It has been denounced by FBI and the U.S. Department of Homeland Security cybersecurity experts: It could arrive from Russian Ryuk ransomware gang.
Android mobile phone and tablet are constantly under cyber attacks
Android mobile phones and tablets are constantly under cyber attacks. In part because of the characteristics of their operating system. In part because on the web there is an explosion of applications, which allow even the less experienced to try to hack them. Thechincidents published a complete list of Android Hacking APP, that makes hacking Easy.
From SpoofApp to Faceniff
SpoofApp is a Caller ID Spoofing, Voice Changing and Call Recording mobile app for your iPhone, BlackBerry, and Android phone. It’s a decent mobile app to help protect your privacy on the phone. However, it has been banned from the Play Store for allegedly being in conflict with The Truth in Caller ID Act of 2009. Andosid is a DOS tool for Android Phones that allows security professionals to simulate a DOS attack (an HTTP post flood attack to be exact) and a DDoS on a web server, from mobile phones. Faceniff instead allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to. It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks.
From Nmapper to SSHDroid
Nmapper (aka Network Mapper) is a security scanner originally written by Gordon Lyon used to discover hosts and services on a computer network, thus creating a “map” of the network. To accomplish its goal, Nmapper sends specially crafted packets to the target host and then analyses the responses. Anti-Android Network Toolkit (aka zANTI) is a comprehensive network diagnostics toolkit that enables complex audits and penetration tests at the push of a button. It provides cloud-based reporting that walks you through simple guidelines to ensure network safety. SSHDroid finally is an SSH server implementation for Android. This application will let you connect to your device from a PC and execute commands (like “terminal” and “adb shell”) or edit files (through SFTP, WinSCP, Cyberduck, etc).
From WiFi Analyser to dSploit
WiFi Analyser turns your android phone into a Wi-Fi analyzer. Shows the Wi-Fi channels around you. Helps you to find a less crowded channel for your wireless router. Network Discovery discover hosts and scan their ports on your Wifi network. A great tool for testing your network security. ConnectBot is a powerful open-source Secure Shell (SSH) client. It can manage simultaneous SSH sessions, create secure tunnels, and copy/paste between other applications. This client allows you to connect to Secure Shell servers that typically run on UNIX-based servers. The dSploit Android network analysis and penetration suite offering the most complete and advanced professional toolkit to perform network security assessments on a mobile device.
From Hackode to DroidBox
The hacker’s Toolbox Hackode is an application for penetration tester, Ethical hackers, IT administrator and Cybersecurity professional to perform different tasks like reconnaissance, scanning performing exploits etc. Androrat Remote instead is am Administration Tool for Android. Androrat is a client/server application developed in Java Android for the client side and in Java/Swing for the Server. APKinspector is a powerful GUI tool for analysts to analyze the Android applications. The goal of this project is to aid analysts and reverse engineers to visualize compiled Android packages and their corresponding DEX code. DroidBox finally is developed to offer dynamic analysis of Android applications.
From Burp Suite to Shark for Root
Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application’s attack surface, through to finding and exploiting security vulnerabilities. DroidSheep can be easily used by anybody who has an Android device and only the provider of the web service can protect the users. So Anybody can test the security of his account by himself and can decide whether to keep on using the web service. AppUse (Android Pentest Platform Unified Standalone Environment) is a unique, free, platform for mobile application security testing in the Android environment, and it includes unique custom-made tools created by AppSec Labs. Shark for Root is a traffic sniffer works on 3G and WiFi (works on FroYo tethered mode too). To open dump.
From Fing toWifiKill
Fast and accurate, Fing is a professional App for network analysis. A simple and intuitive interface helps you evaluate security levels, detect intruders and resolve network issues. Drozer enables you to search for security vulnerabilities in apps and devices by assuming the role of an app and interacting with the Dalvik VM, other apps’ IPC endpoints and the underlying OS. drozer provides tools to help you use and share public Android exploits. It helps you to deploy a drozer agent by using weasel – MWR’s advanced exploitation payload. WifiKill is an APP which can kill connections and kick site-hoggers from the site. This app definitely kicks then net user from the site so he cannot use it anymore. It also offers the list of viewed sites by the hogger.
From DroidSniff to WhatsAPI
Similar to DroidSheep but with a newer and nicer interface is DroidSniff – sniffing app not only on Facebook. This app shows you what is the hogger looking for and then you can “take” his control, steal the cookies and rock’n’roll. Works perfectly. Network Spoofer is very similar to dSploit but it’s easier to use. The only hitch is that you need to have at least 500MB of free data. It offers you a lot of troll features – change Google searches, flip images, redirect websites, swap YouTube videos and others. Droid SQLI allows you to test your MySQL based web application against SQL injection attacks. It supports the following injection techniques: Time based injection, blind injection, error based injection, normal injection. Sqlmapchik is a cross-platform sqlmap GUI for the extremely popular sqlmap tool. Whatsapp viewer is a simple forensic tool. It gives the access to WhatsApp chat directly from SQLite databases, even from encrypted databases. WhatsAPI finally is a platform that allows you to send bulk messages through PHP. The script itself is simple.