Drozer is a popular tool for Android security testing. Below are the basic commands and steps to run Drozer on Kali Linux.
Installing Drozer
If Drozer is not installed on Kali, install it:
sudo apt update
sudo apt install drozer
Alternatively, you can install with pip:
pip install drozer
Start the Drozer Agent on the Android Device
Drozer requires an agent running on the Android device to communicate.
Install and start the Drozer agent on the device:
adb install drozer-agent.apk
adb forward tcp:31415 tcp:31415
adb shell am start -n com.mwr.dz/.Agent
These commands install the agent, forward the port, and start the agent activity on the device.
Connect with the Drozer Client (on Kali)
Start the Drozer client in your Kali terminal:
drozer console connect
If you need to specify the server/port:
drozer console connect --server 127.0.0.1:31415
Once connected, you’ll be inside the Drozer CLI.
Common Drozer Commands
After opening the Drozer CLI, you can run many modules and commands. Examples:
- List installed packages / app info:
run app.package.list
run app.package.info -a com.example.app
run device.get
- List activities:
run app.activity.info -a com.example.app
- List content providers:
run app.provider.info -a com.example.app
- List broadcast receivers:
run app.broadcast.info -a com.example.app
- List services:
run app.service.info -a com.example.app
- Run provider injection scanner (example exploit/test):
run scanner.provider.injection -a com.example.app