03
Oct
anti android logo
Last Updated: October 21st, 2011

The days where penetration testers carry around laptops with them to test the security of networks seem to be numbered, with Zimperium's 'Anti' bringing a lot of those tools over from the PC to Android smartphones.

It's been a long time coming, but Anti is now available to download to your phone for free from the Zimperium website. For some strange reason, you will have to install 'AntiCredit' from the Android Market in order to actually use the application effectively by buying credits, meaning that you will have two apps which, essentially, perform the same function.

After you have downloaded and installed Anti from the web (you will first need to enable the installation of 3rd party applications by going to Settings > Applications > Unknown sources), you are prompted to buy AntiCredits in order to actually use many of the features within the app. Once you have downloaded it separately, you can then choose from three tiered plans.

Buying silver credits will allow you to use man-in-the-middle as well as remote exploits. This pack comes with 20 credits (with one credit being used for each exploit) and will put you back $10. If you to choose to upgrade to gold credits, it will cost you $50, and for that you will be able to access additional server cracking dictionaries and use less crowded servers than members using silver. With gold, you will be able to use 150 credits.

anti android local anti device menu anti foreign targets

For those who take penetration testing really seriously, there is also a platinum pack available. This pack contains everything that you get in the gold pack, but gives you access to premium servers which are more reliable than those in the cheaper packs, and will allow you to receive updates before anyone else. If this interest you, then you'd better be prepared to dig deep in to your wallet; for 1000 credits, it will cost you $250.

When you're connected to a wireless network, Anti will begin to scan all of the machines that are connected, and if you run an intrusive scan it can also flag any potential targets with a vulnerable badge. The report generated from the network scan will automatically be sent to the email address that you used to register the app when you first downloaded it, so you can have an extra copy handy in your inbox, even if you choose not to view it on your phone within the application itself.

Once a machine with a vulnerability has been detected, you can select it for more options, and choose to "Attack" through the menu presented to you. Once the application has access to the machine, you can control the attack through various options. If you're using the attack as a proof of concept, you can eject the optical disc currently in the drive, or execute the calculator application.

anti control attack anti scan options anti scan parameters

Other options available include the ability to take a screenshot of whatever is currently being displayed to the user, or even run a custom command through the command prompt. You can also choose to force a shutdown or reboot the machine. If you choose to take a screenshot, the image generated will then be saved on to your phone's SD card for you to view on the device itself, or later if you copy the images over to another machine.

As well as a direct attack on a local machine, you can choose to perform a DoS attack, monitor insecure connections on the network to capture plaintext usernames and passwords, or even execute man-in-the-middle attacks which invoke specific filters to manipulate the network data.

Using the 'Cracker' function, you can select a port on the network to check if your passwords are easily bruteforced, which can help you to stop them from being used in dictionary attacks.

anti notifications anti credits anti penetration testing

Anti will allow you to not only monitor local networks, but also define foreign targets from within the application as well. By typing in a URL, you can determine whether the server located at the given address has any opened ports and is vulnerable to an attack. Like with local machines, you can use the Cracker to test your passwords or trace nodes from the network and have the results displayed on a map.

There's no doubt that Anti is a very, very comprehensive penetration testing application, and to be able to have all of these tools at your disposal from your mobile phone is a great step forward. The interface is easy to navigate and all of the features are accessible without much digging around, but I just don't understand why you have to install a separate application with the sole purpose of buying credits for the main app. Surely it would be a lot easier to simply add a "buy credits" option into the application itself?

If you want to try out Anti for yourself, you can download the .apk file from the Zimperium website for free, so it's well worth a look.

John Thompson
John's been addicted to technology ever since he tinkered with his first custom built PC when he was 10 years old. He's also the proud owner of seven Amazon Kindles, but only because he destroyed the first six.

  • easy9

    yes, finally its here

  • SlimDan22

    It would be awesome if someone ported some of the backtrack tools to android

    • clay

      @slimdan, i believe we saw a working version of aircrack-ng working on android and with packet injection, dont remember where i saw this though. also, you can get backtrack 5 running on a xoom.

      • Nocturnhabeo

        you can get BT5 on a Thunderbolt supposedly as well

  • Norbert

    maybe it was separated because anti app itself can be possibly remove from the market just like what happened to droidsheep. while anticredit app does not have the ability to scan and exploit network and therefore not "violating" the tos, if any.

  • SiliconAddict

    I would have put quotes around "testing" This is a hacker tool pure and simple. Someone who is actually doing testing is most likely going to have a suite of tools on their laptop to do this which are more comprehensive. (God knows I do.) The only reason to have these tools on the go is to snoop on people at Starbucks, Caribou, schools, etc. Period. Anyone who knows anything about security know that before you use such tools you have plans in place for documentation and mapping the network. For a larger network that prob have intrusion detection tools in place you damn well need a project plan in place before a scan. Which means you are planning this out, which means you have more robust tools on your laptop. Nope no use for this other then sniffing around.

  • easy9

    going to try it on my nook when i get to work. everyone there uses the free wifi that my employer gives us because of the dead zone that we work in. no 3g connection available to us at work.

  • TheAndy

    I don't see why you have to buy credits just to do some exploits, I mean christ sure the app is free but it literally is useless without credits, because without them the app doesn't even work.

  • Infosec Pro

    The tool is good for certified security professionals but dangerous in hands of bad guys. It is like a knife. Is a knife good or bad? It depends how to use it.

Quantcast