Web Application Vulnerability Reporter

The Web Application Vulnerability Reporter is an innovative Android application designed to provide a user-friendly interface that integrates findings related to web application vulnerabilities. Developed as part of the CTIS 487 Mobile Application Development course, this project showcases essential Android development concepts such as multi-activity structures, RecyclerViews, Room Database operations, and Retrofit for JSON parsing.

Project Overview

The application emphasizes practical features that highlight web application penetration testing, aiming to alleviate confusion often experienced in this field. By enabling users to interact with vulnerability data efficiently, this mobile application seeks to bridge the gap between technical findings and accessibility.

Key Features

1. Multiple Activities

   • MainActivity: Facilitates user registration, login, and navigation across other activities.
   • KVKKActivity: Displays KVKK documents using a RecyclerView and requires user scroll interaction to activate functionalities.
   • DisplayVulnerabilityActivity: Shows recorded vulnerabilities collected through Room Database.
   • VulnerabilityDetailsActivity: Retrieves detailed vulnerability information via the JSON Keeper API, showing categories, ids, descriptions, and images.

2. Custom RecyclerView

   • Utilizes two distinct layouts to display KVKK terms and vulnerabilities, enhancing the user experience through dynamic interaction.

3. Room Database Operations

   • Implements CRUD operations to securely manage user data, with input validation for user registration processes.

4. Custom Dialogs

   • Features custom dialog implementations to provide a personalized user interface experience.

5. Retrofit for JSON Parsing

   • Efficiently parses JSON data from a host, enabling seamless integration with remote data sources.

6. Gestures and Scrolling

   • Incorporates scroll detection to improve user interactions, especially during interactions with documents.

7. User Input Validation

   • Offers user guidance with Toast messages that confirm valid data entries.

Technologies Used

• Kotlin for Android programming.
• Room Database for local data management.
• Retrofit for data communication with remote servers.
• RecyclerView and ViewBinding for efficient UI element management.
• ConstraintLayout for responsive design implementation.
• Gesture detection for enhanced user interactions.

Future Enhancements

• Plans to introduce enhanced animations for smoother transitions.
• Potential implementation of user authentication with a backend server for improved security.
• Upgrades to the UI design utilizing Material Design components for a modern aesthetic.

This project is an educational endeavor under the mentoring of Berk Önder, developed by Onurcan Genç and aimed at improving the comprehension and handling of web application vulnerabilities in a mobile context.