22 October 2010
Posted by on
I’ll show you in this topic how to run NMAP on your Smartphone, and exactly on Android Phone!!!
Nmap is one of the most wanted software used by pentesters, it help to gather informations about ports and services running on a machine, services fingerprinting, detecting Os version… it can run on android too by followind these steps.
First of all you need to download the cross compiled arm nmap from here.
Then connect your phone to your pc and on adb:
adb push nmap.zip /sdcard/nmap.zip
adb shell (following on shell)
cp /sdcard/nmap.zip .
chmod 755 *
After that you can run nmap (nmap -v -iR 5 -PN -p 80 –n) using the terminal emulator like on a normal pc!
The downloaded version is 4.0 if you want to test the 5.30beta1 have a look at this!
3 August 2010
Posted by on
Two security researchers From “Spider Labs”, have made the demo of a rootkit for Android At the Defcon, which once installed on a phone (either directly or via an application available on android market) allows the attacker to have a full root remote access to the phone. The connection is established by initiating an outgoing TCP connection via 3G or WiFi. The attacker could steal data, or control the phone.
This rootkit was developed in 2 weeks, and has been distributed on DVD to those who attended the conference, and possibly gonna be avaible on internet in the upcoming weeks, pushing the manufacturers to patch their phones and to focus more on their security.