X

com.twitter.android (10.29.0-release.0)

Security Rating

6.8

AVERAGE

DOWNLOAD REPORT

VIEW CERTIFICATE

HIDE REPORT

SHARE

Use BeVigil on your Phone

Download the BeVigil App

OPEN REPORT MENU

SUMMARY

ISSUES SEVERITY

MANIFEST SCANNER

exported activity

MEDIUM

resources/AndroidManifest.xml

VULNERABILITIES

Weak Crypto Algorithms

MEDIUM

sources/defpackage/pk00.java

STRINGS

facebook client id

LOW

resources/res/values/strings.xml

ASSETS

file path

LOW

resources/res/values/strings.xml

0 CRITICAL severity MANIFEST issues present

0 HIGH severity MANIFEST issues present

7 MEDIUM severity MANIFEST issues present

0 LOW severity MANIFEST issues present

0 INFO severity MANIFEST issues present

0 RESILIENCE severity MANIFEST issues present

0 CRITICAL severity VULNERABILITIES issues present

0 HIGH severity VULNERABILITIES issues present

35 MEDIUM severity VULNERABILITIES issues present

7 LOW severity VULNERABILITIES issues present

64 INFO severity VULNERABILITIES issues present

0 RESILIENCE severity VULNERABILITIES issues present

0 CRITICAL severity STRINGS issues present

0 HIGH severity STRINGS issues present

0 MEDIUM severity STRINGS issues present

531 LOW severity STRINGS issues present

0 INFO severity STRINGS issues present

0 RESILIENCE severity STRINGS issues present

0 CRITICAL severity ASSETS issues present

0 HIGH severity ASSETS issues present

0 MEDIUM severity ASSETS issues present

2007 LOW severity ASSETS issues present

0 INFO severity ASSETS issues present

0 RESILIENCE severity ASSETS issues present

ISSUES

Weak Crypto Algorithms - 17 issues

Non-parameterized SQL Query - 5 issues

Possible Object Deserialization - 5 issues

Possible Task Hijacking - 8 issues

SSL pinning by app - 1 issues

Insecure Random Used - 63 issues

CBC Padding Oracle Attack Possible - 2 issues

Accept Self Signed Certificate - 5 issues

MALWARES

0

MALWARES

APKiD

8

APKiD

STRINGS

Facebook Client ID - 1 matches

Google API Key - 3 matches

Possible UUID - 6 matches

Possible Secret Detected - 24 matches

Unknown High Entropy String - 497 matches

ASSETS

File path - 585 matches

URL - 487 matches

Hostname - 238 matches

REST API - 380 matches

Filename - 12 matches

Relative Endpoint - 1 matches

PERMISSIONS SUMMARY

Permissions

Count

Safe

12

Risky

9

Dangerous

1

ASSETS WORDCLOUD

about.twitter.com - 1 count

help.twitter.com - 17 count

ads.twitter.com - 1 count

business.twitter.com - 3 count

www.amazon.com - 1 count

twitter.com - 33 count

www.twitter.com - 12 count

help.x.com - 4 count

blog.twitter.com - 1 count

careers.twitter.com - 1 count

legal.twitter.com - 1 count

developer.twitter.com - 1 count

console.firebase.google.com - 3 count

api-project-49625052041.firebaseio.com - 1 count

play.google.com - 6 count

TRACKERS

4

TRACKERS

THIRD PARTY LIBRARIES

68

THIRD PARTY LIBRARIES

CONTACT

Website

https://support.twitter.com/articles/20169915

Email

[email protected]

HIDE REPORT

Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.

HIDE

The X app is the trusted global digital town square for everyone.<br><br>With X, you can:<br><br>- Post content for the world to see and join public conversations<br>- Stay up to date on breaking news and follow your interests<br>- Stay better informed with extra context from Community Notes<br>- Go live with Spaces for audio or stream live video<br>- Communicate privately with Direct Messages<br>- Subscribe to X Premium to expand your reach, get a blue checkmark, and more<br>- Earn a living creating exclusive content for your paid subscribers and share in the ad revenue generated in replies to your posts<br>- Create and join Communities around topics and interests, from sports to music to technology<br>- Upload and watch videos up to 3 hours in length<br>- Write and read long form posts like essays and blogs<br>- Connect directly with your customers to help your business grow