Android as a pentesting platform

android unzippedSo you want to use your android device as a penetration testing platform. Maybe pulling a laptop out and hacking away is too obvious and you need to be a bit more surreptitious. You might just want to impress your friends with some awesome phone wizardry. Regardless of your reasoning I’m hoping this article may help you achieve this.

Firstly a note about root – The majority of apps in this article require it, I am going to assume you already have root on your device, along with SU and busybox. If you don’t and you want to know how I would ask around on XDA. I highly recommend rooting your phone, aside from being able to run apps like this you have much more control, some of the custom ROMS available can double your battery life, speed up your phone and much more.

Available apps – There seem to be relatively few apps for android with penetration testing in mind, however there are a few, here is a list of some of the ones I have found that could be useful in this situation. This is by no means a complete list, some of the tools have counterparts which are equally as good, have more or less features or are just different. There are new apps released daily, updates constantly, this should serve as a quick reference, something to get you started.

Arpspoof – As the name implies it’s a simple arp spoofer, not much to say here, type in an IP, start spoofing!
Network Info II
– A whole collection of information on your device, WIFI info, bluetooth, GPS. Small and simple to quickly check settings
Fake GPS
– Again as the name says a GPS location spoofer
Routerpwn
– Local and remote exploits against common routers, for bypassing router logins and settings, sometimes information disclosure.
Shark
& Shark Reader
– Wireshark for you Android a must have tool, let it run and you can read the .pcap there and then or take it home for further analysis.
SSLStrip
– SSL strip for android, not much else to it.
Full Wifi
– Makes it possible/easier to connect to and access different type of wireless networks (more than default)
Fing
– Personally my fave tool, great for both discovery and monitoring on an network with all the tools you’ll need to do so.
Network Discovery
– Very similar to fing only simpler with less features, I tend to use this for a quick scan and banner grab.
Droidsheep
& Faceniff – Both of these are session hijacking tools, both great to use.
Network Spoofer
– A fantastic ARP spoofer with some excellent (mostly funny) filters, similar to ettercap.
Linux Installer
– Quite simply helps you to install a mountable Linux partition (Debian or ubuntu) inside your android device, from here you can run all the tools you are used to. netcat, metasploit, aircrack-ng suite, nmap, etc.

There are many more and variations on these it’s a case of keep hunting and trying different apps. Having Linux on your phone is great although can be difficult to type, I have found that easier with the hackers keyboard app and would be even easier with a bluetooth keyboard (albeit not very stealthy)

I guess it depends on what you want to do, of course a laptop will be easier, generally have more processing power, quicker input methods and a bigger screen, but having the ability to pentest wherever you are on a device you carry with you at all times (at least I do) is just another useful tool to add to your arsenal.

3 thoughts on “Android as a pentesting platform

  1. Pingback: Daniel Beaulieu

  2. Oh my goodness! Awesome article dude! Thanks, However I am encountering issues with your RSS.
    I don’t know why I can’t join it. Is there anybody else
    having identical RSS issues? Anybody who knows the
    answer will you kindly respond? Thanx!!

Leave a Reply