During a Wi-Fi penetration test you find an employee's Android handset listening on TCP port 5555 and the banner identifies the service as Android Debug Bridge (ADB). You want the fastest way to get an interactive shell without touching the device physically. Which course of action and prerequisite would most likely let you succeed?
Send a Stagefright-based MMS payload, provided the messaging application has not been patched against the vulnerability.
Push a malicious over-the-air (OTA) update through the recovery interface, providing the handset's bootloader is already unlocked.
Initiate an ADB network session with "adb connect :5555" and drop to an ADB shell, assuming the phone is running Android 4.1 or earlier where ADB over TCP is unauthenticated.
Perform a Bluetooth OBEX file-transfer exploit, as long as the device is currently in discoverable pairing mode.
Port 5555 is used when an Android device has ADB set to accept connections over the network. Until Android 4.2, ADB did not implement RSA-based authentication, so any host that could reach the port could simply issue "adb connect :5555" followed by "adb shell" to obtain a shell running with system-level privileges. Later Android versions require the user to approve the debugger's RSA key, so the unauthenticated approach will only succeed if the phone is still on Android 4.1 (or the vendor has disabled ADB authentication). The other options describe unrelated attack vectors or rely on conditions (unpatched MMS, unlocked bootloader, discoverable Bluetooth) that are independent of the open ADB port and therefore are less certain or require additional steps.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Android Debug Bridge (ADB)?
Open an interactive chat with Bash
Why is ADB over TCP considered insecure on Android 4.1 or earlier?
Open an interactive chat with Bash
What precautions can be taken to secure ADB connections?
Open an interactive chat with Bash
What is Android Debug Bridge (ADB)?
Open an interactive chat with Bash
Why is TCP port 5555 used for ADB?
Open an interactive chat with Bash
How does ADB authentication prevent unauthorized access?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Mobile Platform, IoT, and OT Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .