1.0.1 / February 16, 2018
(5.0/5) (Learn More</a></div>)
Loading...

Description

HTTP Traffic Interception

App Information HTTP Traffic Interception

  • App Name
    HTTP Traffic Interception
  • Package Name
    hpandro.java.infosec.http
  • Updated
    February 16, 2018
  • File Size
    2.5M
  • Requires Android
    Android 4.1 and up
  • Version
    1.0.1
  • Developer
    hpAndro
  • Installs
    100+
  • Price
    Free
  • Category
    Education
  • Developer
  • Google Play Link

hpAndro Show More...

WebSocket Traffic Interception 1.0.1 APK
hpAndro
WebSocket Traffic Interception
2FA Bypass 1.0 APK
hpAndro
Two-factor authentication (also known as 2FA) is a type (subset)ofmulti-factor authentication. It is a method of confirming auser'sclaimed identity by utilizing a combination of twodifferentfactors: 1) something they know, 2) something they have,or 3)something they are. Mobile-phonetwo-stepauthenticationMobile-phone apps, SMS, and directpushnotifications, etc., are not considered "something you have"andthus are not considered in the multi-factor/two-factorequation.Mobile-phone two-step authentication is more securethansingle-factor password protection but suffers somesecurityconcerns. Phones can be cloned and apps can run on severalphones;cell-phone maintenance personnel can read SMS texts. Notleast,cell phones can be compromised in general, meaning the phoneis nolonger something you and only you have. Your task is to bypassOTPusing different techniques.Yes credentials are admin/admin.
SQLite Database 1.0 APK
hpAndro
SQLite is a popular choice as embedded database softwareforlocal/client storage in application software such as webbrowsers.It is arguably the most widely deployed database engine,as it isused today by several widespread browsers, operatingsystems, andembedded systems (such as mobile phones), amongothers.SQLite hasbindings to many programming languages. Manyapplication usesSQLite database for local data stores in to theapplication itself,but in rooted device it will easy to steal thedatabase records.Your task is to find user account and passwordfrom theapplication.
SQLi 1.1 APK
hpAndro
Just like web applications, Android applications may usetheuntrusted input to construct SQL queries and do so in a waythat'sexploitable.
Information Logs 1.0 APK
hpAndro
Android provides capabilities for an app to outputlogginginformation and obtain log output. Applications cansendinformation to log output using the android.util.Log class.Toobtain log output, applications can execute the logcatcommand.Applications should make sure that they do not sendsensitiveinformation to log output. If the app includes a thirdpartylibrary, the developer should make sure that the library doesnotsend sensitive information to log output. One common solutionisfor an application to declare and use a custom log class, sothatlog output is automatically turned on/off based onDebug/Release.Developers can use ProGuard to delete specific methodcalls. Thisassumes that the method contains no side effects. Yourtask is tofind user id and password find in application log andlogin intothe application.
Content Provider 1.0 APK
hpAndro
A special form of URI which starts with "content://" is assignedtoeach content provider. Any app which knows this URI caninsert,update, delete, and query data from the database of theproviderapp.
User Dictionary Cache 1.0 APK
hpAndro
Information that is cached may become accessible tootherapplications, and certainly becomes accessible if the deviceisfound or stolen by a third party. Words entered by a user viathekeyboard are stored in the Android user dictionary forfutureauto-correction. The user dictionary is available to anyappwithout requiring any permission and this could lead tosensitivedata being leaked.
Broadcast Receiver 1.0 APK
hpAndro
Android apps can send or receive broadcast messages from theAndroidsystem and other Android apps, similar to thepublish-subscribedesign pattern. These broadcasts are sent when anevent of interestoccurs.This app working is to send SMS with theprovided mobilenumber and hardcoded caller id.
Loading...