- Joined
- 7 Dec 2023
- Messages
- 27
- Reaction score
- 0
- Points
- 1
Android Spyware 2025
This tool simulates a Kali Linux environment via Docker containers, making it accessible even on non-Linux systems like Windows. It’s perfect for educational purposes, such as teaching students about mobile security threats or helping pentesters prototype spyware defenses. The project repository includes everything from source code to deployment scripts, encouraging users to fork, modify, and contribute.
Key highlights include:
Educational Focus: Designed to demystify spyware mechanics without promoting real-world misuse.
Cross-Platform Compatibility: Runs on Windows, macOS, and Linux with minimal setup.
Modular Design: Separate modules for Metasploit RPC integration and ADB interactions.
By understanding tools like this, aspiring cybersecurity professionals can better appreciate the importance of app permissions, network security, and device encryption in protecting against actual threats.
Key Features of Android Spyware: Metasploit and ADB Powers Combined
What sets Android Spyware 2025 apart from basic ADB scripts or standalone Metasploit payloads is its seamless integration of features. The tool offers a dashboard where users can generate payloads, install them on test devices, and execute commands in real-time—all from a browser interface.
Metasploit-Driven Actions
Leveraging Metasploit’s API via RPC calls, Android Spyware 2025 enables a suite of remote commands. Here’s a breakdown of the most useful ones:
System and Device Intelligence Gathering: Dump system info, local time, call logs, contacts, and installed apps to analyze device state.
Location and Media Capture: Track GPS location, snap webcam photos, or stream live video for simulated surveillance scenarios.
Communication Interception: Extract messages and enable microphone recording (limited to Android versions below 9.0 for compatibility).
Device Manipulation: Lock/unlock the screen, change audio modes, send SMS, open or install apps, and even run shell commands.
Stealth Options: Hide or show the payload app icon, plus uninstall capabilities for clean testing.
These features mimic real spyware tactics, helping users learn how attackers exploit Android’s open ecosystem.
Prerequisites
Before diving in, ensure you have:
Docker and Docker Compose installed.
ADB (Android Debug Bridge) version 1.0.39 or compatible—install via Chocolatey on Windows.
Basic knowledge of networking (e.g., finding your LAN IP) and Docker.
Installation Steps
Follow these numbered steps to set up the tool:
Install ADB: Open an elevated PowerShell (Run as Administrator) and execute: choco install adb –version=1.0.39.
Create Project Directory: Make a new folder and download the Docker Compose file using curl: curl https://raw.githubusercontent.com/CanciuCostin/android-spyware/master/docker/docker-compose.yml -o docker-compose.yml.
Pull Docker Images: Run docker-compose pull to fetch the required containers, including Metasploit and Rails components.
Start ADB Server: In a command prompt, type adb server to initialize the bridge.
Deployment Process
Optional Configuration: Edit the Docker Compose file to add your Google Maps API key for location visualization.
Launch Containers: Navigate to your project directory and run docker-compose up. Wait for initialization (usually 2-5 minutes).
Access the Dashboard: Open your browser to http://localhost/admin. Log in with default credentials: username [email protected], password password.
Files Setup: A files directory auto-creates in your project path for payloads and outputs.
For local development without Docker, clone the repo, install Bundler and Yarn, set environment variables like ANDROIDSPYWARE_DATABASE_HOST=localhost, and run rails server. Use PostgreSQL rake tasks for database setup
Download Link
Download Link
Download Link
[/center]
[/CENTER]