Let me know if you have any comments, requests for tutorials, questions, etc. If you notice any mistake, please notify me! DVWA - Username Enumeration & Brute-Forcing Passwords. And sievePWN provides examples of malicious apps which exploit some of sieve’s vulnerabilities.Īlso, I determined each app’s type just by quickly looking at their source code, without testing all of them. ![]() ![]() Weak encryptionvHardcoded encryption keysĭynamic load of codevCreation of world readable or writable filesĮxported Content Providers with insufficient protectionĮxported ServicesvJS enabled in a WebViewĭamn Insecure and vulnerable App for Android (DIVA Android)įIY, sieve can be tested with Drozer for automation. Purposefully Insecure and Vulnerable Android Application (PIIVA) ![]() They are sorted by “last update” date: Appĭamn Vulnerable Hybrid Mobile App (DVHMA) Some are less known that others and I had to dig a little to find them (especially the new ones), so I’m sharing them in case you want to work on your mobile hacking skills. ![]() This is just a quick blog post to share a list of intentionally vulnerable Android apps that you can use for training.
0 Comments
Leave a Reply. |