Today, i am going to share about How to Hack any Smartphone 2015 Android, iPhone and Blackberry mobile phone. Works a lot like your regular RAT. You configure an Xampp server on your computer and once people install your app you can control them from your own phone. You can read all there messages, contacts and get shell access.
Requirements:
- 1. Backtrack 5 r3 (using backtrack for this example as SPF is pre-installed), i recently posted a article, how to download, install and run backtrack 5 in windows.
- 2. Portforwarding (if you are using this outside of your own network)
- 3. Xampp for linux (guide to installing this will be in the tutorial)
- 4. A phone (for example I will be using my Android Phone)
Step 1) Installing Xampp:
- First of all, go Here to get Xampp.
- Once xampp has finished downloading, go to your home directory and you should have a file called “download.php?xampp-linux-1.7.3a.tar.gz” rename it to something like “xampp.tar.gz“.
- In your terminal window run
- tar xvfz xampp.tar.gz -C /opt
- Everything should be installed and you can find xampp in /opt/lampp/directory.
Step 2) Configuring Xampp:
Use
/opt/lampp/lampp start
/opt/lampp/lampp stop
To start and stop the Xampp service
- Once Xampp has started, go to “localhost” in your browser and select your language. Navigated to “Phpmyadmin” and create a new database called “framework”.
- Next add a new user by going to the “privileges” tab then “add a new user”.
- Use whatever username and password you want and select “local” from the hosts list.
- Make sure you “Check All” global privileges, then click go.
- Now delete the htdocs folder in /opt/lampp/
Step 3) Configuring SPF Files:
- Navigate to the SPF config file
/pentest/exploits/smartphone-pentest-framework/frameworkconsole/config
and Replace
- Ip Address For Websrever – with your local/public ip.
- Ip Address TO Listn on for Shells – with your local/public ip.
- Ip Address of SQL Server 127.0.0.1 if Localhost – with 127.0.0.1
- Username of the MYSQL User to use – with the username you made in phpmyadmin
- Password of the MYSQL User to use – with the password of the user you set
Step 4) Configuring SPF:
- Open up the smartphone-pentest-framework window by going to:
applications>backtrack>exploitationtools>wirelessexploitationtools>gsmexploitation>Smartphone-pentest-framework.
- Select option 4 then select option 2.
- Input your phone number, then input a 7 digit control key to connect to your victims and then enter the path you want your app to located on your webserver (I will be using /). Now don’t expect anything to happen just yet, you need to configure your phone with SPF.
- Locate the file:
/pentest/exploits/smartphone-pentest-framework/FrameworkAndroidApp/bin/FrameworkAndroidApp.apk
- And move it over to your phone by uploading it to dropbox or just connecting your phone to your computer.
- Install it then open it up. Put in the details you filled out a minute ago in
- SPF and your ip the webserver is setup on and press setup.
Step 5) Attacking People:
Open up smartphone-pentest-framework and select option 6 then pick between the direct download (just sends a text to the person from your phone with a direct download to the file) or client side shell (uses a browser exploit in android phones to give you shell access).
Artikel keren lainnya:
can you update this trick. now days it's not working. please update it. thanks it's time to avail this Door Installation in Miami for more details.
ReplyDeleteap govt jobs
ReplyDeleteThe Andhra Pradesh Government publishes notifications about the available posts which may be applied by way of any sort of process-seekers. The folks who are living inside the State of Andhra Pradesh can practice for all of the job notifications. Interested applicants aspiring to join those authorities posts can take a look at out all of the government jobs here. You also can discover Andhra Pradesh government jobs for APPSC, DSC, and so forth. You may also have the ability to test qualification clever emptiness for 10th, 12th, and graduate degree as properly.
Age Limit: 21 - 45 years, as on date of interview (Age relaxation SC/ST/ OBC/PWD/ Women and other exempted classes as in step with ICAR/GOI guidelines).
ReplyDeleteAge Limit: 21 - 45 years, as on date of interview (Age relaxation SC/ST/ OBC/PWD/ Women and other exempted classes as in step with ICAR/GOI guidelines).
govt jobs in haryana
telangana govt jobs Birla Institute of Technology and Science Invites Application for Junior Research Fellow Recruitment 2022
ReplyDelete