• Stars
    star
    807
  • Rank 56,489 (Top 2 %)
  • Language
    Java
  • Created about 7 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

AndroRAT | Remote Administrator Tool for Android OS Hacking

AndroRAT

Remote Administration Tool for Android

Androrat is a client/server application developed in Java Android for the client side and in Java/Swing for the Server.

The name Androrat is a mix of Android and RAT (Remote Access Tool).

It has been developed in a team of 4 for a university project. It has been realised in one month. The goal of the application is to give the control of the android system remotely and retrieve informations from it.

Technical matters

  • The android application is the client for the server which receive all the connections.
  • The android application run as a service(not an activity) that is started during the boot. So the user does not need to interact with the service (Even though there is a debug activity that allow to configure the IP and the port to connect to).
  • The connection to the server can be triggered by a SMS or a call (this can be configured)

All the available functionalities are

  • Get contacts (and all theirs informations)
  • Get call logs
  • Get all messages
  • Location by GPS/Network
  • Monitoring received messages in live
  • Monitoring phone state in live (call received, call sent, call missed..)
  • Take a picture from the camera
  • Stream sound from microphone (or other sources..)
  • Streaming video (for activity based client only)
  • Do a toast
  • Send a text message
  • Give call
  • Open an URL in the default browser
  • Do vibrate the phone

Folders

The project contains the following folders:

  • doc: Will soonly contain all the documentation about the project
  • Experiment: Contain an experimental version of the client articulated around an activity wish allow by the way to stream video
  • src/Androrat: Contain the source code of the client that should be put on the android plateform
  • src/AndroratServer: Contain the sources of the Java/Swing server that can be run on any plateform
  • src/api: Contain all the different api used in the project (JMapViewer for the map, forms for swing, and vlcj for video streaming)
  • src/InOut: Contain the code of the content common for the client and the server which is basically the protocol implementation

Screenshots

Main GUI

This is the main GUI where all the clients connected appears. The list is dynamically updated when a new client connects or is disconnected. Moreover a log of all connections and global informations are showed in the log panel at the bottom of the window. A simple double-click on a client open his window to interact with him.

Main GUI

Client Panel

All the actions with client can be made in the client window which is articulated around tabs. The default tab is called Home and provide various functionalities. First as we can see in the left scrollview all the informations about the client like sim infos, battery infos, network infos, sensors infos etc. On the right there is the options which allow remotely to change the configuration of the client like the ip and port to connect to, either or not wait a trigger to intent server connection etc. Finally quick actions can be perfomed in this tab like a toast message, do vibrate the phone or open an URL.

Client Panel

Other tabs

The two screenshots below shows two others tabs for two functionalities which are respectively get contacts and geolocation. As you can see on the get contacts panel the list on the left show all contacts the name, the phone number and the picture if available. Morevover on the right three buttons allow to get more information about the selected contact send him a sms or call him. For Geolocation we can choose our provider either GPS either network that use google to locate. Then the streaming can be started and the map will be updated as soon as data has been received.

Contacts

GPS tab

Download and Clone

Download: https://github.com/The404Hacking/AndroRAT/archive/master.zip

Clone: git clone https://github.com/The404Hacking/AndroRAT.git

The404Hacking | Digital UnderGround Team

The404Hacking

Follow us !

The404Hacking - The404Cracking

Instagram - GitHub

YouTube - Aparat

Email

More Repositories

1

websploit

Websploit is an advanced MITM framework.
Python
192
star
2

EggShell-RAT

iOS & MacOS Remote Administrator Tools (RAT) | The404Hacking
Objective-C
143
star
3

ZIP-Password-BruteForcer

Zip File Password Cracking with Using Password List !
Python
107
star
4

Windows-Python-RAT

A New Microsoft Windows Remote Administrator Tool [RAT] with Python by Sir.4m1R.
Python
91
star
5

XsSCan

XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]
Python
61
star
6

BruteSploit

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p
Shell
41
star
7

Infoga

Infoga - Email Information Gathering Script
Python
35
star
8

Instagram-Brute-Forcer

InstaBrute | Using For Brute Force Instagram Account
Python
31
star
9

b374k-mini

PHP Webshell with handy features.
PHP
31
star
10

CyberScan

CyberScan
Python
23
star
11

WordBrutePress

WordBrutePress v1.0 | WordPress Admin Panel Password Cracker [Brute Force]
Python
20
star
12

Hash-Cracker

Python Script for Hash Cracking | Coded By Sir.4m1R
17
star
13

Admin-Page-Finder

Site Admin Page Finder with Python Script | Edited By Sir.4m1R
Python
17
star
14

URLExtractor

Information Gathering & WebSite ReConnaissance.
Shell
14
star
15

CMSmap

CMSmap tool v0.6 - Simple CMS Scanner
Python
12
star
16

Fake-Mail

Fake Mail PHP Script
PHP
11
star
17

sqlmap

Automatic SQL injection and database takeover tool.
Python
11
star
18

Sn1per

Automated Pentest Recon Scanner
PHP
11
star
19

Instagram

Instagram Brute Force Attack !
Python
9
star
20

DSSS

Damn Small SQLi Scanner. (DSSS)
Python
9
star
21

Sudo

Sudo Command for Microsoft Windows
Batchfile
8
star
22

CloudFail

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Python
7
star
23

cupp

CUPP - Common User Passwords Profiler !
Python
7
star
24

CameraDar

CameraDar hacks its way into RTSP CCTV cameras.
7
star
25

FakeMail

Fake Mail PHP Script 2
PHP
6
star
26

wpscan

WPScan is a black box WordPress vulnerability scanner.
Ruby
6
star
27

Hidden-PHP-Uploader

Hidden PHP Uploader [Username:Password]
5
star
28

PubIP

Get Your Public IP Address | Coder: Sir.4m1R
Python
5
star
29

Kali-Apache2

Kali Linux Apache2 Service By Hanieh Panahi
Python
4
star
30

vrn

👨 Code for "Large Pose 3D Face Reconstruction from a Single Image via Direct Volumetric CNN Regression".
MATLAB
4
star
31

randomrepo

Repo for random stuff
3
star
32

the404hacking.github.io

The404Hacking GitHub WebSite
HTML
3
star
33

TabChi

Best TabChi git | Free, Don't Show Ads, Don't Delecting By Telegram, Easy Working !
Lua
3
star
34

sn1per-docker

Dockerized version of Sn1per
Shell
3
star
35

TGSeeD

Best AntiSpam Git Link | Powered By The404Hacking
Lua
2
star
36

edge

C++
2
star
37

MacPhish

Office for Mac Macro Payload Generator
Python
1
star
38

distro

Torch installation in a self-contained folder.
CMake
1
star
39

The404Hacking

Config files for my GitHub profile.
1
star