DroidBox Logo

DroidBox

0
Free
Visit Website

Intro DroidBox is developed to offer dynamic analysis of Android applications. The following information is described in the results, generated when analysis is complete: Hashes for the analyzed package Incoming/outgoing network data File read and write operations Started services and loaded classes through DexClassLoader Information leaks via the network, file and SMS Circumvented permissions Cryptographic operations performed using Android API Listing broadcast receivers Sent SMS and phone calls Additionally, two graphs are generated visualizing the behavior of the package. One showing the temporal order of the operations and the other one being a treemap that can be used to check similarity between analyzed packages. Setup This is a guide to get DroidBox running. The release has only been tested on Linux and Mac OS. If you do not have the Android SDK, download it from http://developer.android.com/sdk/index.html. The following libraries are required: pylab and matplotlib to provide visualization of the analysis result. Export the path for the SDK tools export PATH=$PATH:/path/to/android-sdk/tools/ export PATH=$PATH:/path/to/android-sdk/platform-tools/ Download necessary files and

FEATURES

ALTERNATIVES

Runtime mobile exploration toolkit powered by Frida for assessing mobile app security without jailbreak.

Practical security policy enforcement for Android apps via bytecode rewriting and in-place reference monitor.

A data-mining and deep web asset search engine for breach analysis and prevention services.

Tessian is an AI-powered cloud email security solution that protects against advanced phishing, account compromise, data exfiltration, and helps coach users on email security.

Scans SPF and DMARC records for issues that could allow email spoofing.

An Active Defense framework for detecting and responding to phishing attacks in Office 365 Message Trace logs.

An open-source phishing toolkit for businesses and penetration testers.

A collection of disposable and temporary email address domains used for spamming or abusing services.