Vuldroid
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
Vuldroid
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
Vuldroid Description
Vuldroid is a deliberately vulnerable Android application designed for security education and training purposes. The application contains multiple intentionally implemented security vulnerabilities that demonstrate common Android security issues. The application covers eight different vulnerability categories: - Code execution through malicious applications - File theft via WebView using XHR requests - File theft using FileProvider through Intents - Password reset token and magic login link theft - WebView XSS attacks via exported activities - WebView XSS attacks via DeepLink intents - Inter-application communication sniffing - User email extraction via broadcast receivers Users can install the APK file and explore the application to identify and understand how these vulnerabilities manifest in Android code. The tool serves as a practical learning environment for security researchers, developers, and students to study Android security weaknesses in a controlled setting. The application includes Firebase integration for authentication features, and users can configure their own Firebase project by replacing the included google-services.json file with their own project configuration.
Vuldroid FAQ
Common questions about Vuldroid including features, pricing, alternatives, and user reviews.
Vuldroid is A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training. It is a Application Security solution designed to help security teams with Education, XSS, Android Security.
