One thing I really like about the Android OS is the variety of tools available for penetration testers. I’ve been wanting to share my list with you from some time and I finally got around to do it.
Android Applications for Penetration Testers
Native applications
Shark for root / Shark for root (native)
WIFI/3G traffic sniffer.
https://market.android.com/details?id=lv.n3o.shark
Pixie
A passive wifi network monitor that allows your phone to capture network traffic from other devices on open and WEP protected wireless network,
https://market.android.com/details?id=com.nbl.pixie
Nmap
Unofficial port of Nmap for Android
https://market.android.com/details?id=com.wjholden.nmap
Orbot
Official port of the Tor network for Android
https://market.android.com/details?id=org.torproject.android
Router passwords
Database of default login credentials for hundreds of network devices.
https://market.android.com/details?id=net.davidgouveia.routerpasswords
Wireless WEP/WPA key generators
These apps generate the default WEP/WPA keys for different routers.
- Router Keygen – Link not available anymore (App could have been removed from Market)
- Penetrate – Link not available anymore (App could have been removed from Market)
- HHG5XX – Supports Huawei HG5XX devices. https://market.android.com/details?id=com.pcalderon.hhg2xxfree
- Wlan4xx – https://market.android.com/details?id=decrypter.wlan4xx.free
Wardrive
Great wardriving application.
https://market.android.com/details?id=ki.wardrive
Non-native applications
A huge advantage of Android having an ARM EABI architechture is that you can run any linux distribution that supports it. Note that you will not be replacing the operative system and the image will run on top of it. You may find different installation instructions according to your model/version:
http://www.pentestit.com/2011/02/18/debdroid-run-network-sniffing-debian-system-android/
Running a full Linux distribution will give you access to tools like:
- openssh
- libpcap
- ettercap
- wireshark
- sslstrip
- carwhisperer
- btscan
- ntbscan
- metasploit
- w3af
- And many more
Suggestions
Did I miss an application? Feel free to let me know!