Quick Android Review Kit Logo

Quick Android Review Kit

0
Free
Visit Website

This tool is designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs. There is no need to root the test device, as this tool focuses on vulnerabilities that can be exploited under otherwise secure conditions. It is capable of creating "Proof-of-Concept" deployable APKs and/or ADB commands, capable of exploiting many of the vulnerabilities it finds. For more options please see the --help command. Results: A report is generated in JSON and can be built into other format types, to change the report type please use the --report-type flag. Installation: With pip (no security checks on requirements): ~ pip install --user qark # --user is only needed if not using a virtualenv ~ qark --help With requirements.txt (security checks on requirements): ~ git clone https://github.com/linkedin/qark ~ cd qark ~ pip install -r requirements.txt ~ pip install . --user # --user is only needed if not using a virtualenv

FEATURES

ALTERNATIVES

A non-profit organization focused on improving the security of software through resources and training.

A collection of resources for securing AWS environments using the CIS Amazon Web Services Foundations Benchmark 1.1

A wargame designed to test your hacking skills and knowledge

A disclosure of a bug found in Twitter's Vine and the process of procuring the source code.

A virtual machine with numerous security vulnerabilities for testing exploits with Metasploit.

A free and open-source deliberately insecure web application for security enthusiasts, developers, and students to discover and prevent web vulnerabilities.

A tool to run YARA rules against node_module folders to identify suspicious scripts

A demonstration site for the Acunetix Web Vulnerability Scanner, featuring intentionally vulnerable PHP code to test web application security.