Most of you probably already know about the RAT(Remote Administrator).
Some of you may not like the RAT idea because it needs very creative social engineering methods or skills to install it on the targeted device to control it remotely. Also, most of the RATs have a connection to the server expiration problem.
But what If you could compromise an Android smartphone front camera using a single link?
Well, that’s possible! the victim just needs to open the link you’ve generated and it will give the control of the front camera on your hand.
Before knowing about the tool let us clear that the captured photos or video streams you will get may probably go to the owner of the tool too!. Beware of that. Don’t try to harm your close one. Don’t use it on someone to get his/her sensitive information. Privacy matters.
The name of the tool is SayCheese. As it gets the permission it needs, it will start doing its work.
Let’s get into the tutorial.
How to Configure SayCheese on Kali Linux
Fire up your Kali Linux machine and download or clone Saycheese from Github. Now go to the directory where you’ve downloaded it. In our case-
cd /root cd saycheese bash saycheese.sh
Inside the folder, you will find a shell script with the name saycheese.sh, that’s the script you need to run to launch the tool. Run it by giving the command as above.
Now it will give you two options to choose the service for port forwarding. Sometimes serveo.net doesn’t work then you have to choose Ngrok. Also, choose the subdomain. You can also manually set a subdomain name. Now hit enter and the tool has been started. Now it will give you a link generated by the port forwarding service chosen by you at the begining.
A question will pop up in some of your minds that whether you can use it over WAN or not. Yes, you can use it anywhere.
Now, when the victim clicks the link, a pop-up will appear asking for permission to use the camera. Here the advantage is, most people don’t have the idea that a single link can hack their system. They only know about RATs. You just say to the victim something based on his needs or interest he likes or wants desperately. Just make him allow permission.
That is the only thing you need to do and the left will be done by SayCheese. You will receive the Cam files at a regular interval of time. It also depends on the speed of your internet. The photos will appear in the saycheese folder.
There are a lot of different tools we can use to compromise devices but this tool is a little different from them. Every hacking method requires a little skill in social engineering. You can’t completely depend on tools to do all of your work.
What’s your opinion about Saycheese? lets us know in the comment box below. If you face any problem regarding the installation process of the tool feel free to leave a comment explaining the problem and please attach a screenshot to help us identify your problem.
The tutorial you found on this website is only for educational purposes. Misuse of this information can lead you to jail or punishment. Anything you damage, we are not responsible for that. Do use it on your own property. If you want to test it on other’s property, take written permission from them.
|Haven't found the solution or are you having an unknown error? Join HackTalkForum.com to start a discussion or join a discussion on it.|