User Tools
docu:tutos:android:adb_root_reverse_shell_openssl
This is an old revision of the document!
Spawn a usable root shell on your Android, without su, using "ADB as Root" developer option and Termux with openssl
First, we need to have Termux installed and the “Run ADB as Root” developer option enabled.
Install Termux dependencies
pkg update
pkg install openssl
Generate a random key for your openssl reverse shell setup
openssl rand -hex 48 # we will use "9c951d7c50b2480d19f0e538ca8da1efd8639d87846cf054478fa8bf472c9b9f3c62d6ee69e2aa6b5afdefb771ba041e" as an example but it is recommended to use your own key
Save this scripts in your Termux home
- "shserver"
export LHOST="*"; export LPORT="4242"; export PSK="9c951d7c50b2480d19f0e538ca8da1efd8639d87846cf054478fa8bf472c9b9f3c62d6ee69e2aa6b5afdefb771ba041e"; openssl s_server -quiet -tls1_2 -cipher PSK-CHACHA20-POLY1305:PSK-AES256-GCM-SHA384:PSK-AES256-CBC-SHA384:PSK-AES128-GCM-SHA256:PSK-AES128-CBC-SHA256 -psk $PSK -nocert -accept $LHOST:$LPORT
docu/tutos/android/adb_root_reverse_shell_openssl.1704573120.txt.gz · Last modified: 2024/01/06 20:32 by admin
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
