|
2FA - OTP Brute-Force 2
|
Authentication |
100 |
|
|
2FA - OTP Brute-Force
|
Authentication |
100 |
|
|
2FA - OTP Leakage
|
Authentication |
100 |
|
|
Backdoor1
|
Miscellaneous |
100 |
|
|
SSAID/ANDROID_ID
|
Device ID |
100 |
|
|
2FA - Integrity Validation
|
Authentication |
100 |
|
|
2FA - Status Code Manipulation
|
Authentication |
100 |
|
|
2FA - Response Manipulation
|
Authentication |
100 |
|
|
Su Exists
|
Root Detection |
100 |
|
|
Su Binary
|
Root Detection |
100 |
|
|
BusyBox Binary
|
Root Detection |
100 |
|
|
Dangerous Props
|
Root Detection |
100 |
|
|
Test Keys
|
Root Detection |
100 |
|
|
Root Management Apps
|
Root Detection |
100 |
|
|
isDebugger Connected
|
Anti-Debugging |
100 |
|
|
3DES
|
Symmetric Encryption |
100 |
|
|
Encoding - Hashing
|
Web Application |
100 |
|
|
Login bypass
|
Web Application |
100 |
|
|
SQL Injection
|
Content Providers |
100 |
|
|
File System Expose
|
Content Providers |
100 |
|
|
Blowfish
|
Symmetric Encryption |
100 |
|
|
RC4
|
Symmetric Encryption |
100 |
|
|
DES
|
Symmetric Encryption |
100 |
|
|
Web Socket Secure (WSS)
|
WebSocket Traffic |
100 |
|
|
Web Socket (WS)
|
WebSocket Traffic |
100 |
|
|
Default Credentials
|
Web Application |
100 |
|
|
HTML5 Controls
|
Web Application |
100 |
|
|
SHA1
|
Hashing |
100 |
|
|
MD5
|
Hashing |
100 |
|
|
MD4
|
Hashing |
100 |
|
|
Caesar Cipher
|
Encryption |
100 |
|
|
WTF Logs
|
Logs |
100 |
|
|
Verbose Logs
|
Logs |
100 |
|
|
Debug Logs
|
Logs |
100 |
|
|
Warnings Logs
|
Logs |
100 |
|
|
Error Logs
|
Logs |
100 |
|
|
Informational Logs
|
Logs |
100 |
|
|
UDP Traffic
|
Non-HTTP Traffic |
100 |
|
|
TCP Traffic
|
Non-HTTP Traffic |
100 |
|
|
HTTPS Traffic
|
HTTP Traffic |
100 |
|
|
HTTP Traffic
|
HTTP Traffic |
100 |
|
|
Sanity Check Flag
|
Sanity Check |
0 |
|