Remote Administration Tools – The 23 Best Android (RATs 🐀) in 2022

Remote Administration Tools – The 23 Best Android (RATs 🐀) in 2022
Content List

If you're into computers, you're already aware that hacking is when you gain unauthorized access to a system or network. Cybersecurity has been a trend in recent years, and pen-testing and security have seen an increase in demand.

To carry out these operations, a variety of malicious users employ some of the best Android RATs available. This is due to the fact that they are free, up to date, and have simple online tutorials to follow.

This OS is an open-source platform based on the Linux kernel, and it is the most powerful phone operating system ever created.

You can easily change the user interface of your device with this.

It offers millions of free applications on the market.

Install Custom ROMs to customize the application.

Remote Administration Tools – The 23 Best Android (RATs 🐀) in 2022

These phones can also run the following applications: 🐀

Penetration testing is a security test that is used to prevent such apps from being hacked.

It's crucial to be aware of such apps or tools, so keep reading.

The device must be rooted in order to use these apps to their full potential. Some of them will work even if you don't have root access.

Top Remote Administration Tools (RATs) for Android in 2022

The Android remote administration tool (Android RAT) is a software program that allows a remote device to control a smartphone as if it were physically present. While there are many legal uses for screen sharing and remote administration, "RAT" software is usually associated with unauthorized or malicious activity. I've compiled a list of the best Android remote administration tools for 2022.

Top Remote Administration Tools (RATs) for Android in 2022

Here are the top Android remote administration tools (rats) in 2022, in terms of functionality.

You can also look at the top 25 Android hacking apps for the year 2022.

To Try on Your Phone: 23 Best Android RAT Apps

The Best All-Around AndroRAT

RAT for Android (AndroRAT)

AndroRAT is a client or server application written in Java for the client and Swing for the server. Its goal is to provide remote control of the system and obtain data from it. You have a variety of options to choose from as well. Unfortunately, the original author no longer supports or updates it.

AndroRat is a client/server application written in Java for Android on the client and Java/Swing on the server. The name AndroRat is a combination of the words Android and Rat (Remote Access Tool). It was created as a university project and is extremely effective at hacking into Android devices.

Android RAT built-in Android APP for Android User


Read, Delete Internal Storage Files

Download Any Media to your Device from Victims Device

Get GPS location

Get Network Provider Location

Get all the system information of Victim Device

Shows all the installed apps in Victims Device

Open Any Website in Victims Device

Make any folder in Victims Device

Show any notification in Victims Device

Delete any File or Folder From Victims Internal Storage

Dump SMS

Play music in Victims device

Change Wallpaper

Vibrate Device

Turn On/Off Flash Light

Text To Speach Feature

Runs In Background Even App is Closed

Support Android v5 - v11

No Port Forwarding Needed

Fully Undetectable


Shows Update Page , if you want.

Pre Binded Instagram Webview Phishing


Firebase Account (or you can Create one)

Android Device :rofl:

How to use

After Creating a Firebase account you have to enable Authentication , Firebase Storage , Realtime Database.

Now go to Authentication and in Sign Method section enable Email/Password Method.

After that in Realtime Database Go to rules and set .read and .write to true

Also Set Some Data in your Realtime Database as shown in image.

Now Go to Project Overview and add a new Android App and Download it's google-services.json file , which will contain your app's API key and other information.

Add another Web App and Copy it's Config .

You can setup your web panel on localhost or on Any Hosting Site.

Open app.js and paste the Config and save it .

Your Web Panel is ready now let's build the App.

Download Sketchware Pro

Click on Restore option and select Instagram Mod.swb file in Sketchware Pro

Now open the project and in Library Menu go to Firebase Section and fill all the data using google-services.json file.

In the Project ID Field after putting your Project Name add -default-tub . Example > myproject-default-rtdb

Now click on Run to Build the App, use any APK Signer Tool to sign it.

Your app is Now ready.

When the user will install the app his/her session will appear on Web Panel click on the User to establish a Connection with that specified Device.

As an example:

Manipulate other devices with ease, which is useful if you are away from your device and need to complete a task.

It is possible to create an APK file for use as the payload.

Reverse Engineer Apps with APK Inspector

It comes with the perfect GUI tool for analysts to analyze apps and understand the coding behind them, making it a great tool for any general user.

The primary goal is to:

Reverse engineering any app means getting the source code of any app and editing it to remove credits and licenses.

