Metasploit-framework: Android exploits

Created on 15 Sep 2017  路  14Comments  路  Source: rapid7/metasploit-framework

Are there no new Android exploits...I mean we didn't have any actual updates in our Android exploit database, recently blueborne (no official code available)and quadrooter were the newest exploit...is there any possibility to add new exploits for Android

picture AlistairXX

Most helpful comment

Hard or not isn't the point. It's a question of time. If it's easy, submit a PR!

picture OJ on 15 Sep 2017
3

All 14 comments

Pull requests are welcome :)
For quadrooter and a few others there isn't any source code available for the exploit, which is why we haven't added them.

timwr picture timwr on 15 Sep 2017

Are there no new updates available for Android because I feel like Android is always left out.....There are many major exploits with source code even available on Cve website

AlistairXX picture AlistairXX on 15 Sep 2017

Can you provide some links?

timwr picture timwr on 15 Sep 2017

Sure

AlistairXX picture AlistairXX on 15 Sep 2017

https://www.exploit-db.com/platform/?p=android

Check this link there are bunch of Android vulnerabilities with source code available (some might not have source code)

AlistairXX picture AlistairXX on 15 Sep 2017

Did you just say "can I have some exploits please?"

OJ picture OJ on 15 Sep 2017

I just said Android is left out and if possible make some new updates l

AlistairXX picture AlistairXX on 15 Sep 2017

When people get time I'm sure they'll get to it. If you're in a rush, feel free to pick one and create a module for it.

OJ picture OJ on 15 Sep 2017

But is integrating a exploit...that is already available that difficult?

AlistairXX picture AlistairXX on 15 Sep 2017

Hard or not isn't the point. It's a question of time. If it's easy, submit a PR!

OJ picture OJ on 15 Sep 2017
3

Let's see

AlistairXX picture AlistairXX on 15 Sep 2017

There are a few good reasons a lot of the PoC's you see in public repositories never make it past the PoC stage:

  • many aren't exploitable in the first place
  • the ones that are require a significant time investment, else someone would have done it already
  • there is money to be made porting n-day PoC's to fully functional exploits, so I can't fault people for not being generous with their hard work

As mentioned, feel free to submit PR's if you like

wwebb-r7 picture wwebb-r7 on 16 Sep 2017

Regarding the portage from poc to working sploit, its a time consuming and often fruitless endeavor. However, if client engagement permits such activity, starting the port as a PR will get you help with it and get the framework a new module. Its one of the aspects of this community which is overlooked when people think that framework is a product - its not, its an open source project used by a product. That said, the people who work on it range from the freshly initiated to (soon to be) gray ( but already 3ft long) beards. Learning to fish this way yields better long term results than asking for modules to be added as though its a commercial platform. The networking done through this procrss and relationships built can often provide the catalyst of success in later work (some people reading this have pointed me to vectors which led us to success on engagement before, even if they don't know they did). To paraphrase the borg, join us and be assimilated, resistance is counterproductive ;-).

sempervictus picture sempervictus on 17 Sep 2017
👍1

Great discussion guys! I'm going to close this though, since it's not really a specific issue!

busterb picture busterb on 18 Sep 2017
Was this page helpful?
0 / 5 - 0 ratings

Related issues

wvu-r7 picture wvu-r7  路  3Comments
idetest41 picture idetest41  路  3Comments
jecoliho picture jecoliho  路  3Comments
BaconBombz picture BaconBombz  路  3Comments
Sonya2010 picture Sonya2010  路  3Comments