Yaazhini - Free Android APK & API Vulnerability Scanner

Yaazhini is a free vulnerability scanner for android APK and API. It is a user-friendly tool that you can easily scan any APK and API of android application and find the vulnerabilities. Yaazhini includes vulnerability scan of API, the vulnerability of APK and reporting section to generate a report. Yaazhini includes Android APK Scanner and API Scanner

8000+ Downloads

Vooki - Free web application vulnerability scanner.

Prithvi - Report generation tool for Security Assessment.

System Requirements

Operating Systems Mac OSX(64bit), Windows(64bit & 32bit)
RAM Minimum Usage 4GB of available memory. 16GB required for larger Android Apps
Storage 10GB of available disk space
Dependency Software JDK 1.8+

Use website vulnerability scanner for Third Party

If you are a Android application development firm, you can show your clients the security scan reports and prove that you have implemented the proper security tool for security measures in the Android applications and its API.

Yaazhini - Free Android APK & API Vulnerability Scanner

Yaazhini have two modules which are

  • Yaazhini - Free Android Application APK Vulnerability Scanner
  • Yaazhini - Free Android Application REST API Vulnerability Scanner
Yaazhini - Free Android APK & API Vulnerability Scanner

Yaazhini - Android Application APK Scanner

Yaazhini android application is one of our pioneer products which help us to scan the android application APK to scan and find its vulnerabilities which are mistakenly committed by developers. It's easy and free to use.

Android Application APK Scanner

How to use Yaazhini - Android Application APK Scanner

There we have several modules in the Yaazhini tool, we will explain how to use each one of them separately. Follow these steps:

Steps to perform scan

  • Start the Yaazhini application.
  • Provide the project name.
  • Select the android APK file.
  • Click on Upload & Scan button.
  • After the scan gets completed, it will provide all details of vulnerability

Steps to generate report

  • As the scan gets completed it will take you to the main page where you can see details.
  • Right-click on the node of the project you want to generate report.
  • Click on Generate Report.
  • Save the report at preferred location.

Advantages of Yaazhini - Android Application APK Scanner

  • Scan Android APK by just one click.
  • Provide the detail and recommendation of the vulnerabilities.
  • It finds the permissions, activities, recievers and services used in the application .
  • We see the source code of the APK and download it.
  • Generate and save the report at preferred location.

Yaazhini - Android Application Rest API Scanner

Yaazhini REST API scanner is an automated tool to scan and detect vulnerabilities in REST API. It has very useful features which could detect the vulnerabilities with ease.

Android Application Rest API Scanner

How to use Yaazhini - API Scanner

There we have several modules in the Yaazhini API scanner, we will explain how to use each one of them separately. Follow these steps:

Steps to perform scan

  • Start the Yaazhini application.
  • Select the device type.
  • Provide the PORT number for incoming proxy.
  • Click on Next button.
  • Now set the proxy of device to the Yaazhini and traverse through the app
  • Right-click on node appearing on Yaazhini tool and click on the scan.

Steps to generate report

  • As the scan gets completed it will show all the vulnerabilities and its details with recommendation.
  • Right-click on the node on the of the project you want to generate report.
  • Click on Generate Report.
  • Save the report at preferred location.

Advantages of Yaazhini - API Scanner

  • Scan API with ease.
  • It finds the various vulnerabilities available in the API.
  • Provide the detail and recommendation of the vulnerabilities.
  • Generate and save the report at preferred location.

Yaazhini – Android Application Rest API Scanner can help you to find the following attacks

  • SQL Injection
  • Command Injection
  • Header Injection
  • Cross-site scripting – reflected.
  • Cross-site scripting – stored.
  • Cross-site scripting – DOM based.
  • Missing security headers
  • Sensitive Information disclosure in response headers
  • Sensitive Information disclosure in error messages
  • Missing Server Side input Validation
  • Unwanted use of HTTP methods
  • Improper HTTP Response and 50+ more

Sample Reports for Yaazhini

Yaazhini-Android APK Scanner Sample report starts with a quick summary of the findings and risk ratings. Each finding has a detailed explanation in terms of risk and recommendations about the vulnerability. The vulnerabilities are ordered by the risk level.
Get Here: Yaazhini-Android APK Scanner Sample Report.

Yaazhini -Mobile Application Scanner Sample report Sample report starts with a quick summary of the findings and risk ratings. Each finding has a detailed explanation in terms of risk and recommendations about the vulnerability. The vulnerabilities are ordered by the risk level.
Get Here: Yaazhini- Mobile Application Scanner Sample report.