Search
Collection
Category
Tag
Blog
Pricing
Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

AISecKit

Curated AI security tools & LLM safety resources for cybersecurity professionals

Product

Search
Collection
Category
Tag

Resources

Blog
Pricing
Submit

Tools

🔥Marathons Tools

Company

About Us
Privacy Policy
Terms of Service
Sitemap

Copyright © 2025 All Rights Reserved.

Home
Category
WhatsApp-extension-manipulation-PoC

WhatsApp-extension-manipulation-PoC

Android malware (.apk) can be spread through a fake PDF document in WhatsApp.

Introduction

Information

Publisher
AISecKit
Websitegithub.com
Published date2025/04/28

Categories

Penetration Testing
Vulnerability Disclosure
Mobile Security

Tags

Exploit Development
Security Auditing
Incident Response
Red Team Testing

More Products

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt Injection Generative AI Red Team Testing Data Poisoning

Folly

Open-source LLM Prompt-Injection and Jailbreaking Playground for testing LLM security vulnerabilities.

Prompt Injection Open Source API Security Security Testing LLM Security+1

Cybersecurity AI

Cybersecurity AI (CAI) is an open Bug Bounty-ready Artificial Intelligence framework for enhancing security operations.

Open Source Bug Bounty

WhatsApp Extension Manipulation PoC

Overview

This repository provides a proof of concept (PoC) for spreading Android malware by manipulating the file extension of APK files disguised as PDF documents in the WhatsApp application.

Key Features

Allows sending of malware disguised as documents.
Demonstrates the vulnerability in WhatsApp regarding file extensions.
Simple setup instructions provided for testing purposes.

Benefits

Raises awareness about security vulnerabilities in messaging applications.
Useful for educational purposes and security testing.
Provides a hands-on example of manipulating file types to bypass security measures.

Highlights

Step-by-step guide for setup and execution.
Emphasis on ethical use and potential dangers associated with malware delivery techniques.

Disclaimer

This software is provided "as is", without warranty of any kind. Any use of this repository must consider ethical implications and comply with legal standards.