Skip to content

AhMyth v1.0-beta.4

Pre-release
Pre-release
Compare
Choose a tag to compare
@Morsmalleo Morsmalleo released this 01 Jan 09:24
· 643 commits to master since this release
v1.0-beta.4
1c1b2dd
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

AhMyth v1.0-beta.4

This release contains major updates, bug fixes, stability improvements, and more.

This release was promised to be released a long time ago, but a lot of things came up, so I apologize to everyone for how long this took to do.

See the Changelog below for more Update Information on this release.

Changelog

Server Updates

  1. Fixed a limitation in the Bind On Launch feature, where AhMyth was only capable of searching through smali directories for launcher activities when backdooring original APK files. AhMyth can now search any smali or smali_classes directory recursively for the launcher activity when backdooring APKs using this method.

  2. Updated the APK Browser Dialog to only allow the selection of APK files to avoid misselection of other files.

  3. Updated code for rendering HTML pages in the main.js file to allow AhMyth to upgrade from [email protected] to [email protected] for Windows and [email protected] for Linux and macOS.

  4. Added a new, simpler, static hook method for backdooring APK files when using the On Launch binding method. This supersedes the old onCreate hook method used before. This integration was borrowed from Metasploit-Framework's androidpayload files, which work in conjunction with Client Update No. 1 seen further down this list.

  5. Fixed building problems with Windows by integrating a child process to empty the Apktool framework directory before building a standalone or bound APK payload. This was done because Windows users required doing this manually to allow AhMyth's building process to work properly. It's now done automatically before building each payload APK.

  6. Fixed a bug in the function for modifying Launcher Activity files when using the Bind on Launch method. This bug would cause the package name of a legit APK file to be the absolute path of the Launcher Activity, which was not good. The newer cross-platform Bind On Launch feature has since fixed thanks to the use of RegExp.

  7. Fixed a bug in the Bind On Launch feature where the function for the extraction of the launcher activity from the android:targetActivity attribute was not the full converted launcher activity string. Apparently, the code wasn't finished by the creator because it was not having its instances of XML periods (.) converted to path separating slashes (/ - \\). This used to cause a major freeze in binding with some APKs, but it has now been fixed and will no longer happen anymore.

  8. Added new functions to modify an original APK's SDK version number when binding on launch to aid in allowing permissions of the payload to be granted after installing a bound payload. This works with most APKs tested, but there were a few exceptions, so don't expect this to work on every APK you try it with.

  9. Corrected returned picture size from the camera snap feature. Major thank you to GitHub user HiddenPirates for doing this.


Internal Node Module Updates

  1. angular v1.8.0 >> angular v1.8.3
  2. angular-route v1.8.0 >> angular-route v1.8.3
  3. fs-extra v1.0.0 >> fs-extra v11.1.0
  4. geoip-lite v1.1.8 >> geoip-lite v1.4.6
  5. socket.io v1.4.5 >> socket.io v2.4.1

Internal Node Module Migrations

  1. semantic-ui v2.2.6 >> fomantic-ui v2.8.8
  2. homedir v0.6.0 >> node-homedir v1.1.1

Client Updates

  1. Implemented Java code responsible for starting the new static hook function explained in the Server Updates above.
  2. Added better boot persistence.

Repository Updates

  1. Updated repository README.md with badges and easy-to-read content.
  2. Created an AhMyth wiki that covers detailed information about AhMyth and its payload, as well as installation instructions, a troubleshooting manual for known AhMyth errors, and a full user manual for newer users of AhMyth.
  3. Added Issues Templates to further assist myself and other AhMyth users in determining where problems are with either the Server, the Client, or with Binding.
  4. Fixed binary setup installers.

What's New?

  1. Built-in a new Payload URL Masker to slightly assist users with remote payload installation. A big thank you to YagamiLight17 for modifying and building this into AhMyth, and a big thank you to its original creator yogeshwaran01! This is currently unusable.
  2. Added a new updated splash screen with a new background and a new AhMyth logo.
  3. New custom permissions selection for building standalone or bound APK payloads. A MAJOR thank you to YagamiLight17 for working tirelessly on this.
  4. Integrated error logging for decompiling, building, signing, and other errors.
  5. Updated auto installers. They've been moved into one "autoinstall" file and work for Kali and Parrot.
Assets 6
Loading
39 Join discussion