Pen-Andro is an open-source tool that is available for free on platforms like Github. It is typically used by security researchers, penetration testers, and developers who want to assess the security of their Android applications or systems.
However, it’s important to note that the use of Pen-Andro or any other penetration testing tool should always be done ethically and with the appropriate permissions from the owners of the systems being tested.
The Pen-Andro Script will automate the process of installing the necessary tools and tasks for Android pentesting, such as moving the Burpsuite certificate, installing the Adb frida server, and APKs such as proxy toggling, proxydroid, and adbwifi.
Usage
- Open Terminal
- Run below command
curl -sL https://tinyurl.com/pen-Android | sudo bash Preconditions
- Burpsuite proxy Running at 127.0.0.1:8080
- Rooted Android device connected via adb (Only one device should be connected)
- Magisk App (It will make installation easy )
- For Android Virtual device – GitHub
- For Genymotion emulator Blog Link
I want to Install :-
curl -sL https://tinyurl.com/pen-Android | sudo bash
Screenshots
Android Apps
- Proxy droid
- ADB wifi
- Proxy Toggle
Pc Tools
- Frida, objection & Frida-Server for Android
- jDax-gui
- Burpsuite Certificate install
- scrcpy
Pen Andro FAQs :
- Burpsuite Error :- Check Proxy tab of Burpsuite at set the proxy as 127.0.0.1 with port 8080
- Root access Error :- Check If your device is Rooted or not (If not confirmed check
- Traffic not intercepting :- Reboot the device after Certificate installtion
- One or more devices conncted :- check with
adb devicesor tryadb kill-server(to remove offline devices)
Download: Pen-Andro
Also Read:
The Best Penetration Testing Tools for Linux
theHarvester: Best Free Penetration Testing Tool in 2023
What is Black-Box Penetration Testing?
