Android Virtualization
We should focus on the huge amounth of information available through mobile platforms that is not accesible through a web browser.
Enviroment
- Android Studio (developer.android.com/studio)
Android Studio is prefered over third parties.
Once you have it installed:
- Launch Android Studio.
- Do not import any settings but allow any default downloads.
- Choose "Don't Send" for analytics, then click "Next" in the Welcome Wizard.
- Choose the "Standard" option and click "Next"
- Select your desired appearance, click "Next", accept both agreements, and click "Finish".
Once everything has been successfully downloaded, click "Finish". This should launch the new application window, and the following should be performed.
Allow everything to complete before proceeding. Click the "Create device button, choose Pixel Pro 6 and selected the most recent API level.
Use the following configuration in Preferences > Settings:
- Click on "Tools" then "Emulator".
- Disable "Launch in a tool window" and click "OK"
Now choose your desired device and click the arrow button to launch.
Next, let's configure the device for future OSINT usage:
- Remove any desired applications from the home screen by clicking, holding, and dragging up.
- Launch the Chrome browser and deny any features.
- Search for F-Droid and visit the F-Droid site.
- Click "Download F-Droid" and confirm request.
- When finished, click the "Open" option and then "Settings" when prompted.
- Enable "Allow from this source" and click "Install" then "Open". Allow notifications.
- Within F-Droid, search for "Aurora Store" and select it.
- Click "Install" then "Settings"; enable "Allow from this source", and click "Install'.
- Click the circle "Home" button within the floating sidebar.
Open Aurora Store and make the following configuration changes:
- When prompted, select the Terms of Service box and click "Accept" - Click "Next" four times to navigate through the settings.
- Click "Grant" next to each option and "Allow" when prompted.
- Enable any access menu and use the back button until all options show "Granted".
- Click "Finish" then "Anonymous"
Store should now connect you to their proxy for the Google Play Store. Once you are within Aurora, install an application and now we can open the application within a secure virtual environment from my desktop computer.
Android Studio is prefered over third parties.
- Genymotion (genymotion.com)
- BlueStacks (bluestacks.com)
- Andy (andyroid.net)
- NoxPlayer (bignox.com)
Location Spoofing
Click the three dots next to your device, click "Duplicate", relaunch a device and click the three horizontal dots at the bottom of the floating bar. This opens the extended controls for your Android device. The Location tab allows you set a location which will be announced to any application which wants to know it. This allows you to spoof your location to apps which only provide nearby content, such as dating apps.
Apps
- Facebook/ Messenger/ Instagram
The benefit of the mobile app is the ability to check into places. Allow Facebook to access your location (which is spoofed). Click the "Check In" option, Facebook will present businesses near your current spoofed location. If you choose a location, and create a post on your timeline, Facebook will verify that you were there. Use this to portray that I am somewhere I am not. This method can help you establish credibility within your pseudo profile
- WhatsApp
Number can be a cellular, landline, or VOIP number.
- Twitter
Sharing your spoofed location can have many benefits.
- Snapchat
Much of the content within Snapchat is only visible within a mobile environment. Having access to the mobile app is vital.
- TikTok
The TikTok website does not currently allow native keyword search, but the mobile app does.
- TextNow
Virtual device does not possess a cellular connection, however, you can install TextNow, which allows you to send and receive SMS text messages.
- Truecaller
Allows search of unlimited cellular and landline numbers in order to identify the owners. Other options include Mr. Number and Showcaller
- Tinder
It can use your Facebook account associated with your device or a VOIP telephone number for the login.
To identify whether a target is at home or another location, set GPS in Android emulator to target's residence. Then search for men his age within one mile and confirmed he is at home. If you not get his profile as a result, you could change GPS to his work address or favorite bar. When received his profile in the results, you know that he is near the spoofed location. You can do all of this from anywhere in the world.
Contact Exploitation
Adding my unknown target's cellular telephone number to the Android phone's address book will often obtain the following information relative to the target:
- Associated Facebook accounts (name) from the "Find Friends" feature.
- Google Play purchases and reviews (interests) from the Google Play Store.
- Associated Twitter accounts (name) from the "Find Friends" feature.
- WhatsApp usernames and numbers (contact) registered to the cell number.
It forces many apps to believe that you are friends with the person. It overrides many authority protocols that would otherwise block you from seeing the connection from the real details to the connected profiles.
Just click the "Find Friends" option.
Secure Comunication Apps
If you possess a secure Proton Mail email address or Wire encrypted communications username, your request may be honored. Possessing these apps within your Android environment allows you to contain the evidence within a VM and protect your host machine.
Last updated