In This tutorial we will see how to use Websploit in android using andrax framework. It is a high level MITM framework, And an open source project which is used to scan and analysis remote system. in order to find various type of vulnerabilites, This tool is very powerful. and support multiple vulnerabilities. like MITM ,cloudflare bypass etc.


  • Autopwn – Used From Metasploit For Scan and Exploit Target Service
  •  wmap – Scan,Crawler Target Used From Metasploit wmap plugin
  • format infector – inject reverse & bind payload into file format
  • PHPMyAdmin – Search Target PHPMyAdmin login page
  • lfi – Scan, Bypass local file inclusion Vulnerability & can be bypass some WAF
  • apache users – search server username directory (if using from Apache webserver)
  • Dir Bruter – brute target directory with a wordlist
  • admin finder – search admin & login page of the target
  • MLITM Attack – Man Left In The Middle, XSS Phishing Attacks
  • MITM – Man In The Middle Attack
  • Java Applet Attack – Java Signed Applet Attack
  • MFOD Attack Vector – Middle Finger Of Doom Attack Vector
  • USB Infection Attack – Create Executable Backdoor For Infect USB For Windows
  • ARP DOS – ARP Cache Denial Of Service Attack With Random MAC
  • Web Killer Attack – Down Your WebSite On Network(TCPKILL)
  • Fake Update Attack – Create Fake Update Page For Target OS
  • Fake Access point Attack – Create Fake AP & Sniff Victims Information


  1. download  and install andrax 
  2. Open Dragon terminal <br />
  1. Type cd
  2. Then type ls
  3. Then type cd websploit 
  4. Type chmod +x *
  5. Now type websploit and hit enter