X

com.twitter.android (11.68.0-release.0)

Security Rating

5.6

AVERAGE

DOWNLOAD REPORT

VIEW CERTIFICATE

HIDE REPORT

SHARE

Use BeVigil on your Phone

Download the BeVigil App

OPEN REPORT MENU

SUMMARY

ISSUES SEVERITY

MANIFEST SCANNER

uses cleartext traffic

MEDIUM

resources/AndroidManifest.xml

VULNERABILITIES

weak crypto algorithms

LOW

sources/io/castle/android/a.java

STRINGS

facebook client id

LOW

resources/res/values/strings.xml

ASSETS

file path

LOW

resources/res/values/strings.xml

0 CRITICAL severity MANIFEST issues present

0 HIGH severity MANIFEST issues present

1 MEDIUM severity MANIFEST issues present

13 LOW severity MANIFEST issues present

0 INFO severity MANIFEST issues present

0 RESILIENCE severity MANIFEST issues present

0 CRITICAL severity VULNERABILITIES issues present

0 HIGH severity VULNERABILITIES issues present

0 MEDIUM severity VULNERABILITIES issues present

197 LOW severity VULNERABILITIES issues present

0 INFO severity VULNERABILITIES issues present

0 RESILIENCE severity VULNERABILITIES issues present

0 CRITICAL severity STRINGS issues present

0 HIGH severity STRINGS issues present

0 MEDIUM severity STRINGS issues present

676 LOW severity STRINGS issues present

0 INFO severity STRINGS issues present

0 RESILIENCE severity STRINGS issues present

0 CRITICAL severity ASSETS issues present

0 HIGH severity ASSETS issues present

0 MEDIUM severity ASSETS issues present

4628 LOW severity ASSETS issues present

0 INFO severity ASSETS issues present

0 RESILIENCE severity ASSETS issues present

ISSUES

Weak Crypto Algorithms - 22 issues

Non-parameterized SQL Query - 18 issues

Possible Task Hijacking - 12 issues

Super user privileges may be requested - 10 issues

Possible Object Deserialization - 8 issues

Insecure Broadcast - 1 issues

Insecure Random Used - 78 issues

SSL pinning by app - 4 issues

Accept Self Signed Certificate - 11 issues

CBC Padding Oracle Attack Possible - 5 issues

WebView javascript enabled - 5 issues

Check for rooted device by app - 9 issues

Frida server detection by app - 1 issues

Sensitive Information in Logs - 10 issues

Storage of sensitive information in Shared Preferences - 1 issues

Remote WebView debugging enabled - 2 issues

MALWARES

0

MALWARES

APKiD

15

APKiD

STRINGS

Facebook Client ID - 1 matches

Generic API Key - 1 matches

Generic Secret Key - 1 matches

Google API Key - 5 matches

Possible Secret Detected - 45 matches

Unknown High Entropy String - 613 matches

ASSETS

File path - 1116 matches

URL - 2001 matches

Hostname - 476 matches

REST API - 529 matches

Filename - 17 matches

Relative Endpoint - 2 matches

PERMISSIONS SUMMARY

Permissions

Count

Safe

15

Risky

9

Dangerous

1

ASSETS WORDCLOUD

about.x.com - 2 count

help.x.com - 36 count

ads.twitter.com - 1 count

business.x.com - 5 count

help.twitter.com - 19 count

www.amazon.com - 1 count

twitter.com - 38 count

www.twitter.com - 6 count

blog.x.com - 2 count

careers.x.com - 2 count

legal.x.com - 2 count

developer.x.com - 2 count

x.com - 67 count

console.firebase.google.com - 2 count

api-project-49625052041.firebaseio.com - 1 count

TRACKERS

4

TRACKERS

THIRD PARTY LIBRARIES

119

THIRD PARTY LIBRARIES

CONTACT

Website

https://support.twitter.com/articles/20169915

Email

[email protected]

HIDE REPORT

Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.

HIDE

Welcome to X, your trusted digital town square, where conversations unfold in real time, and the world connects through breaking news, live events, podcasts, and everything in between. Whether you re passionate about sports, tech, music, or politics, X is your front-row seat to what’s happening across the globe. X isn’t just another social media app, it’s the ultimate destination for staying well informed, sharing ideas, and building communities. With X, you’re always in the loop with relevant trending topics and breaking news, delivered instantly to your screen, raw and unfiltered. What You Can Do on X: • Follow breaking news from around the world before it hits the headlines, and stay ahead of the curve with real-time updates on trending topics and viral conversations. • Post your thoughts, photos, and videos with a global community. Join millions of users in shaping public dialogue across social, cultural, and political conversations. • Discover Grok, the AI assistant powered by X’s real-time data. You can ask Grok to summarize trending news, explain videos, or give you more context about posts. • Stream live video or go live with Spaces, our audio feature that enables you to host discussions, hold interviews, or start your next live podcast. Whether you re streaming a concert, a live game, or your thoughts on a hot topic, X keeps your audience engaged. • Watch videos: from live breaking news and sports clips to podcasts and gaming sessions that last up to 3 hours long. Many of the world’s leading voices, in comedy, gaming, podcasting, and politics, all share their content on X. • Connect and chat privately with friends, followers, customers, or collaborators through Direct Messages. • Join and build communities tailored to your interests: from sports news, gaming, entertainment, crypto, entrepreneurship, tech, and more. • Subscribe to X Premium to unlock exclusive features like a blue checkmark, boosted visibility, prioritized replies, fewer ads, longer videos, and post editing. X Premium also gives you access to creator revenue sharing and the ability to offer exclusive content to subscribers. Why X? In a world of constant change, X is your real-time source to stay ahead of the curve, connect with people, and explore diverse perspectives. From breaking live news and trending memes to top podcasts and live streams from your favorite creators, X brings it all together in one powerful social experience.