Santoku Linux Mobile Forensic & Security Distribution

Santoku is a platform for mobile
forensics, mobile malware analysis and mobile application security
assessment. The free Santoku Community Edition is a collaborative
project to provide a pre-configured Linux environment with utilities,
drivers and guides for these areas. The alpha release is based on a
fork of the OWASPMobiSec distro.


The word santoku loosely translates as ‘three
virtues’ or ‘three uses’. Santoku Linux has been crafted to
support you in three endeavours:



Mobile Forensics


Tools to acquire and analyze data


  • Firmware flashing tools for
    multiple manufacturers
  • Imaging tools for NAND, media
    cards, and RAM
  • Free versions of some commercial
    forensics tools
  • Useful scripts and utilities specifically designed for mobile
    forensics



Mobile Malware


Tools for examining mobile malware


  • Mobile device emulators
  • Utilities to simulate network
    services for dynamic analysis
  • Decompilation and disassembly
    tools
  • Access to malware databases



Mobile Security


Assessment of mobile apps


  • Decompilation and disassembly
    tools
  • Scripts to detect common issues in
    mobile applications
  • Scripts to automate decrypting binaries, deploying apps,
    enumerating app details, and more


Development Tools:

  • Android SDK Manager
  • BlackBerry JDE
  • BlackBerry Tablet OS SDK
  • BlackBerry WebWorks
  • DroidBox
  • Eclipse IDE
  • Windows Phone SDK
  • Android 2.3.3, 3.2, and 4.0.3 Emulators
  • SecurityCompass Lab Server (HTTP and HTTPS)
  • BlackBerry Ripple
  • BlackBerry Simulators

Penetration Testing:

  • CeWL
  • DirBuster
  • Fierce
  • Nikto
  • nmap
  • Burp Suite
  • Mallory
  • w3af Console
  • w3af GUI
  • ZAP
  • BeEF
  • Ettercap
  • iSniff
  • Metasploit Console
  • Metasploit GUI
  • NetSed
  • SET
  • SQLMap
  • SSLStrip
Reverse Engineering:

  • APK Tool
  • Dex2Jar
  • Flawfinder
  • Java Decompiler
  • Strace

Wireless Analyzers:

  • Aircrack-ng
  • Kismet
  • Ubertooth Kismet
  • Ubertooth Spectrum Analyzer
  • Wireshark

Device Forensics:

  • AFLogical Open Source Edition
  • Android Encryption Brute Force
  • BitPim
  • BlackBerry Desktop Manager
  • Foremost
  • iPhone Backup Analyzer
  • MIAT
  • Paraben Device Seizure
  • Sift Workstation
  • Sleuth Kit
  • SQLiteSpy

Mobile Infrastructure:

  • BES Express
  • Google Mobile Management
  • iPhone Configuration Tool


Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

The Complete OSINT Tutorial to Find Personal Information About Anyone

This article mainly focuses on how to discover a person's digital footprint and gather personal data by using open-source intelligence (OSINT). So, in its...

How to find the password of hacked email addresses using OSINT

Open-source intelligence or OSINT is a potent technique, and it can give a lot of valuable information, if implemented correctly with the right strategy...

How to Identify Company’s Hacked Email Addresses Using Maltego & HaveIbeenPawned

This article is part of the Maltego OSINT tutorial, where you will learn to identify the already hacked account, and it’s password using the...

5 Key Vulnerabilities in Global Payroll

The cyber threat against payroll is growing in sophistication and frequency, according to the latest FBI cybercrime report. Many of these attacks exploit fixable...