What is Yaazhini ?

What is Yaazhini ?

Yaazhini is the vulnerability scanner for android application APK and REST api service. This tool is widely used in many corporate companies to find vulnerabilities.

Why Yaazhini?

  1. Easy to use
  2. Scans android APK and Rest API
  3. Scan Android APK by just one click
  4. Scan Android Application REST API (emulator, device)
  5. Most and major vulnerabilities are covered
  6. Provides Vulnerability Details
  7. Generates Vulnerability Report
  8. Vulnerability and Risk level is provided
  9. Generates report and more
 In Yaazhini we have two sections Yaazhini - Android Application APK ScannerYaazhini - Android Application API ScannerThese two section have separate facilities which gives boost to security and shows exact vulnerability.

Yaazhini - Android Application APK Scanner
      In the APK scanner we have to upload the .apk file and click on scan, it automatically scans and displays all vulnerabilities  available in the APK file.

Facilities of Yaazhini - Android Application APK Scanner
  1. Reverse Engineer the APK
  2. Shows all file like Android manifesto
  3. Can download source code
  4. Finds vulnerability of APK and other files
  5. Generates the report and more
Yaazhini - Android Application API Scanner
      In this API scanner of yaazhini tool captures all request passing from device or  emulator and send to yaazhini tool and later it scan for vulnerability and displays vulnerabilities.
      
Facilities of Yaazhini - Android Application API Scanner
  1. Intercept request from Android device and also from emulator
  2. Uses the OWASP top 10 standard
  3. Finds major vulnerabilities available in the API
  4. Generate reports and more
List of Vulnerabilities Covered in Yaazhini Android Application REST API Scanner
  1. SQL Injection
  2. Command Injection
  3. Header Injection
  4. Cross-site scripting – reflected
  5. Cross-site scripting – stored
  6. Cross-site scripting – DOM based
  7. Missing security headers
  8. Malicious JS script execution
  9. Using components with known vulnerabilities
  10. JQuery Vulnerabilities
  11. Angularjs Vulnerabilities
  12. Bootstrap Vulnerabilities
  13. Sensitive Information disclosure in response headers
  14. Sensitive Information disclosure in error messages
  15. Missing Server Side Validation
  16. JavaScript Dynamic Code Execution
  17. Sensitive Data Exposure and more

    • Related Articles

    • Yaazhini Vulnerability Report Generation

      Vulnerability generating report is very important for any developers for better development of their site security. Generating a clear vulnerability report helps us to find the statistics, loopholes stuffs of the vulnerabilities in an organization ...
    • How to perform API scan in Yaazhini

      API Scanner In some ways, the most valuable asset your company owns is your data. Threats to that data have to be identified and it should be eliminated so you don’t put that data at risk. This is why security testing is so important. Application ...
    • How to use Yaazhini Android Application REST API Scanner ?

      Hey guys,       This is another post for the Yaazhini tool, today we will the another module of the Yaazhini. In this Android Application REST API Scanner we will capture the API request from the android device or the emulator and scan it for the ...
    • How to use Yaazhini Android Application APK Scanner ?

      Hello friends,       In the Yaazhini application we have two separate modules from which today we will discuss about the Yaazhini Android Application APK Scanner. Yaazhini tool for APK scanner will help you to scan all vulnerabilities in APK file in ...
    • Mobile app security testing tutorial (Android Application APK Tutorial)

      Yaazhini, one of the best mobile app free vulnerability finding tool. Here is the security testing tutorial video for APK. Steps to perform scan·        Start the Yaazhini application. Provide the project name. Select the android APK file. Click on ...