John Leon NanoDano
skulltech
/ apk-embed-payload.rb
Last active
April 1, 2023 04:50
POC for injecting Metasploit payloads on arbitrary APKs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| # apk_backdoor.rb | |
| # This script is a POC for injecting metasploit payloads on | |
| # arbitrary APKs. | |
| # Authored by timwr, Jack64 | |
| # | |
| require 'nokogiri' | |
| require 'fileutils' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| setsebool -P httpd_enable_homedirs true | |
| chcon -R -t httpd_sys_content_t /home/testuser/public_html | |
| setsebool -P httpd_can_network_connect 1 | |
| $ sudo setsebool -P httpd_read_user_content on | |
| $ sudo setsebool -P httpd_sys_script_anon_write on | |
| $ sudo chcon -R -t public_content_rw_t cache/ |