HomeLinuxShotDroid - The new android pentesting tool

ShotDroid – The new android pentesting tool

Table of Contents

ShotDroid is one of the new best tools for pentesting to android and windows. their main function is to get access from android and windows files, webcam, and keylogger. 

Features:

  1. Hide apps in android files.

  2. Custom android directory.

  3. For Android Keylogger -> you can see it here: Simple-keyboard or LokiBoard.

  4. Automatic HTML template intake face webcam.

  5. Custom HTML or custom your HTML folder intake face webcam tool.

How to Download and install ShotDroid Tool

First, we need to install some dependencies so execute the below command on your Linux terminal

				
					sudo apt install zenity xterm
				
			
install requirements

Now download the “ShotDroid” tool so execute the following command on your terminal

				
					git clone https://github.com/kp300/shotdroid.git
				
			
download Shotdroid

After that change the directory with help of “cd” command

				
					cd shotdroid
ls
				
			
change directory

Now we need to install the ngrok so run the below command on your terminal. after that sing up ngrok.com and get your authtoken

				
					curl -s https://ngrok-agent.s3.amazonaws.com/ngrok.asc | sudo tee /etc/apt/trusted.gpg.d/ngrok.asc >/dev/null &&
              echo "deb https://ngrok-agent.s3.amazonaws.com buster main" | sudo tee /etc/apt/sources.list.d/ngrok.list &&
              sudo apt update && sudo apt install ngrok   
              
				
			
install ngrok

Now execute the below command on your terminal. after executing you can see three options that are  Android Files, Android Keylogger, and Take Face Webcam

ShotDroid – The new android pentesting tool

Android Files – shotdroid

Now type one and hit enter. Then type “y” for hiding apps then hit enter. after that, you can see 7 options see the below image

ShotDroid – The new android pentesting tool

Now choose a number which you want, for my convenient I choose the 5th option. then hit enter

ShotDroid – The new android pentesting tool

Now we need to choose port forwarding options, this tool gives 2 options for that but I preferred 2nd option (ngrok)

ShotDroid – The new android pentesting tool

In the wake of finishing the above steps, you will get a sharable connection. then, at that point, share that connection with the victim in case the victim click that interfaces the payload was downloaded then if the victim installs that payload you will get every one of their records into your terminal

Android keylogger

The second one is the android key logger first you will choose 2nd option and then hit enter, Then choose a port forwarding option

keylogger

Now share a link to the victim if your victim click that link you will get all stroke data in your terminal

Take face webcam

This also the same procedure first, choose the “Take face webcam” option then select the port forwarding option and share the link to the victim

facecam

When the victim opens the URL, it will ask him for permission to access the camera of his device and as soon as the victim allows it, the picture will start being captured.

victimview

As you can see the picture has been started to be captured from the victim device.

get all victim photos
RELATED ARTICLES

2 Comments

  1. ^__^
    _______/(oo)
    /( /(__)
    * || w—||
    || || — —
    — — By: Kp300

    :: Disclaimer: Developers assume no liability and are not ::
    :: responsible for any misuse or damage caused by SHOTDROID ::

    [01] Android Files {Get files from Android directories}
    [02] Android Keylogger {Android Keylogger And Getting a Shell}
    [03] Take Face Webcam {Take shots webcam face}
    [99] Quit {Exit}

    [+] Choose a number 1/2/3: 1
    [?] Do you want to hide apps? [y/n]: y

    [01] WhatsApp {/storage/emulated/0/WhatsApp}
    [02] Pictures {/storage/emulated/0/Pictures}
    [03] Download {/storage/emulated/0/Download}
    [04] Videos {/storage/emulated/0/Videos}
    [05] Internal Storage {/storage/emulated/0/}
    [06] External + Internal Storage {/storage/}
    [07] Custom
    [08] Back
    [99] Exit

    [+] Choose a dir then Hit Enter to continue: 1
    [+] ++ WhatsApp
    [+] Choose a dir then Hit Enter to continue:

    [01] Localhost
    [02] Ngrok

    [+] Choose a Web Server: 2
    [*] Starting Ngrok..
    [*] Please wait..

    Can’t find ngrok link in the script!
    :V

  2. [01] Android Files {Get files from Android directories}
    [02] Android Keylogger {Android Keylogger And Getting a Shell}
    [03] Take Face Webcam {Take shots webcam face}
    [99] Quit {Exit}

    [+] Choose a number 1/2/3: 1
    [?] Do you want to hide apps? [y/n]: y

    [01] WhatsApp {/storage/emulated/0/WhatsApp}
    [02] Pictures {/storage/emulated/0/Pictures}
    [03] Download {/storage/emulated/0/Download}
    [04] Videos {/storage/emulated/0/Videos}
    [05] Internal Storage {/storage/emulated/0/}
    [06] External + Internal Storage {/storage/}
    [07] Custom
    [08] Back
    [99] Exit

    [+] Choose a dir then Hit Enter to continue: 1
    [+] ++ WhatsApp
    [+] Choose a dir then Hit Enter to continue:

    [01] Localhost
    [02] Ngrok

    [+] Choose a Web Server: 2
    [*] Starting Ngrok..
    [*] Please wait..

    Can’t find ngrok link in the script!
    :V

Leave A Reply

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular