1 Repo
Identifying exported Android activities, services, and content providers to map the application attack surface.
Distinct from Attack Surface Mapping: Specifically targets Android IPC components rather than general internet-facing organizational assets.
Explore 1 awesome GitHub repository matching security & cryptography · Android Component Discovery. Refine with filters or upvote what's useful.
Drozer is a security testing framework for Android applications that operates through an agent-based remote execution model. It combines a client-server command routing system with a device-side agent, enabling security assessments by mapping inter-process communication (IPC) attack surfaces and running dynamic exploit modules directly on Android devices. The framework distinguishes itself through its ability to discover and enumerate exported Android components by analyzing manifest data and crafting Intents to probe for vulnerabilities. It supports content provider query injection to detect
Discovers exported Android components to identify injection entry points for security testing.