Information Security News

BrutDroid: Windows Toolkit Automates Android Pentesting Lab Setup (Root, Frida, Burp)

by ·

BrutDroid 2.0 is a powerful, Windows-optimized toolkit designed specifically for Android Studio, streamlining the setup of a mobile penetration testing lab. Built to make Android pentesting effortless, it automates emulator creation, rooting, Frida server setup, and Burp Suite certificate installation. With a vibrant new UI and support for custom Frida scripts, BrutDroid empowers security researchers to focus on testing, not setup. Linux support is coming soon!

Key Features

  • Windows & Android Studio Optimized: Seamlessly integrates with Windows Terminal and Android Studio for a smooth pentesting experience.
  • One-Click Rooting: Automatically roots emulators (API 31, x86_64/arm64) using Magisk and rootAVD, eliminating manual setup.
  • Burp Suite Integration: Simplifies HTTPS traffic interception by installing system-trusted Burp CA certificates via Magisk modules.
  • Custom Frida Scripts: Add and run your own Frida scripts alongside built-in SSL pinning and root detection bypasses.
  • Vibrant New UI: Bold colors, ASCII art animations, and an intuitive CLI make pentesting engaging and efficient.
  • Frida Powerhouse: Easily run Frida server, list apps, and execute scripts for dynamic instrumentation.
  • Tool Installation: One-click deployment of frida-toolsobjectionreflutter, and more.
  • Upcoming Linux Support: Expanding compatibility for Linux users in the next update.

Use

Automating Rooting

  • Select Root Emulator to download and install Magisk, patch the system image with rootAVD, and finalize root setup.
  • Follow prompts to cold boot the emulator and complete Magisk configuration.

Installing Burp Certificate

  • Select Configure Emulator → Install Burp Suite Certificate.
  • Ensure Burp Suite is running on 127.0.0.1:8080 and the emulator proxy is set.
  • BrutDroid automates certificate download, conversion, and installation as a system-trusted CA using the AlwaysTrustUserCerts Magisk module.

Adding Custom Frida Scripts

  • Navigate to Frida Tools → Add Custom Script.
  • Paste your Frida script code, name it (e.g., MyScript.js), and save it to the Fripts directory.
  • Custom scripts appear in the Frida Tools menu (options 6+) and persist across sessions. Default scripts (SSL-BYE.js, ROOTER.js, PintooR.js) are reserved for predefined options.

Running Frida Server

  • Select Run Frida Server to start the Frida server in the background on the emulator.
  • Requires a rooted emulator with Frida server installed (via Configure Emulator → Install Frida Server).

Install

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce

Tags: