Sniffer, Spoofer & Portscanner

It's not necessarily an evil intention behind these actions: it's fully legit to check your own network for possible vulnerabilities. Maybe some intruder is already inside? Or there's some service running that shouldn't be? Did the admin forget to close some port in the firewall?

From scanning foreign networks without explicit permission you should refrain, though. Not only this could trigger some (false?) alert (as nobody would have expected your action), but also could have legal consequences. Oh: and don´t forget to be aware of „sniffers“ riding piggy-back on the apps (ad/analytics modules calling home)

In case those words don't mean anything to you, some short explanations:

Sniffing: intercept and log traffic passing over a digital network
Spoofing: pretend to be someone/something different than you are (masquerade as another by falsifying data)
Portscan: Looking for the "open barn door" (which ports are open?)

Network Sniffer

2019-06-14

Postern (4.5@5,486) 4 $Contains no known trackers \o/$
Sniffer Proxymon SSL [ROOT] (4.3@264) Ǥ 9 $Contains no known trackers \o/$ transparent proxy
Packet Capture (4.2@3,573) Ǥ 7
Debug Proxy (4.1@333) Ǥ 7 transparent proxy
Sniffer Wicap 2 Demo (4@1,670) Ǥ 12 $Contains no known trackers \o/$ / Sniffer Wicap 2 Pro (4.7@240; ~EUR 13.00) Ǥ 12
WiFinspect [Root] (3.8@5,962) 7 $Contains no known trackers \o/$ LastUpdate: 2015-05-16
tPacketCapture (3.7@1,182) 3 $Contains no known trackers \o/$ LastUpdate: 2015-02-06 / tPacketCapture Pro (4@35; ~EUR 9.00) 3 LastUpdate: 2015-02-06 Video Demo 3/2012
TestelDroid (3.6@16) 8 $Contains no known trackers \o/$ LastUpdate: 2017-03-27
RRCpacketSniffer (2.4@11) 3 LastUpdate: 2015-11-30
NetCloud (0@0) 4 Github; proxy and package capturer
k3pler proxy (0@0) 2 $Contains no known trackers \o/$ Github; network connection blocker and packet analyzer

Network Spoofer

2019-06-14

Change My Mac Lite (4.3@743) Ǥ 9 / Change My MAC - Spoof Wifi MAC (4.3@4,737) Ǥ 10
Wi-Fi Privacy Police (4.2@1,208) 5 LastUpdate: 2016-10-08 Github; Vorstellung 1/2015; protects against WiFi tracking
Device ID Masker Free [Xposed] (4.2@24) 7 / Device ID Masker Pro [Xposed] (4@160; ~EUR 2.75) Ǥ 11 requires XPosed framework
Device Emulator (4.1@566) 6 requires XPosed framework
[root] Pry-Fi (3.9@6,734) Ǥ 10 $Contains no known trackers \o/$ LastUpdate: 2014-02-17 Vorstellung 2/2014 | 2/2014; Intro 2/2014; Test 3/2014; protects against being WiFi-sniffed
MACCHANGER MEDIATEK (3.9@11) 7 LastUpdate: 2016-06-28
Wifi Mac Changer (3.8@8,756) 5
MacSpoofer ALPHA version (3.7@249) 4 $Contains no known trackers \o/$ LastUpdate: 2013-12-26
ID Changer Exposed [No Reboot] (3.7@116) Ǥ 14 LastUpdate: 2017-07-02 IMEI, AndroidID, MACs
Device Id IMEI Changer Xposed (3.6@2,191) 8 LastUpdate: 2017-03-18 change IDs shown to current WiFi
WiFi Spoofer (3.2@476) 3 LastUpdate: 2015-08-10
Ghost Phone (3.2@297) 4 / GhostPhonePro (2.1@8; ~EUR 1.00) 4 MediaTek IMEI/MAC changer
Network Ghost (0@0) 3 LastUpdate: 2016-09-01 Github; randomize MAC addresses

Port Scanner

2019-06-14

NetX Network Tools (4.5@7,285) 10 $Contains no known trackers \o/$
Network Scanner (4.5@6,332) Ǥ 8
SharesFinder (4.4@1,170) 6 $Contains no known trackers \o/$ LastUpdate: 2013-07-20 scanning wireless local networks for shared resources (SMB, FTP, HTTP) and accessing them
Port Authority - LAN Host Discovery & Port Scanner (4.4@544) 3 $Contains no known trackers \o/$ / Port Authority (0@0) 3 $Contains no known trackers \o/$ Github
Network Tool (4.4@110) Ǥ 5
Network Scanner (4.3@15,288) Ǥ 9
Net Scan (4.3@7,938) Ǥ 8
PortDroid Network Analysis (4.3@602) Ǥ 5
Angry Port Scanner (4.3@520) Ǥ 6
Network Mapper (4.3@258; ~EUR 1.25) 7 $Contains no known trackers \o/$
Network Tools Library Sample (4.3@14) 1 $Contains no known trackers \o/$ Github; ping, WOL, portscan
Network IP Scanner (4.2@1,863) Ǥ 7
TCP Port Scanner (4@4) 3 $Contains no known trackers \o/$
Port Scanner (3.9@1,389) 4 / Port Scanner Donate (3.9@9; ~EUR 3.00) 4 $Contains no known trackers \o/$
CCTV Port Scanner (3.9@664) Ǥ 5
DanPortScan (Net Port Scanner) (3.9@7) 1 LastUpdate: 2017-03-30
Port Scanner (3.8@76) 2 LastUpdate: 2016-08-29
NDroidMap (3.8@61) 4 $Contains no known trackers \o/$ NMap frontend
NetMon: Network Scanner & Port Monitor (3/4G/WiFi) (3.8@21) 5
devolo NetScanner (3.7@176) 6
UDP Port Scanner Beta (3.6@160) 3 LastUpdate: 2016-08-02
Port Scanner (3.3@15) 2 LastUpdate: 2016-08-13

Protection agains WiFi attacks

2019-06-20

ARP Guard (WiFi Security) (4.5@7,216) Ǥ 13
NetCut (4.2@57,418) Ǥ 10
WiFi ARP Guard (4.2@203) 5 LastUpdate: 2017-05-16
Pixel NetCut Defender - wifi security (4@175) 3
WiFiGuard (3.9@223) 4 $Contains no known trackers \o/$ LastUpdate: 2014-09-15
ARP Security (3.2@9) 4 $Contains no known trackers \o/$ LastUpdate: 2015-06-06

Further Readings:

App Verbindungen mitschneiden auf Android und iOS (4/2016)
Security and Hacking apps for Android devices (9/2013)
Penetration Testing with Smartphones Part 1 / Part 2 (12/2012)

2019-06-21

IzzyOnDroid