Hey guys, unknowingly we have come up with a tool for those people who want to spy on people and get sensitive information of those people. Basically this tool will do the job of double shooting with one arrow in your case as you can use it on both android and windows users. ShotDroid is a pentesting tool for both android and windows and there are 3 tools that have their respective functions : Android Files, Android Keylogger and Take Face Webcam.
Features
- Hide apps in android files.
- Custom android directory.
- For Android Keylogger -> you can see it here: Simple-keyboard or LokiBoard.
- Automatic html template in take face webcam.
- Custom html or custom your html folder in take face webcam tool.
- etc.
Let’s take a look 🙂 !!
Dependencies
In the case of each tool it is necessary that the dependencies should be pre-configured in the system before the installation of tool, hence first we have to install both these dependencies in our system with the help of below command.
|
1 |
apt install zenity xterm |
Installation ShotDroid
Now we will install this tool with the help of below command.
|
1 2 |
git clone https://github.com/kp300/shotdroid.git cd shotdroid |
COOL 🙂 !! The tool is coded in bash language so we have to operate this tool with bash utility. After opening this tool, we get three options inside this tool, whose work is given below.
|
1 |
bash shotdroid.sh |
Android Files
The following facility has bee given to get files from Android directory, internal and external storage (Images, Videos, Whatsapp, ..)
Android Keylogger
You can use this feature for android keylogging keyboard and reverse shell as well.
Webcam Spy : Windows
Now comes the main part of this tool where we will show you how you can spy on anyone by stealing their picture. We have to choose option third and it will generate a ngrok link which we need to share to the victim whose we want to steal the live picture.
Hmm 🙁 !! Suppose if you are not able to copy the url then you can grab the url by opening the following url on browser.
|
1 |
http://127.0.0.1:4040 |
Amazing 🙂 !! When the victim opens the URL, it will ask him for permission to access the camera of his device and as soon as the victim allows it, the picture will start being captured.
Done 🙂 !! Everything is ready to explode.
Good 🙂 !! As you can see the picture has been started to be captured from the victim device.
BOOOM 🙂 !! As you can see all the captured images are saved in the system.
Done 🙂 !! Just like that you can spy on someone else and it does not depend on which operating system they are using.
A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.
