploit FrameworkGetsploitOWASP ZSCRop-TOOLMore…Advanced TerminalAdvanced and Professional terminal emulator for Hacking!Dynamic Categories Overlay (DCO)Beautiful tools category system Advanced IDEComplete support for many programming languagesInformation GatheringTools for initial informations about the targetScanningTools for second stage: ScanningPacket CraftingTools to craft network packetsNetwork HackingTools for network hackingWebSite HackingTools for WebSite and WebApps HackingPassword HackingTools to break passwordsWireless HackingTools for Wireless HackingExploitationTools for Dev and launch exploitsMore info in official site.Download ANDRAX

Link: http://feedproxy.google.com/~r/PentestTools/~3/3jIpU7zeiJg/andrax-v3-first-and-unique-penetration.html

Hackuna – The First Mobile App to Track Hackers

Cryptors, a cyber security company, invented a mobile app called HACKUNA (Anti-Hack) that can block and detect these WiFi hackers. The exciting part here is, you can also track the hackers within the area. It will give you all the details you need to find the hacker within the area or to report it to the authority. We are now given the power to fight back against the WiFi hackers. Do you often connect to Public Free WiFi? Study says that a hacker can hack your online accounts within at least 60 seconds, just because you connect to Public Free WiFi… Experts says that the best thing to do to secure yourself from this,  is to ditch the use of public Free WiFi. How annoying right? But not anymore! Proof that this worksHackuna vs The common WiFi Hacking ToolsHackuna vs WiFi Kill ProDownload Hackuna

Link: http://feedproxy.google.com/~r/PentestTools/~3/DMmt1Y2sd_A/hackuna-first-mobile-app-to-track.html