Cellphone is now very common these days and it has changed the way of bi-directional communication. There are many operating system for mobile devices available but the most common and the best operating system for mobile is Android, it is an OS means you can install other applications on it. In Android application usually called apps or android apps.
Do you Know? Rooting a phone is naturally best option to unleash the full potential of your Android device. Android Apps which will turn your phone into a Hacking Device required Rooting because rooting a phone bypass security measures that the device’s manufacturer put into place, exposing your phone to any number of potential compromises
The risk of hacking by using mobile devices is very common and people are developing and using different apps (application) for their hacking attack.These Android hacking app requires rooting in your phone so before you go through these apps one should know about rooting which is explaned in this article: How to hack your Android phones using Rooting and ROMSAndroid has faced different challenges from hacking application and below is the list of application for android hacking App
1) Fing:
Fing is a probably best used app for port scanning on a network. It gives a list of services, names, spoof Mac address and much more.
2) DroidSheep:
Droidsheep is a MITM (Man In The Middle) spoof that grabs NON ssl (https,443) cookies of facebook, twitter, etc. accounts and will open there session right on your phone (for all you kittens out there looking to hack facebook, this is as close and easy as it will get)
3) SpoofApp:
Here is an app that spies at heart could use – SpoofApp. It allows you to use a fake Caller ID – a number that you are free to specify yourself, in order to protect your privacy or to pull a prank on someone. Sounds like fun, doesn’t it? Well, Apple didn’t think so, which is why it never allowed the app to enter its App Store. Google, however, didn’t mind, which is why SpoofApp was available on the Android Market for about two and a half years. However, it was banned from there last year as it allegedly was in conflict with The Truth in Caller ID Act of 2009.This can be useful in social engineering.
4)WifiKill:
WifiKill is in our handy handbook. You can read all about it. By the way its not ddosing in anyway. Its a MITM attack that redirects the users connection back to there localhost (127.0.0.1)
5) Network Spoofer:
Network Spoofer is just an amazing app. It will allow you to do MANY ARP, MITM, attacks. It has options like redirecting trafic on a network to any site you want. Change images on the network, custom YouTube Videos, List goes on and on. Defiantly a app worth checking out.
6) Andosid:
AnDOSid is the application which is used for DOS attacks from Android mobile phones.
7) ConnectBot
ConnectBot is an exceptionally well done SSH/Telnet client, which also acts as a terminal emulator for the local Linux sub-system. While there are better terminal emulators (though not for free), there is no question that ConnectBot is the absolute best SSH client available for Android.
8) Exploitdb:
We all should know what Exploit-db is.. if not well its a website ( http://www.exploit-db.com/ ) that gives us a whole boat load of exploits to run in metasploit, etc. all it will do is update us on the new exploit available to take over the world.
9) HTTP ping:
Simple app, nothing bit, test HTTP sites to see if there up or down. Great when you ddos and wanna check really quick.
10) FaceNiff
FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to. It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK). It’s kind of like Firesheep for android. Maybe a bit easier to use (and it works on WPA2!). Please note that if webuser uses SSL this application won’t work.
11) MAC (OUI) Database:
Confused on where this MAC came from? well this app will give you full detail on everything you need to know about a MAC address. amazing for information gathering.
12) Network Port Database:
Same as above but this will look up what should be running on a port after doing a port scan.
13) Orbot:
HELLO TOR for mobile. Perfect for staying on the DL (Not really) but it still gives you access to .onion sites witch i love.
14) Shark:
Everyone knows what shark is. Wireshark on your mobile. Make sure you pick up the reader for it too.
15) Network Discovery
Network Discovery is a handy tool for finding and enumerating devices on public WiFi networks. Network Discovery uses a simple ping scan to find hosts on the network, and then allows the user to select one of the found hosts to target for a TCP connect() scan.
16) WiFi Tracker:
I think i paid for this app.. Don’t remember. But perfect for war driving.
17) Anti-Android Network Toolkit:
Anti-Android Network Toolkit is an app that uses WiFi scanning tools to scan networks. You can scan a network you have the phone connected to or you can scan any other nearby open networks. Security admins can use Anti to test network host vulnerabilities to DoS attacks and other threats.
18) Routerpwn:
Routerpwn will try to exploit known vulnerabilities in a router to gain access to the back end of the router without needing a password. This is the first app i go to when needing to get in a cracked router to port forward and what not. works 95% of the time too.
19) Shodan Enum:
looking for SQLi? default logins? webcams? amazing search, I need to say no more.
20) SSHDroid- Android Secure Shell
Secure shell or SSH is the best protocol that provides an extra layer of security while you are connecting with your remote machine.SSHDroid is a SSH server implementation for Android.
This application will let you to connect to your device from a PC and execute commands (like “terminal” and “adb shell”).
