BrutDroid: Windows Toolkit Automates Android Pentesting Lab Setup (Root, Frida, Burp)

BrutDroid 2.0 is a powerful, Windows-optimized toolkit designed specifically for Android Studio, streamlining the setup of a mobile penetration testing lab. Built to make Android pentesting effortless, it automates emulator creation, rooting, Frida server setup, and Burp Suite certificate installation. With a vibrant new UI and support for custom Frida scripts, BrutDroid empowers security researchers to focus on testing, not setup. Linux support is coming soon!

Key Features

• Windows & Android Studio Optimized: Seamlessly integrates with Windows Terminal and Android Studio for a smooth pentesting experience.
• One-Click Rooting: Automatically roots emulators (API 31, x86_64/arm64) using Magisk and rootAVD, eliminating manual setup.
• Burp Suite Integration: Simplifies HTTPS traffic interception by installing system-trusted Burp CA certificates via Magisk modules.
• Custom Frida Scripts: Add and run your own Frida scripts alongside built-in SSL pinning and root detection bypasses.
• Vibrant New UI: Bold colors, ASCII art animations, and an intuitive CLI make pentesting engaging and efficient.
• Frida Powerhouse: Easily run Frida server, list apps, and execute scripts for dynamic instrumentation.
• Tool Installation: One-click deployment of frida-tools, objection, reflutter, and more.
• Upcoming Linux Support: Expanding compatibility for Linux users in the next update.

Use

• Select Root Emulator to download and install Magisk, patch the system image with rootAVD, and finalize root setup.
• Follow prompts to cold boot the emulator and complete Magisk configuration.

• Select Configure Emulator → Install Burp Suite Certificate.
• Ensure Burp Suite is running on 127.0.0.1:8080 and the emulator proxy is set.
• BrutDroid automates certificate download, conversion, and installation as a system-trusted CA using the AlwaysTrustUserCerts Magisk module.

• Navigate to Frida Tools → Add Custom Script.
• Paste your Frida script code, name it (e.g., MyScript.js), and save it to the Fripts directory.
• Custom scripts appear in the Frida Tools menu (options 6+) and persist across sessions. Default scripts (SSL-BYE.js, ROOTER.js, PintooR.js) are reserved for predefined options.

• Select Run Frida Server to start the Frida server in the background on the emulator.
• Requires a rooted emulator with Frida server installed (via Configure Emulator → Install Frida Server).

Install

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Buy Me a Coffee PayPal Crypto

USDT (TRC20):

TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm Copy

USDT (ERC20):

0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce Copy