fbpx

Santoku Linux Mobile Forensic & Security Distribution

Santoku is a platform for mobile
forensics, mobile malware analysis and mobile application security
assessment. The free Santoku Community Edition is a collaborative
project to provide a pre-configured Linux environment with utilities,
drivers and guides for these areas. The alpha release is based on a
fork of the OWASPMobiSec distro.


The word santoku loosely translates as ‘three
virtues’ or ‘three uses’. Santoku Linux has been crafted to
support you in three endeavours:



Mobile Forensics


Tools to acquire and analyze data


  • Firmware flashing tools for
    multiple manufacturers
  • Imaging tools for NAND, media
    cards, and RAM
  • Free versions of some commercial
    forensics tools
  • Useful scripts and utilities specifically designed for mobile
    forensics



Mobile Malware


Tools for examining mobile malware


  • Mobile device emulators
  • Utilities to simulate network
    services for dynamic analysis
  • Decompilation and disassembly
    tools
  • Access to malware databases



Mobile Security


Assessment of mobile apps


  • Decompilation and disassembly
    tools
  • Scripts to detect common issues in
    mobile applications
  • Scripts to automate decrypting binaries, deploying apps,
    enumerating app details, and more


Development Tools:

  • Android SDK Manager
  • BlackBerry JDE
  • BlackBerry Tablet OS SDK
  • BlackBerry WebWorks
  • DroidBox
  • Eclipse IDE
  • Windows Phone SDK
  • Android 2.3.3, 3.2, and 4.0.3 Emulators
  • SecurityCompass Lab Server (HTTP and HTTPS)
  • BlackBerry Ripple
  • BlackBerry Simulators

Penetration Testing:

  • CeWL
  • DirBuster
  • Fierce
  • Nikto
  • nmap
  • Burp Suite
  • Mallory
  • w3af Console
  • w3af GUI
  • ZAP
  • BeEF
  • Ettercap
  • iSniff
  • Metasploit Console
  • Metasploit GUI
  • NetSed
  • SET
  • SQLMap
  • SSLStrip
Reverse Engineering:

  • APK Tool
  • Dex2Jar
  • Flawfinder
  • Java Decompiler
  • Strace

Wireless Analyzers:

  • Aircrack-ng
  • Kismet
  • Ubertooth Kismet
  • Ubertooth Spectrum Analyzer
  • Wireshark

Device Forensics:

  • AFLogical Open Source Edition
  • Android Encryption Brute Force
  • BitPim
  • BlackBerry Desktop Manager
  • Foremost
  • iPhone Backup Analyzer
  • MIAT
  • Paraben Device Seizure
  • Sift Workstation
  • Sleuth Kit
  • SQLiteSpy

Mobile Infrastructure:

  • BES Express
  • Google Mobile Management
  • iPhone Configuration Tool


Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

What Makes ICS/OT Infrastructure Vulnerable?

Infrastructure security for operational technologies (OT) and industrial control systems (ICS) varies from IT security in several ways, with the inverse confidentiality, integrity, and...

Everything You Must Know About IT/OT Convergence

What is an Operational Technology (OT)? Operational technology (OT) is a technology that primarily monitors and controls physical operations. It can automate and control machines,...

Understand the OT Security and Its Importance

This article discusses OT security and why it is essential for protecting industrial systems from cyberattacks. We will also discuss common control objectives that can...

What is Deepfake, and how does it Affect Cybersecurity?

Producing deepfake is easy. It is hard to detect. They operate with a description of reality rather than reality itself (e.g., a video). Any...