Detect Spywares On Your Mobile Device Without Big Efforts Series #Part 2

#!/

Vip Altın Üye
9 Mar 2016
1,326
0
TEM
Detect Spywares On Your Mobile Device Without Big Efforts #Part 2

Spywares links a connection to between the client (victim) and the provider (attacker). When a spyware reach your device, it suddenly boosts networking traffic to up and opening a port via IP host.

images


If a victim focus especially in IP and its ports; it becomes with huge benefits.

Lets begin to how to detect that:

Journey On The Store

Navigate to: Store or Browser -> ApkMirror website -> Terminal Emulator app

https://www.apkmirror.com/apk/jack-palevich/terminal-emulator/#variants

SS_0732.jpg


or

http://play.google.com/store/apps/details?id=jackpal.androidterm

Don't forget to scan downloaded file via Virustotal website.

After installing that app;

Navigate to: Store or Browser -> ApkMirror website -> BusyBox app

SS-0733.jpg


Refer to that BusyBox app, gain root permission and let's install it in /system/xbin section

Crime Scene Investigation

After done these process, open the Terminal Emulator app and let's see what can we do;

press:
Kod:
netstat -l

command via that app and let's see the sample output:

Oi2UbP.md.jpg


Especially on the same lines of between the *Established, *Listening or *Connected tabs, you need to look around the *Foreign address.

If you see any suspicious foreign address or not sure about possibilities of any spywares;

Navigate to: Browser -> https://ipinfo.io Web Site

and press that to be examined address into search bar:

OiUPLU.jpg

 

sewdam63

Yeni üye
29 Eki 2018
26
1
First of all, thank you for your effort
First of all, it will be better if you share the topics you open in Turkish. Good forums.
 
Son düzenleme:

Dolyetyus

International Team Leader
21 Nis 2020
894
49
Maastricht
First of all, thank you for your effort
First of all, it will be better if you share the topics you open in Turkish. Good forums.

Firstly, thanks for your interest. About your request, there are also Turkish versions available. You can check other sub-forums. We translate other useful turkish articles to English as well.
 
Üst

Turkhackteam.org internet sitesi 5651 sayılı kanun’un 2. maddesinin 1. fıkrasının m) bendi ile aynı kanunun 5. maddesi kapsamında "Yer Sağlayıcı" konumundadır. İçerikler ön onay olmaksızın tamamen kullanıcılar tarafından oluşturulmaktadır. Turkhackteam.org; Yer sağlayıcı olarak, kullanıcılar tarafından oluşturulan içeriği ya da hukuka aykırı paylaşımı kontrol etmekle ya da araştırmakla yükümlü değildir. Türkhackteam saldırı timleri Türk sitelerine hiçbir zararlı faaliyette bulunmaz. Türkhackteam üyelerinin yaptığı bireysel hack faaliyetlerinden Türkhackteam sorumlu değildir. Sitelerinize Türkhackteam ismi kullanılarak hack faaliyetinde bulunulursa, site-sunucu erişim loglarından bu faaliyeti gerçekleştiren ip adresini tespit edip diğer kanıtlarla birlikte savcılığa suç duyurusunda bulununuz.