Vuldroid
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
Vuldroid
A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.
CybersecRadarsGo Beyond the Directory. Track the Entire Market.
Monitor competitor funding, hiring signals, product launches, and market movements across the whole industry.
Vuldroid Description
Vuldroid is a deliberately vulnerable Android application designed for security education and training purposes. The application contains multiple intentionally implemented security vulnerabilities that demonstrate common Android security issues. The application covers eight different vulnerability categories: - Code execution through malicious applications - File theft via WebView using XHR requests - File theft using FileProvider through Intents - Password reset token and magic login link theft - WebView XSS attacks via exported activities - WebView XSS attacks via DeepLink intents - Inter-application communication sniffing - User email extraction via broadcast receivers Users can install the APK file and explore the application to identify and understand how these vulnerabilities manifest in Android code. The tool serves as a practical learning environment for security researchers, developers, and students to study Android security weaknesses in a controlled setting. The application includes Firebase integration for authentication features, and users can configure their own Firebase project by replacing the included google-services.json file with their own project configuration.
Vuldroid FAQ
Common questions about Vuldroid including features, pricing, alternatives, and user reviews.
Vuldroid is A deliberately vulnerable Android application containing multiple security flaws designed for educational purposes and security training.. It is a Application Security solution designed to help security teams with Security Training, Training, Mobile Security.
FEATURED
Fix-first AppSec powered by agentic remediation, covering SCA, SAST & secrets.
Cybercrime intelligence tools for searching compromised credentials from infostealers
Password manager with end-to-end encryption and identity protection features
Fractional CISO services for B2B companies to build security programs
POPULAR
Real-time OSINT monitoring for leaked credentials, data, and infrastructure
A threat intelligence aggregation service that consolidates and summarizes security updates from multiple sources to provide comprehensive cybersecurity situational awareness.
AI security assurance platform for red-teaming, guardrails & compliance
TRENDING CATEGORIES
Stay Updated with Mandos Brief
Get strategic cybersecurity insights in your inbox