21) AndroidVNC:
This really don’t hack anything. The only reason i have this is because i have backtrack on my phone. it allows me to access the GUI of backtrack. Although, i dont ever use the GUI. I command prompt all the time.
22) WiFi Analyzer:
This it awesome for trying to pinpoint an access point to a house or location in the mall, work, whatever. Also has a channel rating so you can pick the best channel for max performance.
23) Router Passwords:
“Wifi Router Passwords 2015” is an app which allows you to discover the default keys and passwords of the best selling WiFi Routers in the world. You forgot the password for your router and now can not access it, with this application now get it easy and in a fast way.
24) Router Bruteforce:
Well this app will brute the routers backend to try gaining access… I haven’t used it because i never needed it… I dont think i would ever spend the time on my phone doing it when i would do it on my computer if i had to… I guess i thought it was neat.
25) Location spoofer:
Will spoof your location to make your phone be anywhere in the world. Spoof to china, post on facebook, Fun way to **** with friends.
26) PiiK:
Another MITM attack, will grab everyones pictures there viewing in a web browser and show you.
27) SMBcheck:
checks the vuln smb_067, like nmap does ( nmap -p445 –script=/usr/share/nmap/scripts/smb-check-vulns.nse 192.168.1.* )
28) Nmap For Android
Nmap is a network scanner tool which gives the entire information of the ip address and website. There is a version of nmap for Android users too, with the help of this app hackers can scan the ip’s through mobiles.
29) MD5Decrypter:
Cracks MD5 Hash…. Just cool. If you really crack a good password with this….let me know, and let me know how many years it took. (app 200 letters a second / computer 20,000 letters a second) It does work though.
30) SSLStrip for android:
Tries to brake down SSL (443) on a network. Good if you know your friend is https on facebook, run that and droid sheep you may have a bite.
31) USB Cleaver:
The goal of the USB Cleaver is to silently recover information from a target Windows 2000 or higher computer, including password hashes, LSA secrets, IP information, etc… beauty lies in the fact that the payload can run silently and without modifying the system or sending network traffic, making it near invisible. It captures all the information to a LOG file stored in your sdcard and can be reviewed at anytime.
32) KSWEB:
Java drive by anyone turns your phone in to a web server host Files on android, use network spoofer to redirect traffic to your link with your virus.
33) NetCut
Netcut, one of most powerful network administrator tool this tool allow admin proof test how can the firewall efficiency handle bad user in local network. By one click from your hand you can test cut any network connection between internet gateway and devices in your local network remotely.
Do you Know? Rooting a phone is naturally best option to unleash the full potential of your Android device. Android Apps which will turn your phone into a Hacking Device required Rooting because rooting a phone bypass security measures that the device’s manufacturer put into place, exposing your phone to any number of potential compromises
The risk of hacking by using mobile devices is very common and people are developing and using different apps (application) for their hacking attack.These Android hacking app requires rooting in your phone so before you go through these apps one should know about rooting which is explaned in this article: How to hack your Android phones using Rooting and ROMSAndroid has faced different challenges from hacking application and below is the list of application for android hacking App
1) Fing:
Fing is a probably best used app for port scanning on a network. It gives a list of services, names, spoof Mac address and much more.
2) DroidSheep:
Droidsheep is a MITM (Man In The Middle) spoof that grabs NON ssl (https,443) cookies of facebook, twitter, etc. accounts and will open there session right on your phone (for all you kittens out there looking to hack facebook, this is as close and easy as it will get)
3) SpoofApp:
Here is an app that spies at heart could use – SpoofApp. It allows you to use a fake Caller ID – a number that you are free to specify yourself, in order to protect your privacy or to pull a prank on someone. Sounds like fun, doesn’t it? Well, Apple didn’t think so, which is why it never allowed the app to enter its App Store. Google, however, didn’t mind, which is why SpoofApp was available on the Android Market for about two and a half years. However, it was banned from there last year as it allegedly was in conflict with The Truth in Caller ID Act of 2009.This can be useful in social engineering.
4)WifiKill:
WifiKill is in our handy handbook. You can read all about it. By the way its not ddosing in anyway. Its a MITM attack that redirects the users connection back to there localhost (127.0.0.1)
5) Network Spoofer:
Network Spoofer is just an amazing app. It will allow you to do MANY ARP, MITM, attacks. It has options like redirecting trafic on a network to any site you want. Change images on the network, custom YouTube Videos, List goes on and on. Defiantly a app worth checking out.
6) Andosid:
AnDOSid is the application which is used for DOS attacks from Android mobile phones.
7) ConnectBot
ConnectBot is an exceptionally well done SSH/Telnet client, which also acts as a terminal emulator for the local Linux sub-system. While there are better terminal emulators (though not for free), there is no question that ConnectBot is the absolute best SSH client available for Android.
