View unanswered posts | View active topics It is currently Sat Mar 23, 2019 2:47 pm



Reply to topic  [ 8 posts ] 
 Basic Android root kit 
Author Message

Joined: Sun Apr 15, 2012 5:22 pm
Posts: 192
Post Basic Android root kit
Recent Android releases (Jelly Bean 4.3, Kit Kat) have quite limited root access.
While Utilite provides root access via both kernel console and ADB (which is also quite much), root access via Android terminal application is not possible.
Or ... it is, with the aid of a little root kit.
We have developed a quite basic root kit (we call it shell tunneling, emphasizing the technical side), that was tested succesfully on Utilite, Nexus 4, and Ubuntu PC (yes, it is not Android-specific).
More detailed directions are on GitHub:
https://github.com/compulab/shell-tunnel


Thu May 29, 2014 9:29 am
Profile

Joined: Sun Sep 29, 2013 10:53 pm
Posts: 48
Post Re: Basic Android root kit
Could you provide any more detailed instructions on running the script for root access ?


Fri May 30, 2014 1:55 am
Profile

Joined: Sun Apr 15, 2012 5:22 pm
Posts: 192
Post Re: Basic Android root kit
Gladly !
Unfortunately, I find the provided instructions extremely detailed already.
...
Let's demonstrate it on Ubuntu (there is a build flag):
[1] Open a terminal.
[2] Get root access.
$ sudo bash
[3] Call shell-tunnel server:
# shell-tunnel --daemon

[4] Open another terminal.
[5] Call shell-tunnel client:
$ shell-tunnel --client

What happens ?
You get this:
#

The problem with Android, you cannot get the root access (first 3 points) from anywhere you want. But there are such spots from where root can be accessed, e.g. /system/etc/install-recovery.sh is run as root. The SuperSU, that Mandy has explained about in another post, also starts some daemon from install-recovery.sh script, do you think it's a coincidence ? I'm not so sure.


Sun Jun 01, 2014 8:46 am
Profile

Joined: Sun Sep 29, 2013 10:53 pm
Posts: 48
Post Re: Basic Android root kit
That makes sense now and I thank you for the guidance.

If I may ask about editing the Install-recovery.sh script, is it as simple as enabeling R/W and pasting the provided Android Root kit script below the last line of the current Install-recovery.sh script?


Sun Jun 01, 2014 1:52 pm
Profile

Joined: Sun Apr 15, 2012 5:22 pm
Posts: 192
Post Re: Basic Android root kit
Yes.
Remount 'system' partition r/w, and add whatever you need at the bottom of the script.


Sun Jun 01, 2014 1:56 pm
Profile

Joined: Tue Dec 09, 2014 10:12 pm
Posts: 2
Post Re: Basic Android root kit
I have been unable to compile the root kit. The ndk I'm using to compile it doesn't seem to have a pty.h or an implementation of openpty(). Can you provide any assistance? I want to use shell tunneling to be able to access ifconfig from within my app.


Tue Dec 09, 2014 10:15 pm
Profile

Joined: Sun Apr 15, 2012 5:22 pm
Posts: 192
Post Re: Basic Android root kit
If you happen to be an Ubuntu user, there is package for this.
Refer to:
http://askubuntu.com/questions/250696/c ... le-for-arm


Tue Dec 16, 2014 3:57 pm
Profile

Joined: Tue Mar 12, 2019 10:48 am
Posts: 1
Post Re: Basic Android root kit
Utilization of the computer is yield for the individuals. The roadmap of the computer and Grammarly is attached for the formal items of the field. The injunction of the computer is opened for the learners of the machine.


Tue Mar 12, 2019 10:54 am
Profile
Display posts from previous:  Sort by  
Reply to topic   [ 8 posts ] 

Who is online

Users browsing this forum: No registered users and 0 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by STSoftware for PTF.