Droidsniff – Stealing user’s social credentials

Follow by Email

What is Droidsniff?

DroidSniff was developed as a tool for testing the security of your accounts.
This software is neither made for using it in public networks, nor for hijacking any other persons account.
It should only demonstrate the poor security properties network connections without encryption have.
So do not get DroidSniff to harm anybody or use it in order to gain unauthorized access to any account you do not own! Use this software only for analyzing your own security!

Disclaimer – Our tutorials are designed to aid aspiring pen testers/security enthusiasts in learning new skills, we only recommend that you test this tutorial on a system that belongs to YOU. We do not accept responsibility for anyone who thinks it’s a good idea to try to use this to attempt to hack systems that do not belong to you

Features of Droidsniff

[Added] Support for Reddit
[Added] Check Update with Updater
[Improvement] Actionbar for android below
4.0 with new sexy UI
[Improvement] The session list will not
jump back to the top when the list
refreshed/new session added.
[Improvement] Green tick on the icon will
be showed when you saved a cookie
[Improvement] Arp Spoof Service – Cleaned
up some code and added “killall arpspoof”
[Removed] Pop Up Activity
[Fix] Sniffed Google and Amazon URL

Requirements of Droidsniff

Android 4.1.2 (Atleast)

Access to SuperUser (Rooted Phone)

How to use Droidsniff?

Droidsniff can easily spoof the address of a existing device in the network and it is able to receive all the communications of the the actual device in the network.

Github Link

Step 1 : Download and install apk from the github link above and install it.


Step 2 :  Before connecting to the wifi add the links you want to spoof and the IP address of the Spoof.


Step 3 : Now connect to the wifi network and start spoofing the IP address in the netowork.


Step 4 : Now if you want to open the website click in the link that your are spoofing.


Step 5 : Open the website an you would have found yourself in the actual device’s user account in your device hence the data was spoofed.


Take your time to comment on this article.

Follow by Email


  1. Luis Fer LG 2016-09-27 Reply
  2. Praveen 2017-02-05 Reply
  3. Dia 2017-02-23 Reply
  4. vibhav 2017-04-24 Reply
  5. Apostol Dumitru-Ciprian 2017-04-25 Reply
  6. Thabiso 2017-07-14 Reply
    • ⓢⓝⓘⓟⓔⓡ♣ 2017-08-05 Reply
  7. Cluster 2017-07-28 Reply
  8. Aggelos 2017-10-16 Reply
  9. Anil 2017-10-20 Reply
  10. X-X-1 2017-11-23 Reply
  11. cylon 2018-04-05 Reply

Add a Comment

Your email address will not be published. Required fields are marked *

Like the article? please consider sharing it. Thank you

Advertisment ad adsense adlogger