ini android,Yaazhini - Free Android APK & API Vulnerability Scanner

最新推荐文章于 2023-05-20 09:15:00 发布
最新推荐文章于 2023-05-20 09:15:00 发布
阅读量305 收藏
点赞数
文章标签: ini android

Yaazhini - Free Android APK & API Vulnerability Scanner

Yaazhini is a free vulnerability scanner for android APK and API. It is a user-friendly tool

that you can easily scan any APK and API of android application and find the

vulnerabilities. Yaazhini includes vulnerability scan of API, the vulnerability of APK and

reporting section to generate a report. Yaazhini includes Android APK Scanner and API

Scanner

System Requirements

Operating Systems

Mac OSX(64bit), Windows(64bit & 32bit)

RAM

Minimum Usage 4GB of available memory. 16GB required for larger

Android Apps

Storage

10GB of available disk space

Dependency Software

JDK 1.8+

Use website vulnerability scanner for Third Party

If you are a Android application development firm, you can show your clients the security scan

reports and

prove that you have implemented the proper security tool for security measures in the Android

applications and its API.

Yaazhini - Free Android APK & API Vulnerability Scanner

Yaazhini have two modules which are

Yaazhini - Free Android Application APK Vulnerability Scanner

Yaazhini - Free Android Application REST API Vulnerability Scanner

front.png

Yaazhini - Android Application APK Scanner

Yaazhini android application is one of our pioneer products which help us to scan the android

application APK to scan and find its vulnerabilities which are mistakenly committed by

developers.

It's easy and free to use.

yaazhini_apk.png

How to use Yaazhini - Android Application APK Scanner

There we have several modules in the Yaazhini tool, we will explain how to use each one of them

separately. Follow these steps:

Steps to perform scan

Start the Yaazhini application.

Provide the project name.

Select the android APK file.

Click on Upload & Scan button.

After the scan gets completed, it will provide all details of vulnerability

Steps to generate report

As the scan gets completed it will take you to the main page where you can see

details.

Right-click on the node of the project you want to generate report.

Click on Generate Report.

Save the report at preferred location.

Advantages of Yaazhini - Android Application APK Scanner

Scan Android APK by just one click.

Provide the detail and recommendation of the vulnerabilities.

It finds the permissions, activities, recievers and services used in the

application .

We see the source code of the APK and download it.

Generate and save the report at preferred location.

Yaazhini - Android Application Rest API Scanner

Yaazhini REST API scanner is an automated tool to scan and detect vulnerabilities in REST API. It

has very useful features which could detect the vulnerabilities with ease.

yaazhini_api.png

How to use Yaazhini - API Scanner

There we have several modules in the Yaazhini API scanner, we will explain how to use each one of

them

separately. Follow these steps:

Steps to perform scan

Start the Yaazhini application.

Select the device type.

Provide the PORT number for incoming proxy.

Click on Next button.

Now set the proxy of device to the Yaazhini and traverse through the app

Right-click on node appearing on Yaazhini tool and click on the scan.

Steps to generate report

As the scan gets completed it will show all the vulnerabilities and its details with

recommendation.

Right-click on the node on the of the project you want to generate report.

Click on Generate Report.

Save the report at preferred location.

Advantages of Yaazhini - API Scanner

Scan API with ease.

It finds the various vulnerabilities available in the API.

Provide the detail and recommendation of the vulnerabilities.

Generate and save the report at preferred location.

Yaazhini – Android Application Rest API Scanner can help you to find the following

attacks

SQL Injection

Command Injection

Header Injection

Cross-site scripting – reflected.

Cross-site scripting – stored.

Cross-site scripting – DOM based.

Missing security headers

Sensitive Information disclosure in response headers

Sensitive Information disclosure in error messages

Missing Server Side input Validation

Unwanted use of HTTP methods

Improper HTTP Response and more

Sample Reports for Yaazhini

Yaazhini-Android APK Scanner Sample report starts with a quick summary of

the

findings and risk ratings.

Each finding has a detailed explanation in terms of risk and recommendations about the

vulnerability. The vulnerabilities are ordered by the risk level.

Get Here: Yaazhini-Android APK Scanner Sample

Report.

