any help
Forum Thread: How Can Bypass the AV and Make Payload for Android Clean
- Hot
- Active
-
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
2 days ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 2 Replies
3 wks ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
3 wks ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
2 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
2 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
2 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
3 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
3 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
3 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
4 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
4 mo ago -
Forum Thread: How to Run and Install Kali Linux on a Chromebook 18 Replies
5 mo ago -
Forum Thread: How to Find Admin Panel Page of a Website? 13 Replies
6 mo ago -
Forum Thread: can i run kali lenux in windows 10 without reboting my computer 4 Replies
6 mo ago -
Forum Thread: How to Hack School Website 11 Replies
6 mo ago -
Forum Thread: Make a Phishing Page for Harvesting Credentials Yourself 8 Replies
6 mo ago -
Forum Thread: Creating an Completely Undetectable Executable in Under 15 Minutes! 38 Replies
7 mo ago -
Forum Thread: Hacking with Ip Only Part [1] { by : Mohamed Ahmed } 5 Replies
8 mo ago
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Dox Anyone
-
How To: Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To: Exploit EternalBlue on Windows Server with Metasploit
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
BT Recon: How to Snoop on Bluetooth Devices Using Kali Linux
-
How To: Use SQL Injection to Run OS Commands & Get a Shell
-
Tutorial: Create Wordlists with Crunch
-
How To: Pop a Reverse Shell with a Video File by Exploiting Popular Linux File Managers
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How to Hack Wi-Fi: Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
How To: Brute-Force Nearly Any Website Login with Hatch
-
How To: Run Kali Linux as a Windows Subsystem
-
How To: Top 10 Things to Do After Installing Kali Linux
-
How To: Fuzz Parameters, Directories & More with Ffuf
-
How To: Stealthfully Sniff Wi-Fi Activity Without Connecting to a Target Router
10 Responses
You put no effort into your question, so why should we put any effort into our answer? Try starting with what you have tried, then realize that AV evasion is a constant cat and mouse game that will require you to put in work.
i Embed a Metasploit Payload in an Original .Apk File but the AV Catch it
i Embed a Metasploit Payload in an Original .Apk File but the AV Catch it
How to Encrypt it
Basically AV works by reading the signature file.You can edit it using this simple steps,this will guarantee you a perfect social engineering and AV by passing.
1.Decompile your apk with apktool - apktool d /path/to/apk /path/to/decompilefolder
2.Edit what you need like the Name of the apkfile located at the rest/values/strings.xml or you can add an icon by making a folder by
drawable-ldpi
drawable-mdpi
drawable-hdpi
in the rest directory and add the your icon with 48px icon in the "drawable-ldpi" and 36px icon in the "drawable-mdpi" and 72px icon in the "drawable-hdpi" and edit the AndroidMenifest.XML file and add this line android:icon=@drawable/icon and make sure you name all your icons with the name icon.png.
Then complie this by this code apktool b /path/to/decompilefolder then you will find the apk file in a filde named dist.Then you must sign the apk file with jarsigner ,this is where you change the signature.
jarsigner -verbose -keystore ~/.android/debug.keystore -storepass android -keypass android -digestalg SHA1 -sigalg MD5withRSA /path/to/apk androiddebugkey*
Decompile the apk or the Payload
can you give me video for it
You cab look at this tut at nullbyte and his previous one too.
https://null-byte.wonderhowto.com/how-to/embed-metasploit-payload-original-apk-file-part-2-do-manually-0167124/
hey JOHN, how u success in bending the payload with the original apk, can you make a video for editing the manifest and .Smali files,i follow the steps in this tutorial
https://null-byte.wonderhowto.com/how-to/embed-metasploit-payload-original-apk-file-part-2-do-manually-0167124/
but i am stuck in the editing issue any help plz ??
Share Your Thoughts