SHADOWBR0KER
Forum Guru
- Joined
- Aug 9, 2018
- Posts
- 717
- Reaction
- 11,486
- Points
- 1,410
4th drop malupitang bigayan hehe
#3rdanniv
A linux machine ( if you dont have this, I think you better should. Totally recommended)
All other dependencies will be automatically installed when you run this tool.
On the terminal:
1. Install the tool by:
2. set script execution permissions, chmod it .
3. run by
Once you run it, this is the time where it will auto install all dependencies you need. Wait a while and allow the framework to execute.
4. Select 3 rd option where you need to install for New APK files which are coded latest.
5. Set you LHOST (your IP)
6. Set port to default like 1234
7. Set whatever name you want for the APK.
8. Select android/meterpreter/reverse_tcp
9. This section is where you will select the original APK to inject payload. It maybe any app like launchers, Google Apps, i think you got me. Select that
10. select Multi handler
11. Thats it !! The APK will be saved and is ready to be transferred to your victim.
12. Transfer this file to /var/www/html
13. Start the apache2 server
2. You can do that yourself or you make your victim do that.
/// Some users DM'ed me that the backdoor still need to be installed and this is not a häçk. well, good luck to you guys????
3. After installation, reverse shell is already made to your linux system.
You can refer to my other Android häçking thread for reference of commands to make the payload run.
Thats about the complete häçk of the Android device. We went from creating custom backdoor or payload and injected into the Original literal APK file and made the victim installed it bypassing all the Anti virus hassles. As there is a real app embedded, there is literally less chance that the victim will uninstall the apk file.
This is the ultimate way to häçk any android devices which works almost cent percent of times.
Use common sense to get out of situations where you are stuck. Im here to help you????
With power comes, great responsibilities.
#3rdanniv
The author does not hold any responsibility for the bad use of this tool,
remember this is only for educational purpose.
Things you need:
A linux machine ( if you dont have this, I think you better should. Totally recommended)
All other dependencies will be automatically installed when you run this tool.
On the terminal:
1. Install the tool by:
2. set script execution permissions, chmod it .
3. run by
Once you run it, this is the time where it will auto install all dependencies you need. Wait a while and allow the framework to execute.
4. Select 3 rd option where you need to install for New APK files which are coded latest.
5. Set you LHOST (your IP)
6. Set port to default like 1234
7. Set whatever name you want for the APK.
8. Select android/meterpreter/reverse_tcp
9. This section is where you will select the original APK to inject payload. It maybe any app like launchers, Google Apps, i think you got me. Select that
10. select Multi handler
11. Thats it !! The APK will be saved and is ready to be transferred to your victim.
12. Transfer this file to /var/www/html
13. Start the apache2 server
ON VICTIM DEVICE
1. Enter your LHOST into the URL bar and download the file remotely from the server and make your victim install that file2. You can do that yourself or you make your victim do that.
/// Some users DM'ed me that the backdoor still need to be installed and this is not a häçk. well, good luck to you guys????
3. After installation, reverse shell is already made to your linux system.
ON häçkING MACHINE
You will use general metasploit commands to run the handler and take control of the Android device. I mean complete control of the device.You can refer to my other Android häçking thread for reference of commands to make the payload run.
Thats about the complete häçk of the Android device. We went from creating custom backdoor or payload and injected into the Original literal APK file and made the victim installed it bypassing all the Anti virus hassles. As there is a real app embedded, there is literally less chance that the victim will uninstall the apk file.
This is the ultimate way to häçk any android devices which works almost cent percent of times.
Use common sense to get out of situations where you are stuck. Im here to help you????
With power comes, great responsibilities.