Android actually same as other linux Distribution, it just have some speciality (do not say limitability please..) to just run on ARM based device. The backbone is same, Linux Powerfull Kernel. It make me curious, is Android can be able to be an online mobile hacking station?
Then I search on internet, Google mostly, I found a lot of article, there's a lot of people already think about it, and they do not just think, they already make an application too. I'll share with you some apps and thing that I've found on the net for now.
Then I search on internet, Google mostly, I found a lot of article, there's a lot of people already think about it, and they do not just think, they already make an application too. I'll share with you some apps and thing that I've found on the net for now.
ConnectBot
ConnectBot is an open-source SSH client for your Android mobile. With this nifty little app, you can connect to any SSH server located on this planet (and beyond). Features include simultaneous SSH connections, tunneling, and copy/pasting between different applications. There are plenty of other SSH apps, but according to user ratings, this is by far, the best one out there. It has a 5 star rating from about 21,397 users, so go ahead and start connecting.
App Link: https://market.android.com/details?id=org.connectbot
Hacker's Keyboard
A good hacker loves his or her keyboard more than anything else. It's their only weapon, which brings them a notch closer to their goal of world domination. Whether you've just started or have already conquered half of Antarctica, this little app will allow you to use a full-fledged keyboard on your Android tablet or phone. Apart from being a good replacement to the default Android keyboard, Hacker's Keyboard acts as a perfect companion to the aforementioned ConnectBot app. So, you no longer have to worry about mistyping those life-changing commands you tap in the wee hours of the morning.
App Link: https://market.android.com/details?id=org.pocketworkstation.pckeyboard
Android IRC
You have managed to establish that vital SSH connection that shuts off Skynet. You're just a few taps away from becoming a global superhero. And, in the heat of the moment, you forgot the final command! Bummer! What will you do? Of course, like every seasoned Linux user, you'll seek help on IRC. That's where this great app called Android IRC steps in. In this app, you get all the features of a full-fledged IRC client, thus making sure that help is just a tap away. This is by far the best and the most advanced IRC client for Android and undoubtedly it is not free. Go ahead, give it a try.
App Link: https://market.android.com/details?id=com.countercultured.irc&feature=related_apps
Irssi ConnectBot
This is a modified version of the aforementioned ConnectBot app thus allowing users to use Irssi, the popular IRC client on their phones. Irssi ConnectBot is a free application that has managed to get 4 and ½ ratings so far with more than 10000 downloads.
App Link: https://market.android.com/details?id=org.woltage.irssiconnectbot
Touchqode
If you are a compulsive coder, traveling might be a big hurdle in your marathon programming sessions. If you own an Android device, then thanks to this app, your nerdy mind won't be cranky on the bus anymore. Just install this free application and enjoy most of the features of a desktop IDE. Touchqode currently supports Java, HTML, JavaScript, Python, C++, C#, Ruby and PHP. It also has an FTP and SFTP client built in so that you can upload your code instantly.
App Link: https://market.android.com/details?id=com.touchqode.editor&feature=search_result
FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to. It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK).
It’s kind of like Firesheep for android, but maybe a bit easier to use (and it works on WPA2!).
Do note that a rooted phone is required. Please note that if the webuser uses SSL this application won’t work This application due to its nature is very phone-dependent so please let the author know if it doesn’t work for you.
There’s a great video demo of it working here:
Android Network Toolkit
I think this one is enormous. At Defcon, developer Zimperium, a security firm, demonstrated an Android application called the Android Network Toolkit (Anti, for short) that would allow users to exploit unprotected devices on security-free WiFi networks (or networks that they have gained access to).
The firm says the tool’s purpose is for people to find aged exploits and patch them so that “hacking” their network and taking control of devices connected to it isn’t as easy as putting together a 10 piece puzzle. It will allow users to do more than just “find” these exploits, though – you can actually act on them as if you had every intent to cause malintent.
Commands like “man-in-the-middle”, a snooping tool, and “attack” allow users to intercept data and control devices with the push of a button.
Security entities claim some people pay up to $10,000 for this sort of functionality whether it be for internal security testing or for malintent, but Zimperium’s application will be made available for free for non-commercial use and only $10 for a corporate license in the Android market sometime within the next week.
It’s kind of like Firesheep for android, but maybe a bit easier to use (and it works on WPA2!).
Do note that a rooted phone is required. Please note that if the webuser uses SSL this application won’t work This application due to its nature is very phone-dependent so please let the author know if it doesn’t work for you.
There’s a great video demo of it working here:
Android Network Toolkit
I think this one is enormous. At Defcon, developer Zimperium, a security firm, demonstrated an Android application called the Android Network Toolkit (Anti, for short) that would allow users to exploit unprotected devices on security-free WiFi networks (or networks that they have gained access to).
The firm says the tool’s purpose is for people to find aged exploits and patch them so that “hacking” their network and taking control of devices connected to it isn’t as easy as putting together a 10 piece puzzle. It will allow users to do more than just “find” these exploits, though – you can actually act on them as if you had every intent to cause malintent.
Commands like “man-in-the-middle”, a snooping tool, and “attack” allow users to intercept data and control devices with the push of a button.
Security entities claim some people pay up to $10,000 for this sort of functionality whether it be for internal security testing or for malintent, but Zimperium’s application will be made available for free for non-commercial use and only $10 for a corporate license in the Android market sometime within the next week.
The idea is to use Anti to detect weaknesses in a network or machine so that they can be patched or fixed. But even zImperium knows that Anti can cause serious damage in the wrong hands. The company left a note in the app saying,
Please remember, with great power comes great responsibility. Use it wisely.
The Last from this article is the dream of every hacker maybe, a mobile backtrack. This is *not* a native client! This is the chroot + VNC method that we'd been using to get Ubuntu running with Android for a while. The article makes it sound like that's the case, but sadly it's not. However, with the chroot + VNC method we can really run BackTrack 5 on an Android device, and it really does work. This takes some technical skills, and isn't for the non-Linux experienced user.
You can see in this link : http://forum.xda-developers.com/showthread.php?t=1079898.
Yeah it's need a lot of extra skill and time, but if it can run smoothly, why not?
source : http://forum.xda-developers.com/showthread.php?t=1079898, http://www.darknet.org.uk/2011/06/faceniff-taking-firesheep-mobile-sniff-intercept-web-sessions-with-android, http://phandroid.com/2011/08/08/android-app-helps-extract-the-hacker-in-you/, http://www.geekosystem.com/android-hack-app/, http://itpromate.com/2011/08/what-to-be-a-hacker-this-android-app-turns-anyone-into-a-hacker/, http://www.junauza.com/2011/08/best-android-apps-for-geeks.html.
