X (Formerly Twitter)

com.twitter.android (11.14.0-release.0)

Security Rating

6.7

AVERAGE

DOWNLOAD REPORT

VIEW CERTIFICATE

HIDE REPORT

SHARE

Use BeVigil on your Phone

Download the BeVigil App

OPEN REPORT MENU

SUMMARY

ISSUES SEVERITY

MANIFEST SCANNER

uses cleartext traffic

HIGH

resources/AndroidManifest.xml

VULNERABILITIES

weak crypto algorithms

LOW

sources/com/twitter/util/io/o.java

STRINGS

facebook client id

LOW

resources/res/values/strings.xml

ASSETS

rest api

LOW

sources/tv/periscope/android/api/Constants.java

0 CRITICAL severity MANIFEST issues present

1 HIGH severity MANIFEST issues present

10 MEDIUM severity MANIFEST issues present

0 LOW severity MANIFEST issues present

0 INFO severity MANIFEST issues present

0 RESILIENCE severity MANIFEST issues present

0 CRITICAL severity VULNERABILITIES issues present

0 HIGH severity VULNERABILITIES issues present

48 MEDIUM severity VULNERABILITIES issues present

36 LOW severity VULNERABILITIES issues present

83 INFO severity VULNERABILITIES issues present

0 RESILIENCE severity VULNERABILITIES issues present

0 CRITICAL severity STRINGS issues present

0 HIGH severity STRINGS issues present

0 MEDIUM severity STRINGS issues present

532 LOW severity STRINGS issues present

0 INFO severity STRINGS issues present

0 RESILIENCE severity STRINGS issues present

0 CRITICAL severity ASSETS issues present

0 HIGH severity ASSETS issues present

0 MEDIUM severity ASSETS issues present

2406 LOW severity ASSETS issues present

0 INFO severity ASSETS issues present

0 RESILIENCE severity ASSETS issues present

ISSUES

Weak Crypto Algorithms - 16 issues

Possible Task Hijacking - 11 issues

Non-parameterized SQL Query - 17 issues

Possible Object Deserialization - 6 issues

Super user privileges may be requested - 5 issues

Insecure Random Used - 73 issues

CBC Padding Oracle Attack Possible - 4 issues

SSL pinning by app - 3 issues

Insecure Broadcast - 1 issues

Accept Self Signed Certificate - 8 issues

Remote WebView debugging enabled - 2 issues

WebView javascript enabled - 3 issues

Check for rooted device by app - 7 issues

Sensitive Information in Logs - 9 issues

Storage of sensitive information in Shared Preferences - 1 issues

Frida server detection by app - 1 issues

MALWARES

0

MALWARES

APKiD

12

APKiD

STRINGS

Facebook Client ID - 1 matches

Generic API Key - 1 matches

Generic Secret Key - 1 matches

Google API Key - 4 matches

Possible UUID - 8 matches

Unknown High Entropy String - 509 matches

ASSETS

REST API - 424 matches

File path - 741 matches

URL - 649 matches

Hostname - 278 matches

Filename - 12 matches

Relative Endpoint - 3 matches

PERMISSIONS SUMMARY

Permissions

Count

Safe

15

Risky

9

Dangerous

1

ASSETS WORDCLOUD

about.x.com - 1 count

help.x.com - 8 count

ads.twitter.com - 1 count

business.x.com - 1 count

help.twitter.com - 13 count

www.amazon.com - 1 count

twitter.com - 30 count

www.twitter.com - 4 count

blog.x.com - 1 count

careers.x.com - 1 count

legal.x.com - 1 count

developer.x.com - 1 count

x.com - 28 count

console.firebase.google.com - 2 count

api-project-49625052041.firebaseio.com - 1 count

TRACKERS

4

TRACKERS

THIRD PARTY LIBRARIES

112

THIRD PARTY LIBRARIES

CONTACT

Website

https://support.twitter.com/articles/20169915

Email

[email protected]

HIDE REPORT

Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.

HIDE

X – The Everything App for Breaking News, Live Conversations, and Social Streaming Welcome to X, your trusted digital town square, where conversations unfold in real time, and the world connects through breaking news, live events, podcasts, and everything in between. Whether you re passionate about sports, tech, music, or politics, X is your front-row seat to what’s happening across the globe. X isn’t just another social media app, it’s the ultimate destination for staying well informed, sharing ideas, and building communities. With X, you’re always in the loop with relevant trending topics and breaking news, delivered instantly to your screen, raw and unfiltered. What You Can Do on X: • Follow breaking news from around the world before it hits the headlines, and stay ahead of the curve with real-time updates on trending topics and viral conversations. • Post your thoughts, photos, and videos with a global community. Join millions of users in shaping public dialogue across social, cultural, and political conversations. • Discover Grok, the AI assistant powered by X’s real-time data. You can ask Grok to summarize trending news, explain videos, or give you more context about posts. • Stream live video or go live with Spaces, our audio feature that enables you to host discussions, hold interviews, or start your next live podcast. Whether you re streaming a concert, a live game, or your thoughts on a hot topic, X keeps your audience engaged. • Watch videos: from live breaking news and sports clips to podcasts and gaming sessions that last up to 3 hours long. Many of the world’s leading voices, in comedy, gaming, podcasting, and politics, all share their content on X. • Connect and chat privately with friends, followers, customers, or collaborators through Direct Messages. • Join and build communities tailored to your interests: from sports news, gaming, entertainment, crypto, entrepreneurship, tech, and more. • Subscribe to X Premium to unlock exclusive features like a blue checkmark, boosted visibility, prioritized replies, fewer ads, longer videos, and post editing. X Premium also gives you access to creator revenue sharing and the ability to offer exclusive content to subscribers. Why X? In a world of constant change, X is your real-time source to stay ahead of the curve, connect with people, and explore diverse perspectives. From breaking live news and trending memes to top podcasts and live streams from your favorite creators, X brings it all together in one powerful social experience.