Yaazhini -Mobile Application ScannerSample report Sample report starts with

a

quick summary of the findings and risk ratings.

Each finding has a detailed explanation in terms of risk and recommendations about the

vulnerability. The vulnerabilities are ordered by the risk level.

Get Here: Yaazhini- Mobile Application Scanner

Sample

report.

自考大三学狗
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
APP测试漏洞扫描工具及在线检测网站
Key_book(句芒安全实验室)
04-06 5840
APP测试漏洞扫描工具及在线检测网站 1.APP在线扫描网站推荐 360显微镜 http://appscan.360.cn/ 特点:免费、无需注册 爱加密 http://www.ijiami.cn/ 特点:免费、需注册 2.APP本地扫描工具 yaazhini 有windos 、mac版本 3.APP敏感信息扫描工具 在线网站:https://www.appscan.io 本地扫描:https...
android-kernel-exploitation:Android内核开发
03-19
Android内核开发 客观的 本次研讨会的目的是开始在Android平台上进行内核漏洞分析和利用。 用法 克隆存储库 git clone https://github.com/cloudfuzz/android-kernel-exploitation ~ /workshop Github页面URL 车间...
Yaazhini 2.0.2(Android APKAPI漏洞扫描器)
05-03
1、 一键即可扫描Android APK文件; 2、 支持扫描Android端应用程序REST API(模拟器或实体设备); 3、 生成格式化扫描报告; 4、 免费使用; 5、 操作简单,界面友好; 使用步骤: 1、 开启Yaazhini应用程序; 2、 输入项目名称; 3、 上传需要扫描的APK文件; 4、 点击“Upload & Scan”(上传&扫描)按钮; 5、 扫描完成之后,我们将会查看到漏洞扫描详细报告; Yaazhini-Android端应用程序REST API扫描功能可以帮助我们发现和识别下列攻击形式: 1、 SQL注入 2、 命令注入 3、 Header注入 4、 跨站脚本XSS 5、 安全Header缺失 6、 响应Header中的敏感信息泄露 7、 错误信息中的敏感信息泄露 8、 服务器端输入验证缺失 9、 禁止使用的HTTP方法 10、不正确的HTTP响应等等
Android APKAPI漏洞扫描器
哆啦安全
05-03 2970
Android APKAPI漏洞扫描器
Arachni
weixin_34007020的博客
12-06 1087
Arachni是一个多功能、模块化、高性能的Ruby框架,旨在帮助安全测试人员和管理员评估web应用程序的安全性。同时Arachni开源免费,可安装在windows、linux以及mac系统上,并且可导出评估报告。一、Arachni下载与启动,以LInux环境为例下载地址:http://www.arachni-scanner.com/download/解压文件arachni-...
Acunetix Web Vulnerability Scanner-v15.0.221007170 Win版
10-29
AWVS是一款常用的漏洞扫描工具,全称为Acunetix Web Vulnerability Scanner,它能通过网络爬虫测试你的网站安全,检测流行安全漏洞,大大提高了渗透效率。
clair-scanner:Docker容器漏洞扫描
02-02
克莱尔扫描仪Docker容器漏洞扫描当您使用容器(Docker)时,您不仅要打包应用程序,还要打包OS的一部分。 了解容器中可能存在哪些类型... clair-scanner执行以下操作: 针对Clair服务器扫描图像将漏洞与白名单进行比较
Android代码-lockbox-android
08-06
Firefox Lockbox for Android The Android application repository for Firefox Lockbox. Documentation This is just one component of the Firefox Lockbox product. Please see the Firefox Lockbox website for ...
sonar-scanner
01-30
SonarScanner 分析的结果包括了多种指标,如 Bug、Code Smell、Vulnerability、Complexity 等,这些都是 SonarQube 用来评估代码质量的重要维度。每个指标都有其特定含义,有助于团队理解代码健康状况。 **7. 插件...
