Android Penetration Testing Tools

Published on: Mar 7, 2015 @ 12:04 by Matthew Knight
Android Penetration Testing Tools

The following Android apps listed on this page will require a rooted device running Android OS!


Intercepter-NG is a multifunctional network toolkit. It has functionality of several famous separate tools and moreover offers a good and unique alternative of Wireshark for Android.

The main features are

  1. network discovery with OS detection
  2. network traffic analysis
  3. password recovery
  4. file recovery

Download: Intercepter-ng Apk


cSploit is an Android network analysis and penetration suite which aims to offer to IT security experts/geeks the most complete and advanced professional toolkit to perform network security assessments on a mobile device. Once cSploit is started, you will be able to easily map your network, fingerprint alive host’s operating systems and running services, search for known vulnerabilities, crack logon procedures of many tcp protocols, perform man in the middle attacks such as password sniffing, real time traffic manipulation, etc.

These are the available modules in the app:

  1. crack wifi passwords
  2. enumerate local hosts (*)
  3. find vulnerabilities (*)
  4. Inspector
  5. Login Cracker
  6. Packet Forger
  7. MITM

Download: Csploit Apk


zANTI is a comprehensive network diagnostics toolkit that enables complex audits and penetration tests at the push of a button. It provides cloud-based reporting that walks you through simple guidelines to ensure network safety.

zANTI offers a comprehensive range of fully customizable scans to reveal everything from authentication, backdoor and brute-force attempts to database, DNS and protocol-specific attacks – including rogue access points.

Download: zANTI Apk


DroidSQLi is the first automated MySQL Injection tool for Android. It allows you to test your MySQL-based web application against SQL injection attacks.

DroidSQLi supports the following injection techniques:

  1. Time based injection
  2. Blind injection
  3. Error based injection
  4. Normal injection

It automatically selects the best technique to use and employs some simple filter evasion methods.

Download: Droidsqli Apk

WiFi Kill:

Well, with this app you can disable internet connection for a device on the same network. So if someone (anyone) is abusing the internet wasting precious bandwidth for a Justin Bieber video clips you could just kill their connection and stay happy with a full bandwidth just for yourself.


  1. Grabbing traffic, showing websites visited by grabbed device
  2. Showing bytes transferred by grabbed device
  3. Showing network names (NetBIOS names) of devices
  4. Android 4.x only
  5. Tablet friendly!

Pro Version costs $5 via paypal.

Download: Wifikill Apk