Closed dana-at-cp closed 6 years ago
Implemented randomization of permissions in the Android manifest when merged with permissions from the Metasploit payload APK. Included an option to keep the original permissions of the APK file.
New changes are in version 0.2.3 on master.
The Android permissions injected from the Metasploit payload are static and used by some mobile antivirus vendors as a detection mechanism.
In the script, merging of Android permissions from the original APK with the Metasploit payload APK should also randomly order the new set of permissions.