AndroBugs Framework is an Android vulnerability analysis system that helps developers or hackers find potential security vulnerabilities in Android applications. No splendid GUI interface, but the most efficient (less than 2 minutes per scan in average) and more accurate.
Features:
- Find security vulnerabilities in an Android app
- Check if the code is missing best practices
- Check dangerous shell commands (e.g. “su”)
- Collect Information from millions of apps
- Check the app’s security protection (marked as <Hacker>, designed for app repackaging hacking)
Steup Steps and Usage for Windows
Easy to use for Android developers or hackers on Microsoft Windows: (a) No need to install Python 2.7 (b) No need to install any 3rd-party library (c) No need to install AndroBugs Framework
- mkdir C:AndroBugs_Framework
- cd C:AndroBugs_Framework
- Unzip the latest Windows version of AndroBugs Framework from Windows releases
- Go to Computer->System Properties->Advanced->Environment Variables. Add “C:AndroBugs_Framework” to the “Path” variable
- androbugs.exe -h
- androbugs.exe -f [APK file]
Usage for Unix/Linux
To run the AndroBugs Framework:
python androbugs.py -f [APK file]
To check the usage:
python androbugs.py -h
Example:python AndroBugs_ReportByVectorKey.py -v WEBVIEW_RCE -l Critical -b 20151112 -t BlackHat python AndroBugs_ReportByVectorKey.py -v WEBVIEW_RCE -l Critical -b 20151112 -t BlackHat -a
Download and read more at
Android Vulnerability Scanner
Rated 4.9/5 based on 987 reviews
You can also see the Android application penetration testing course.