mvt icon indicating copy to clipboard operation
mvt copied to clipboard

Published 20 hours ago verified publisher icon mvt-project

Tip: Self-check Droid via Termux and sudo

Open Manamama opened this issue 1 year ago • 1 comments

Termux, Linux localhost 4.14.186+ #1 , the usual termux stuff installed, plus maybe WADB. Then: adb connect localhost Check:

$ adb devices
List of devices attached
localhost:5555  device

Must be rooted:

~ $ sudo whoami
Using: /data/data/com.termux/files/usr/bin/su ...
root
~ $

Then, simply: sudo mvt-android check-adb (it defaults to the localhost)

Manamama avatar Jun 24 '24 17:06 Manamama

Thanks for sharing!

Te-k avatar Jul 25 '24 11:07 Te-k

Currently installation via pip fails because puccinialin is not found. I think it's not available for arm

besendorf avatar Jun 22 '25 20:06 besendorf

Currently installation via pip fails because puccinialin is not found. I think it's not available for arm

It has worked on my Droids since early 2024... Let me retest:

 neofetch
 
------ 
Operating System: Android 11 aarch64 
Kernel: 4.14.186+ 
Shell: /data/data/com.termux/files/usr/bin/bash 5.2.37 
Python: 3.12.11 
------ 
Display Manager 
Display Server:  
Desktop Environment theme: Magna-Dark-GTK [GTK3] 
Icons theme: Adwaita [GTK3] 
------ 
Packages: 142 (pacman), 849 (dpkg), 1 (pkg) 
Terminal: /dev/pts/29 
System Font: Adwaita Sans 11 [GTK3] 
------ 
Central Processing Unit: MT6785V/CD (8) @ 2.0GHz 
CPU Usage: 2% 
Memory: 4123MiB / 5638MiB 
Disk (/system/priv-app/WapiCertManager/oat/arm64/WapiCertManager.vdex): 1.9G / 1.9G (100%) 
Uptime: 15 hours, 33 mins

and :

pip show mvt 
Name: mvt
Version: 2.6.0
Summary: Mobile Verification Toolkit
Home-page: https://docs.mvt.re/en/latest/
Author: 
Author-email: Claudio Guarnieri <[email protected]>
License: 
Location: /data/data/com.termux/files/usr/lib/python3.12/site-packages
Requires: adb-shell, appdirs, click, cryptography, iOSbackup, libusb1, packaging, pyahocorasick, pyyaml, requests, rich, simplejson, tld
Required-by:

and it self-tests as per above fine.

Quick version check only this time:

~/downloads $ mvt-android 
Usage: mvt-android [OPTIONS] COMMAND [ARGS]...

Options:
  --help  Show this message and exit.

Commands:
  check-adb        Check an Android device over ADB
  check-androidqf  Check data collected with AndroidQF
  check-backup     Check an Android Backup
  check-bugreport  Check an Android Bug Report
  check-iocs       Compare stored JSON results to provided indicators
  download-apks    Download all or only non-system installed APKs
  download-iocs    Download public STIX2 indicators
  version          Show the currently installed version of MVT
~/downloads $ mvt-android  version


        MVT - Mobile Verification Toolkit
                https://mvt.re
                Version: 2.6.0
                Version 2.6.1 is available! Upgrade mvt with `pip3 install -U mvt`
                There are updates to your indicators files! Run the `download-iocs` command to update!


~/downloads $

and the tests also work:

~/downloads $ sudo mvt-android check-adb
Using: /data/data/com.termux/files/usr/bin/su ...


        MVT - Mobile Verification Toolkit
                https://mvt.re
                Version: 2.6.0
                Version 2.6.1 is available! Upgrade mvt with `pip3 install -U mvt`
                There are updates to your indicators files! Run the `download-iocs` command to update!


