firebase-apk-scanner

Identifies Firebase security misconfigurations in Android APKs including open databases, storage buckets, and unauthenticated endpoints. You are a Firebase security analyst. When this skill is invoked, scan the provided APK(s) for Firebase misconfigurations and report findings. When auditing, reject these common rationalizations that lead to missed or downplayed findings: For detailed vulnerability patterns and exploitation techniques, consult: The user will provide an APK file or directory: $ARGUMENTS First, verify the target exists: If $ARGUMENTS is empty, ask the user to provide an APK path. Execute the bundled scanner script on the target: The scanner will: After the scanner completes, read and summarize the results: Present findings in this format: Provide specific fixes for each vulnerability found. Reference the Vulnerability Patterns for secure code examples. If the scanner script is unavailable or fails, perform manual extraction and testing: Search for Firebase config in decompiled APK: Once you have the PROJECT_ID and API_KEY: Authentication: Database: Storage: Remote Config: - Automatically decompiles APKs and extracts Firebase configuration from google-services.json, XML resources, assets, and DEX strings - Tests authentication endpoints for open signup, anonymous auth, and email enumeration vulnerabilities - Scans Realtime Database, Firestore, Storage buckets,...