Using ANDROHACKBAR, a mobile application, Android devices can now be used to perform SQL injections, test XXS holes and determine site security.
ANDROHACKBAR is an Android application which performs similar to the Mozilla Firefox’ plug-in Hackbar. However, instead of the Hackbar, the ANDROHACKBAR is not a test tool. It can actually execute standard exploits against web sites.
SQL Injection refers to an injection attack wherein an attacker can execute malicious SQL statements, or commonly referred to as a malicious payload, that can control a web application’s database server. Since an SQL Injection vulnerability could possibly affect any website or web application that makes use of an SQL-based database, the particular vulnerability is one of the oldest, most prevalent and most dangerous of web application vulnerabilities.
The ANDROHACKBAR can perform MD5/SHA1/SHA256 hashing, affect MySQL/MS SQL Server/Oracle and perform XSS useful functions.
The ANDROHACKBAR can be installed by running the following APK files:
Andro Hackbar Android (4.4 and earlier version)
Andro Hackbar (Android 5.0+)
Surprisingly, the provided APK files could not be detected as malicious by mobile anti-virus programs such as virustotal.
Whether the purpose of the user is to maliciously use the Android application, or to simply perform site tests, the ANDROHACKBAR is a good and simple application to start with when it comes to breaching the structure of a website and so forth.