04:05:12 INFO     [mvt.android.cmd_check_adb] Parsing STIX2 indicators file at path                                                                                                                                
                  /data/data/com.termux/files/home/.suroot/.local/share/mvt/indicators/raw.githubusercontent.com_AmnestyTech_investigations_master_2021-07-18_nso_pegasus.stix2                                    
04:05:13 INFO     [mvt.android.cmd_check_adb] Parsing STIX2 indicators file at path                                                                                                                                
                  /data/data/com.termux/files/home/.suroot/.local/share/mvt/indicators/raw.githubusercontent.com_mvt-project_mvt-indicators_main_intellexa_predator_predator.stix2                                 
         INFO     [mvt.android.cmd_check_adb] Parsing STIX2 indicators file at path                                                                                                                                
                  /data/data/com.termux/files/home/.suroot/.local/share/mvt/indicators/raw.githubusercontent.com_mvt-project_mvt-indicators_main_2022-06-23_rcs_lab_rcs.stix2                                      
         INFO     [mvt.android.cmd_check_adb] Parsing STIX2 indicators file at path                                                                                                                                
                  /data/data/com.termux/files/home/.suroot/.local/share/mvt/indicators/raw.githubusercontent.com_AssoEchap_stalkerware-indicators_master_generated_stalkerware.stix2                               
04:05:16 INFO     [mvt.android.cmd_check_adb] Parsing STIX2 indicators file at path                                                                                                                                
                  /data/data/com.termux/files/home/.suroot/.local/share/mvt/indicators/raw.githubusercontent.com_AmnestyTech_investigations_master_2023-03-29_android_campaign_malware.stix2   
...

Yes, all directly on : Linux localhost 4.14.186+ #1 SMP PREEMPT Thu Mar 17 16:28:22 CST 2022 aarch64 Android

Manamama avatar Jun 23 '25 02:06 Manamama

Ah, this https://github.com/konstin/puccinialin ? Not needed on Droid, as:

apt list | grep rust

WARNING: apt does not have a stable CLI interface. Use with caution in scripts.

librusty-v8/stable 130.0.1 aarch64
rust-analyzer/stable 20250616 aarch64
rust-bindgen/stable 0.72.0 aarch64
rust-docs/stable 1.87.0-1 all
rust-nightly-docs/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-aarch64-linux-android/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-armv7-linux-androideabi/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-i686-linux-android/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-wasm32-unknown-unknown/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-wasm32-wasi/tur-packages 1.84.0-2024.10.16-nightly-0 all
rust-nightly-std-wasm32-wasip1/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-wasm32-wasip2/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-std-x86-64-linux-android/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-nightly-wasm32-unknown-unknown/tur-packages 1.67.1-2023.02.27-nightly-0 all
rust-src-nightly/tur-packages 1.89.0-2025.06.02-nightly-0 all
rust-src/stable 1.87.0-1 all
rust-std-aarch64-linux-android/stable,now 1.87.0-1 all [installed,automatic]
rust-std-armv7-linux-androideabi/stable 1.87.0-1 all
rust-std-i686-linux-android/stable 1.87.0-1 all
rust-std-wasm32-unknown-unknown/stable 1.87.0-1 all
rust-std-wasm32-wasi/stable 1.83.0-2 all
rust-std-wasm32-wasip1/stable 1.87.0-1 all
rust-std-wasm32-wasip2/stable 1.87.0-1 all
rust-std-x86-64-linux-android/stable 1.87.0-1 all
rust/stable,now 1.87.0-1 aarch64 [installed]
rustc-cranelift-codegen-aarch64-linux-android/tur-packages 1.89.0-2025.06.02-nightly-0 aarch64
rustc-dev-nightly/tur-packages 1.89.0-2025.06.02-nightly-0 aarch64
rustc-dev/stable 1.87.0-1 aarch64
rustc-nightly/tur-packages 1.89.0-2025.06.02-nightly-0 aarch64
rustc-src-nightly/tur-packages 1.89.0-2025.06.02-nightly-0 all
rustc-src/stable 1.87.0-1 all
rustscan/stable 2.4.1 aarch64
virustotal-cli/stable 1.1.1 aarch64

Although indeed, my rust may be hand compiled somehow, I forgot how, yes indeed:

/data/data/com.termux/files/usr/bin/rustc -V
rustc 1.87.0 (17067e9ac 2025-05-09) (built from a source tarball)

but I do not think it is material here.

Manamama avatar Jun 23 '25 02:06 Manamama