Yaazhini Setup 0.0.6.exe
11-01
Yaazhini工具用于扫描Android APKAPI中的安全漏洞 API扫描功能可以帮助我们发现和识别下列攻击形式: 1、 SQL注入 2、 命令注入 3、 Header注入 4、 跨站脚本XSS 5、 安全Header缺失 6、 响应Header中的敏感信息泄露 7、 错误信息中的敏感信息泄露 8、 服务器端输入验证缺失 9、 禁止使用的HTTP方法 10、不正确的HTTP响应等等
Yaazhini Setup 0.0.7.exe
04-04
Yaazhini是一款针对Android APKAPI的免费漏洞扫描工具,这款工具提供了用户友好的操作界面,广大移动端安全研究人员可以在Yaazhini的帮助下,轻松扫描任何Android应用程序的APK文件以及API接口,而且Yaazhini还会给你提供非常丰富的扫描结果数据。
如何使用Yaazhini扫描Android APKAPI中的安全漏洞
systemino的博客
06-21 1065
Yaazhini是一款针对Android APKAPI的免费漏洞扫描工具,这款工具提供了用户友好的操作界面,广大移动端安全研究人员可以在Yaazhini的帮助下,轻松扫描任何Android应用程序的APK文件以及API接口,而且Yaazhini还会给你提供非常丰富的扫描结果数据。PHP大马 工具下载 Windows版本:【点我下载】(98.7MB) macOS版本:【点我下载】(75...
Yaazhini扫描Android APKAPI教程
weixin_44155363的博客
06-14 2743
Yaazhini的优势 1、 一键即可扫描Android APK文件; 2、 支持扫描Android端应用程序REST API(模拟器或实体设备); 3、 生成格式化扫描报告; 4、 免费使用; 5、 操作简单,界面友好; APK扫描功能演示: 使用步骤: 1、 开启Yaazhini应用程序; 2、 输入项目名称; 3、 上传需要扫描的APK文件; 4、 点击“Upload & Scan”(上传&扫描)按钮; 5、 扫描完成之后,我们将会查看到漏洞扫描详细报告; 部分扫描结果展示如下:
全网最简单的shiro教程第四节
散步的博客
04-12 231
Shiro认证流程分析以及源码介绍: 使用代码实现了Shiro认证流程,根据代码可以用一个简单的流程图将认证流程表达出来【这样就非常容易理解】 一顿操作猛如虎,,,,,, 为何调用了login方法最后会调用Realm的doGetAuthenticationInfo操作呢? 接下来咱们就去看源码怎么关联的: 点进去看实现类: 接着往下点: 点点点: 点点点: 点点点: ...
如何扫描jar中controller_如何使用Yaazhini扫描Android APKAPI中的安全漏洞
weixin_35598388的博客
11-29 165
Yaazhini是一款针对Android APKAPI的免费漏洞扫描工具,这款工具提供了用户友好的操作界面,广大移动端安全研究人员可以在Yaazhini的帮助下,轻松扫描任何Android应用程序的APK文件以及API接口,而且Yaazhini还会给你提供非常丰富的扫描结果数据。工具下载Windows版本:【https://www.vegabird.com/yaazhini/】(98....
ini android,Yaazhini::一款免费的Android APKAPI漏洞扫描器
weixin_35412669的博客
05-29 515
Yaazhini是一款针对Android APKAPI的免费windows:https://www.vegabird.com/yaazhini/macOS:https://www.vegabird.com/yaazhini/系统要求操作系统:macOS(64位),Windows(64位 & 32位)运行内存:最小运行内存为4GB,建议运行内存为16GB(针对大型Android项目)磁盘空...
[1198]ApkScan-PKID 查壳工具
最新发布
周小董
05-20 2568
1、壳的功能:壳最本质的功能就是实现加载器,壳是指在一个程序的外面再包裹上另外一段代码,保护里面的代码不被非法修改或反编译的程序。
Android静态漏洞安全检测
阳光灿烂的日子的博客
11-10 895
Android静态漏洞安全检测 https://blog.csdn.net/u013107656/article/category/6257625 Android 安全测试思路总结(攻击面) https://blog.csdn.net/u010651541/article/details/53142252 ...
Android系统漏洞检测和利用方法的研究与实现.pdf
06-20
为了应对这些挑战,作者提出了VTS( Vulnerability Testing System),一个专门针对Android系统漏洞检测的工具设计。VTS的需求分析阶段着重考虑了工具的功能需求,如漏洞扫描、漏洞分类、风险评估和报告生成等功能,...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值