8) Exploitdb:
We all should know what Exploit-db is.. if not well its a website ( http://www.exploit-db.com/ ) that gives us a whole boat load of exploits to run in metasploit, etc. all it will do is update us on the new exploit available to take over the world.
9) HTTP ping:
Simple app, nothing bit, test HTTP sites to see if there up or down. Great when you ddos and wanna check really quick.
10) FaceNiff
FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to. It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK). It’s kind of like Firesheep for android. Maybe a bit easier to use (and it works on WPA2!). Please note that if webuser uses SSL this application won’t work.
11) MAC (OUI) Database:
Confused on where this MAC came from? well this app will give you full detail on everything you need to know about a MAC address. amazing for information gathering.
12) Network Port Database:
Same as above but this will look up what should be running on a port after doing a port scan.
13) Orbot:
HELLO TOR for mobile. Perfect for staying on the DL (Not really) but it still gives you access to .onion sites witch i love.
14) Shark:
Everyone knows what shark is. Wireshark on your mobile. Make sure you pick up the reader for it too.
15) Network Discovery
Network Discovery is a handy tool for finding and enumerating devices on public WiFi networks. Network Discovery uses a simple ping scan to find hosts on the network, and then allows the user to select one of the found hosts to target for a TCP connect() scan.
16) WiFi Tracker:
I think i paid for this app.. Don’t remember. But perfect for war driving.
17) Anti-Android Network Toolkit:
Anti-Android Network Toolkit is an app that uses WiFi scanning tools to scan networks. You can scan a network you have the phone connected to or you can scan any other nearby open networks. Security admins can use Anti to test network host vulnerabilities to DoS attacks and other threats.
18) Routerpwn:
Routerpwn will try to exploit known vulnerabilities in a router to gain access to the back end of the router without needing a password. This is the first app i go to when needing to get in a cracked router to port forward and what not. works 95% of the time too.
19) Shodan Enum:
looking for SQLi? default logins? webcams? amazing search, I need to say no more.
20) SSHDroid- Android Secure Shell
Secure shell or SSH is the best protocol that provides an extra layer of security while you are connecting with your remote machine.SSHDroid is a SSH server implementation for Android.
This application will let you to connect to your device from a PC and execute commands (like “terminal” and “adb shell”).
21) AndroidVNC:
This really don’t hack anything. The only reason i have this is because i have backtrack on my phone. it allows me to access the GUI of backtrack. Although, i dont ever use the GUI. I command prompt all the time.
22) WiFi Analyzer:
This it awesome for trying to pinpoint an access point to a house or location in the mall, work, whatever. Also has a channel rating so you can pick the best channel for max performance.
23) Router Passwords:
“Wifi Router Passwords 2015” is an app which allows you to discover the default keys and passwords of the best selling WiFi Routers in the world. You forgot the password for your router and now can not access it, with this application now get it easy and in a fast way.
24) Router Bruteforce:
Well this app will brute the routers backend to try gaining access… I haven’t used it because i never needed it… I dont think i would ever spend the time on my phone doing it when i would do it on my computer if i had to… I guess i thought it was neat.
25) Location spoofer:
Will spoof your location to make your phone be anywhere in the world. Spoof to china, post on facebook, Fun way to **** with friends.
26) PiiK:
Another MITM attack, will grab everyones pictures there viewing in a web browser and show you.
27) SMBcheck:
checks the vuln smb_067, like nmap does ( nmap -p445 –script=/usr/share/nmap/scripts/smb-check-vulns.nse 192.168.1.* )
28) Nmap For Android
Nmap is a network scanner tool which gives the entire information of the ip address and website. There is a version of nmap for Android users too, with the help of this app hackers can scan the ip’s through mobiles.
29) MD5Decrypter:
Cracks MD5 Hash…. Just cool. If you really crack a good password with this….let me know, and let me know how many years it took. (app 200 letters a second / computer 20,000 letters a second) It does work though.
30) SSLStrip for android:
Tries to brake down SSL (443) on a network. Good if you know your friend is https on facebook, run that and droid sheep you may have a bite.
31) USB Cleaver:
The goal of the USB Cleaver is to silently recover information from a target Windows 2000 or higher computer, including password hashes, LSA secrets, IP information, etc… beauty lies in the fact that the payload can run silently and without modifying the system or sending network traffic, making it near invisible. It captures all the information to a LOG file stored in your sdcard and can be reviewed at anytime.
32) KSWEB:
Java drive by anyone turns your phone in to a web server host Files on android, use network spoofer to redirect traffic to your link with your virus.
33) NetCut
Netcut, one of most powerful network administrator tool this tool allow admin proof test how can the firewall efficiency handle bad user in local network. By one click from your hand you can test cut any network connection between internet gateway and devices in your local network remotely.
0 comments:
Post a Comment