CloudSEK logo
AboutAsset ExplorerContactBlogScan App
LOGIN
com.alibaba.android.rimet

DingTalk

com.alibaba.android.rimet (7.0.18)

Security Rating
6.1
AVERAGE
DOWNLOAD REPORT
VIEW CERTIFICATE
HIDE REPORT
SHARE
Use BeVigil on your Phone
Download the BeVigil App
BeVigil playstore
BeVigil playstore
OPEN REPORT MENU
SUMMARY
ISSUES SEVERITY
MANIFEST SCANNER
exported activity
MEDIUM
resources/AndroidManifest.xml
VULNERABILITIES
Weak Crypto Algorithms
MEDIUM
sources/defpackage/twi.java
STRINGS
google api key
LOW
resources/res/values/strings.xml
ASSETS
file path
LOW
resources/res/values-zh-rTW/strings.xml
0 CRITICAL severity MANIFEST issues present
0 HIGH severity MANIFEST issues present
33 MEDIUM severity MANIFEST issues present
0 LOW severity MANIFEST issues present
0 INFO severity MANIFEST issues present
0 RESILIENCE severity MANIFEST issues present
0 CRITICAL severity VULNERABILITIES issues present
4 HIGH severity VULNERABILITIES issues present
362 MEDIUM severity VULNERABILITIES issues present
144 LOW severity VULNERABILITIES issues present
185 INFO severity VULNERABILITIES issues present
0 RESILIENCE severity VULNERABILITIES issues present
0 CRITICAL severity STRINGS issues present
0 HIGH severity STRINGS issues present
381 MEDIUM severity STRINGS issues present
563 LOW severity STRINGS issues present
0 INFO severity STRINGS issues present
0 RESILIENCE severity STRINGS issues present
0 CRITICAL severity ASSETS issues present
0 HIGH severity ASSETS issues present
1 MEDIUM severity ASSETS issues present
6915 LOW severity ASSETS issues present
0 INFO severity ASSETS issues present
0 RESILIENCE severity ASSETS issues present
ISSUES
Weak Crypto Algorithms - 161 issues
Weak Crypto Algorithm - AES with weak ECB - 10 issues
Non-parameterized SQL Query - 25 issues
Accepting all SSL certificates - 4 issues
Super user privileges may be requested - 2 issues
Possible Object Deserialization - 47 issues
Insecure HTTP Client Used - 7 issues
CBC Padding Oracle Attack Possible - 53 issues
Accept Self Signed Certificate - 46 issues
Insecure Broadcast - 4 issues
Insecure Activity Start - 2 issues
Insecure Random Used - 185 issues
Sensitive Information in Logs - 99 issues
Storage of sensitive information in Shared Preferences - 16 issues
Check for rooted device by app - 13 issues
WebView javascript enabled - 16 issues
Remote WebView debugging enabled - 5 issues
MALWARES
0
MALWARES
APKiD
22
APKiD
STRINGS
Google API Key - 3 matches
Generic API Key - 1 matches
Possible Secret Detected - 381 matches
Possible UUID - 32 matches
Unknown High Entropy String - 527 matches
ASSETS
File path - 2001 matches
URL - 2001 matches
Hostname - 1743 matches
Filename - 180 matches
Relative Endpoint - 71 matches
REST API - 606 matches
PERMISSIONS SUMMARY
Permissions
Count
Safe
22
Risky
14
Dangerous
4
ASSETS WORDCLOUD
tms.dingtalk.com - 68 count
notes.dingtalk.com - 16 count
terms.alicdn.com - 16 count
dingtalk-f9cd0.firebaseio.com - 1 count
h5.dingtalk.com - 151 count
play.google.com - 2 count
dw-online.ksosoft.com - 1 count
login.m.taobao.com - 2 count
ds.alipay.com - 23 count
render.alipay.com - 36 count
tms.alicdn.com - 1 count
alipay.kylinbridge - 15 count
www.taobao.com - 1 count
hpmweb.alipay.com - 14 count
api-push.meizu.com - 2 count
TRACKERS
3
TRACKERS
AltBeacon
AutoNavi / Amap
Google Firebase Analytics
THIRD PARTY LIBRARIES
92
THIRD PARTY LIBRARIES
Checker Framework
Android PackageManager
Android Support Library
Android Support v4
Jetpack Activity
Jetpack Annotation
AppCompat
Arch
Browser
Jetpack API
Jetpack UI
Androidx Core
Documentfile
Jetpack Drawer Layout
CONTACT
Website
http://www.dingtalk.com/en
Email
[email protected]
HIDE REPORT
Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.
HIDE
DingTalk, an App by Alibaba, is a free enterprise-level collaboration and application development platform. We help tens of millions of enterprises to reduce the cost of communication, coordination, and management, to improve work efficiency, to digitize the business, and to boost team digital productivity.<br><br>More than 19 million enterprises and organizations are using DingTalk.<br><br>What&#39;s New<br><br>Instant Message, Efficient Communication<br><br>Read Receipts - For any message that you send in private or group, you&#39;ll be able to check the message info, seeing whether the message was read or not.<br><br>Ding - Notify your colleague with In-App, phone call, or SMS alerts, when emergency messages need to be reminded.<br><br>Secret Chat, Burn-on-Read - Bank-level encrypted secret chat mode, where 30 seconds after being read, the message will self-destruct. Blurred names and profiles avoid personal information leakage.<br><br>Customized Office Automation Systems, Simplified Work Process<br><br>Enterprise address book - Import the enterprise organizational structure and manage it in a unified way. The free and safe communication and collaboration among employees, anytime and anywhere, boost the efficiency of work.<br><br>Smart Office Application - OA functions such as Attendance, Check-in, Approval, Report, Announcement, Leave, Reimbursement, along with enterprise self-build applications allow you to work anywhere and anytime<br><br>Convenient internet voice call, Safe and Efficient Communication<br><br>Video Conference - Initiate multi-person voice/video conference anytime and anywhere. High-definition Internet calls with zero charges, allowing you to interact with your colleagues and customers like face-to-face communication.<br><br>Stopped School, Non-stopped Learning<br><br>Online Class - Teachers can give lectures online anytime, anywhere. Students can hand-raise and chat with teachers. Playback of the class also allows students to review repeatedly.<br>DingDrive, DingMail Intergrated with IM,  Make Work Smarter <br><br>DingDrive - Secure sharing of enterprise files in the cloud and access them easily and safely anytime and anywhere, all in DingDrive<br><br>DingMail - Intergrated with IM, you can check the email info, and send DING to unread recipients. Support all kinds of enterprise email, and personal email like 163 mail <br><br>Bank-level Security Services, Protected Corporate Data<br><br>DingTalk Security - DingTalk integrates Alibaba Group&#39;s network security attack and defense capabilities of more than 10 years and uses bank-level encryption technology to encrypt and protect enterprise data. At the same time, DingTalk further protects the data with third-party encryption technology.<br><br>More Functions and Services<br><br>Multi-terminal Synchronization supports multiple platforms such as Mac, iPhone, iPad, Apple Watch, etc., and synchronizes messages from mobile phones and computers, making it easy to work at any time and anywhere.<br><br>Contact Us<br>[email protected]