Android Applications for Penetration Testers

One thing I really like about the Android OS is the variety of tools available for penetration testers. I’ve been wanting to share my list with you from some time and I finally got around to do it. 

 

Native applications

Shark for root / Shark for root (native)

WIFI/3G traffic sniffer.  

https://market.android.com/details?id=lv.n3o.shark

Pixie

A passive wifi network monitor that allows your phone to capture network traffic from other devices on open and WEP protected wireless network,

https://market.android.com/details?id=com.nbl.pixie

Nmap

Unofficial port of Nmap for Android

https://market.android.com/details?id=com.wjholden.nmap

http://nmap.wjholden.com/src/

Orbot 

Official port of the Tor network for Android

https://market.android.com/details?id=org.torproject.android

Router passwords

Database of default login credentials for hundreds of network devices.

https://market.android.com/details?id=net.davidgouveia.routerpasswords

Wireless WEP/WPA key generators

 These apps generate the default WEP/WPA keys for different routers.

  • Router Keygen – Link not available anymore (App could have been removed from Market)
  • Penetrate – Link not available anymore (App could have been removed from Market)
  • HHG5XX – Supports Huawei HG5XX devices. https://market.android.com/details?id=com.pcalderon.hhg2xxfree
  • Wlan4xx – https://market.android.com/details?id=decrypter.wlan4xx.free

Wardrive

Great wardriving application. 

https://market.android.com/details?id=ki.wardrive

 

Non-native applications

A huge advantage of Android having an ARM EABI architechture is that you can run any linux distribution that supports it. Note that you will not be replacing the operative system and the image will run on top of it. You may find different installation instructions according to your model/version:

http://www.pentestit.com/2011/02/18/debdroid-run-network-sniffing-debian-system-android/

http://www.saurik.com/id/10

Running a full Linux distribution will give you access to tools like:

  • openssh
  • libpcap
  • ettercap
  • wireshark
  • sslstrip
  • carwhisperer
  • btscan
  • ntbscan
  • metasploit
  • w3af
  • And many more

Suggestions

Did I miss an application? Feel free to let me know!

calderpwn

Infosec consultant | Software dev | Open Source contributor | Speaker

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>