An android application which exploits sieve through android components.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
sievebypass Update apps Feb 15, 2016
sievedt
sieveleak
sievesqli
README.md Update README.md Sep 17, 2017

README.md

sievePWN

Sieve, which is created from MWR labs(https://labs.mwrinfosecurity.com/system/assets/380/original/sieve.apk), is ‘Password Manager’ App, showcasing some common Android vulnerabilities.

SievePWN is set of android applications which are used to exploit sieve application through android components. The SievePWN include the followings:

####Sievebypass

  • Bypass sieve authentication by direct accessing the exported Activity component.

####Sievedt

  • Exploit content providers component using Directory Traversal Technique through ParcelFileDescriptor openFile.

####Sieveleak

  • Exploit exported component through content providers.

####Sievesqli

  • Exploit content providers component through SQL Injection.

Contribution

Your contributions and suggestions are welcome.

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License