Skip to main content

How to Hack any Smartphone...

Today, i am going to share about How to Hack any Smartphone 2015 Android, iPhone and Blackberry mobile phone. Works a lot like your regular RAT. You configure an Xampp server on your computer and once people install your app you can control them from your own phone. You can read all there messages, contacts and get shell access.
Lets get started,,,,,
mukeshtricks4u.blogspot.com


Requirements:
  • 1. Backtrack 5 r3 (using backtrack for this example as SPF is pre-installed), i recently posted a article, how to download, install and run backtrack 5 in windows.
  • 2. Portforwarding (if you are using this outside of your own network)
  • 3. Xampp for linux (guide to installing this will be in the tutorial)
  • 4. A phone (for example I will be using my Android Phone)
Step 1) Installing Xampp:
    • First of all, go Here to get Xampp.
    • Once xampp has finished downloading, go to your home directory and you should have a file called “download.php?xampp-linux-1.7.3a.tar.gz” rename it to something like “xampp.tar.gz“.
    • In your terminal window run
    • tar xvfz xampp.tar.gz -C /opt
  • Everything should be installed and you can find xampp in /opt/lampp/directory.

Step 2) Configuring Xampp:
Use
/opt/lampp/lampp start
/opt/lampp/lampp stop
To start and stop the Xampp service
  • Once Xampp has started, go to “localhost” in your browser and select your language. Navigated to “Phpmyadmin” and create a new database called “framework”.
  • Next add a new user by going to the “privileges” tab then “add a new user”.
  • Use whatever username and password you want and select “local” from the hosts list.
  • Make sure you “Check All” global privileges, then click go.
  • Now delete the htdocs folder in /opt/lampp/

Step 3) Configuring SPF Files:
    • Navigate to the SPF config file
/pentest/exploits/smartphone-pentest-framework/frameworkconsole/config and Replace
  • Ip Address For Websrever – with your local/public ip.
  • Ip Address TO Listn on for Shells – with your local/public ip.
  • Ip Address of SQL Server 127.0.0.1 if Localhost – with 127.0.0.1
  • Username of the MYSQL User to use – with the username you made in phpmyadmin
  • Password of the MYSQL User to use – with the password of the user you set 

Step 4) Configuring SPF:
    • Open up the smartphone-pentest-framework window by going to:
applications>backtrack>exploitationtools>wirelessexploitationtools>gsmexploitation>Smartphone-pentest-framework.
  • Select option 4 then select option 2.
  • Input your phone number, then input a 7 digit control key to connect to your victims and then enter the path you want your app to located on your webserver (I will be using /). Now don’t expect anything to happen just yet, you need to configure your phone with SPF.
  • Locate the file:
/pentest/exploits/smartphone-pentest-framework/FrameworkAndroidApp/bin/FrameworkAndroidApp.apk
  • And move it over to your phone by uploading it to dropbox or just connecting your phone to your computer.
  • Install it then open it up. Put in the details you filled out a minute ago in
  • SPF and your ip the webserver is setup on and press setup.


Step 5) Attacking People:
    • Open up smartphone-pentest-framework and select option 6 then pick between the direct download (just sends a text to the person from your phone with a direct download to the file) or client side shell (uses a browser exploit in android phones to give you shell access).
    • If you select option 1 you must move the file 
    • /pentest/exploits/smartphone-pentest-framework/AndroidAgent/bin/AndroidAgent.apk
  • To your root directory.
  • Once you get a victim, just open up smartphone-pentest-framework again, select option 1, fill in the details and you can then control the victim from your mobile phone. 
Above is the tips and tricks how to hack any smartphone easily. If you like this trick don’t forget to share it with your friends.

Labels:

Comments

Post a Comment

Popular Posts

Create Your Own Social Networking Site

Create Your Own Social Networking Site JCOW: Ethical Hacking Top 10 reasons to choose Jcow:- 1. Handle more traffic - Clean codes and Dynamic caching can lower the CPU load and  speed up your website. 2 Make your site more interactive - Well designed Jcow applications help you members to connect and communicate with others more effectively. 3 Add questions to the Registration Form - You can add new member fields, which will be displayed to the registration form, profile form, and the member browsing form. 4 Easily share stuff - Within the AJAX sharing Box, your members can publish status,  photos, videos, and blogs. 5 Customize and Extend your Jcow Network - A Jcow network consists of core apps(like "Friends" and "Messages") and optional apps(like "Blogs" and ""Videos"). You can enable/disable optional apps. You can also develop your own apps. 6 Every profile could be Unique - Members can customize their own profile theme and  add music play...
Post a Comment
Read more

WRITE "I LOVE YOU" ON CMD BY USING NOTEPAD

I had previously posted about   Matrix effect   using Notepad   as well as cool batch file  programs. In this post i will share with you guys  the cool and awesome  Notepad Tricks .  As name suggest you don't require any program other then Notepad.  So lets get started. 1. Open  Notepad   and copy below code. @echo off color 0A :A echo IIIIIII     L      OOOOOO V           V  EEEEEE     Y       Y  OOOOOO  U     U  ping -a .9 >nul echo    I        L      O    O  V         V   E           Y     Y   O    O  U     U  ping -b .9 >nul  echo    I        L      O    O   V       V    E   ...
1 comment
Read more

HL7V2.x to HL7V3.0 Translation Issues Details-2

In continuation of my previous post this post lists the other issues associated with HL7 v2.x to HL7v3 translation Conformance Patterns: The other major issue with the transformation of messages is the behavior of application when a particular information exchange takes place. In HL7V3.0 apart from the trigger events and interactions there exists the notion of application role as senders and receivers. The application role is characterized as the entire set of interactions for which the sender and receiver are responsible for transmitting. HL7V3.0 clearly defines the possible interactions and the application behavior associated these interactions in the form of responses for which the sender and receiver needs to adhere to. The differences in messages between V2.x and V3.0 and absence of clear guidance on V2.x regarding application behavior on receipt of message makes the transformation exercise more difficult. Vocabulary: It is a well known fact that 80% of HL7 V2.x message failu...
Post a Comment
Read more