Fully Undetectable Metasploit Payload in Termux Over the LAN (Portmap.io )| with Apk Editor and ApkTool


Hello and welcome back to another tutorial. This post is only for educational purposes please do not misuse it we don't encourage any illegal activities using the information on the blog. Today we will learn how to create Fully Undetectable Metasploit Payload in Termux which will work Over the LAN (Portmap.io ) we will modify payload using tools and with Apk Editor and ApkTool.

As always before moving towards the blog we will check som questions and answers to make the things clear and of course, in the end, you will get a video tutorial.
What is Payload?
What is apktool and termux?
What is Metasploit and how to install it?
What do you mean by over the LAN attack?
What is Portmap.io, why do we use it?
Why do we need FUD payload?
What are the requirements to Generate FUD payload using Metasploit in Termux or Linux?

What is Payload?
The payload is a combination of malicious codes inside an archive which is used to control the device remotely. There is no need to have any physical connection between the devices. A hacker can motivate you to install an authentic APK which can never be if that is downloaded from outside the play store. To stay protected never download any kind of Apk outside the play store. It can harm your device even you can lose your private pictures, contacts much more. Let me show you how dangerous it can be sometimes. Suppose that one of your friends pretends to be an android developer and asks you that he has bypass some purchase screen from a well-known application you required someday. A friend knows what you need and what to say so that you get convinced to install, this is known as social engineering. Where a known person uses your resources for his personal gain. Now he convinced you and you installed that Apk. The mean time his dirty mind wants to see your Facebook messages and your private camera picture. Which can be easily seen by him now. Why? Because you installed an unauthenticated application into your android drive. So the only way to protect your self from this attack is, do not install Apk from an unknown source and always keep your mobile device with you, do not share it with somebody for any kind of private all or text. Simple internet access to malicious web pages can cause your device to get into someone's hand.


What is apktool and termux?
Termux is an Android terminal. Termux is one of the well-known applications used to run Linux utility features in Android. You can do everything you on Termux as you do it Linux OS. If you want to know more about the Termux and its use do check out my Youtube channel EFX Tv.

What is Metasploit and how to install it?
The Metasploit framework is a very powerful tool use to probe systematic vulnerabilities on networks and servers. Metasploit is an open-source project, which made it easy to customize and use with most of the Operating systems. If you want to install the Metasploit Simply go through the Video for Termux and article for Linux.


How To Install Metasploit on Ubuntu Machine Without Any Error | Install Metasploit on Ubuntu


What do you mean by over the LAN attack?
The cybers attacks are of two types for the developers. Developers can attack either inside the network or he can attack a live victim. Inside the LAN attack is known as localhost attacking and attacking a live victim can be done outside the net network which is known as over the Lan attack. For attacking over the LAN you need to have a static IP or port forwarded on your dynamic IP router. Some time port forwarding on old version routers or d-link is a very critical task. In this situation, we use sites like Ngrok or other DNS sites. If you want to check out our blog Top 33 Free DNS | Solution to Dynamic IP.
What is Portmap.io, why do we use it?

Port map is an online DNS server use to forward the IP and attack over the LAN with the forwarded port. Where you need a client application to run the DNS server on your OS to create a reverse connection. For example in portmap.io uses OpenVPN client to communicate back with the os and provide it a static IP with persistence connection.
Why do we need FUD payload?
FUD stands for fully undetectable payload. When we convert a malicious app it becomes detectable by most of the antiviruses, with some modification we can make it FUD this is known as FUD payload. We know there is a virus inside the software but for the victim that the virus becomes FUD.

What are the requirements to Generate FUD payload using Metasploit in Termux or Linux?

  1. You need to have Java8 installed in your system.
  2. Metasploit with the connected database and PostgreSQL service.
  3. Port forwarded or online DNS server.
  4. Apk editor for android and Apktool for Linux
  5. There should be internet connectivity

Now we will talk about how to generate a Fully Undetectable Metasploit Payload in Termux Over the LAN. To create payload first of all you should have Metasploit installed inside your Termux. For that there are few links above you can check that out. After that clone a git repository by clicking here. Follow the instructions and set up the tool properly. Make sure you should have the Metasploit database connected to the msf database. To check database is connected or not run simply command
msfconsole
db_status
If db is connected then only run the application otherwise it won't work.
Now let us dig it deeper.

Process of generating Fully Undetectable Metasploit Payload in Termux Over the LAN

We require:
An account with Portmap.io: Click here to configure
APK Editor on android: Click here to download
Apktool on Linux: Click here to see the installation process
Git repository: Click here to get the git
Let's get into the video to view the exact process to create a Fully Undetectable Metasploit Payload in Termux Over the LAN (Portmap.io )| with Apk Editor and ApkTool
Please click below to watch the full video tutorial.


Disqus Comments