ADB Auditor is designed with privacy and security as core principles. This document outlines the security architecture and considerations for using this tool.
- All data processing occurs entirely in your browser
- No data is transmitted to any external server
- No analytics or telemetry of any kind
- No user accounts or authentication required
[Android Device] <--USB/WiFi--> [Your Browser] <--WebUSB API--> [ADB Auditor]
↓
[Local Processing Only]
↓
[Results Displayed]
- Device information
- Application lists
- File contents
- Shell command outputs
- Screenshots
- Extracted APK files
- Security scan results
-
Verify Source: Only use ADB Auditor from official sources
- GitHub: https://github.com/thecybersandeep/adbauditor
- Official Site: https://adbauditor.com/
-
Check HTTPS: Ensure you're using HTTPS connection
-
Update Browser: Keep your browser updated for latest security patches
-
Authorization: Only connect to devices you own or have authorization to test
-
Public Networks: Avoid using ADB over WiFi on untrusted networks
-
Screen Lock: Keep device unlocked only when actively testing
-
Root Access: Use root mode only when necessary
-
Revoke Access: Consider revoking USB debugging authorization after testing
-
Disable Debugging: Turn off USB debugging when not in use
-
Clear Browser Data: Clear site data if using shared computer
- User gesture required for device selection
- Device chooser shows only ADB-compatible devices
- HTTPS required for WebUSB access
- Cross-origin restrictions enforced
- RSA key-based authentication
- Keys stored in browser's IndexedDB
- Device must approve each new connection
ADB Auditor is provided for authorized security testing only. Users are responsible for:
- Obtaining proper authorization before testing
- Complying with all applicable laws
- Respecting privacy of device owners
- Using the tool ethically and responsibly
Unauthorized access to devices is illegal. The authors assume no liability for misuse of this tool.
This tool does not maintain any audit logs. All activities are performed in real-time within your browser session and are not persisted.
ADB Auditor uses minimal external dependencies:
| Dependency | Purpose | Security Consideration |
|---|---|---|
| Google Fonts | Typography | Loaded from Google CDN |
No JavaScript libraries are loaded from external CDNs. All code is self-contained.