Spoofing made simple with ArpSpoof

This is a network sniffing application that is used to change the victim's phone's network configuration. The user can also be redirected to a specific web page.

This app works in the same way that middlemen attack apps.

Hacking pranks by the Evil Operator

This app automatically connects two people in a phone call, giving them the impression that they have called each other.

The best part is that you can use it to:

The conversation should be recorded and saved.

SSHDroid – Control your device from afar

This is the best protocol for connecting to a remote machine because it adds an extra layer of security.

It's an Android SSH server implementation. One can do so with this.

Use a system to connect to their device and run commands like terminal and ADB shell.

SFTP, WinSCP, Cyberduck, and a variety of other programs can be used to edit files.

The FTP protocol allows Windows users to control their devices.

One advantageous feature is:

Extended notification control, wifi control, shared key authentication, and a lock screen widget is all included.


WPS Connect – Heaven on Earth for Wireless

Another tool for breaking into wifi networks with the WPS protocol enabled. It only works on a phone that has been rooted.

As an example:

On the same network, disable other users' internet connections.

Any wifi network can be hacked.

Connect to any password-protected wifi network automatically.

Check to see if the router is vulnerable and take appropriate action.

AhMyth is a powerful android remote administrator tool that gives you the ability to establish control over your loved ones' android devices using an intuitive user interface and all of the features you need to monitor them.

TRY ALSO: AhMyth Download and Setup Guide.

Whatsapp Sniffer – Bringing WhatsApp back to its former glory

A hacking tool that can:

Messages will be displayed.

Private conversations, audio, and videos of other Whatsapp users connected to your wifi network can be downloaded.

It can also be used to crash another device by sending a WhatsApp message.

DenDroid is nothing more than a RAT.

This is a new Android RAT that is becoming increasingly popular among security researchers and criminals.

Dendroid is a popular and rapidly growing remote administration tool for Android. It's the latest toy for cybercriminals to easily take control of remote Android devices. Dendroid can be used to create backdoors and gain complete control of Android devices by inserting code into legitimate apps. It uses HTTP to communicate with the command-and-control server, granting attackers full access to the target device and allowing them to carry out a variety of malicious actions.

Take control of devices without touching them.

Create a backdoor to gain complete control of devices by injecting malicious code into legitimate apps.

OmniRAT is a multi-OS remote administration tool that can be used on a smartphone or a Windows or Mac PC. It has a long list of features that make it extremely effective. It can use that smartphone to make calls from afar. It's undetectable to the naked eye.

It allows users to access phone devices and perform any operation on the target device, as well as connect back to the command-and-control server via HTTP.

TRY ALSO: Download Omnirat v4 for Android.


This tool performs real-time analysis of Android apps. It can be used to get information about hashes for

Information leaks through various channels, including APK packages, phone calls, SMS, network traffic, and network traffic.

All of this aids users in comprehending the behavior of a package.

FaceNiff is a web-based sniffer.

Anyone can intercept and sniff your wifi network traffic with this. It also allows you to use multiple farms of devices to hijack sessions on popular social networking sites like Twitter, Facebook, and other media accounts.

For Security Professionals – cSploit

It is one of Android's most comprehensive yet advanced security professional toolkits, aimed at IT security experts or geeks. It can be used on a rooted phone and is lightweight. It's a device that:

It's a directory of local hosts.

Backdoors should be installed.

Vulnerabilities and their exploits should be identified. Wi-Fi passwords and much more can be found here.

Networking Tools from Fing

Fing is a free and quick system scanner that security thieves and security professionals use to figure out what's going on with their systems.

Which devices are using the wifi network?

Look for intruders.

Devices for mapping.

Assess the dangers of a network's security.

Troubleshoot any network issues.

Get the most out of your network.

This is a must-have network utility that includes a number of free network hacking tools such as port scanning, wifi scanning, pinging, service monitoring, and DNS lookup.

SQL Injection and Google Dorks on Hackode

Hackers Toolbox is one of the best apps for people who want to hack their phones. It allows penetration testers, ethical hackers, cybersecurity professionals, and IT administrators to perform tasks like reconnaissance, DNS Dig, Google Hacking, Security RSS Feed, exploits, and more.

Nmap for Android is a network scanner that can scan all networks.

This is an open-source network security scanner that professionals use to investigate networks. The best part is that it works on phones that are both rooted and unrooted.

You can access more features if your device is rooted. Download this app to your device and use it to scan the network for ports and system information.

zANT (Top Pick)

This is a useful app for Android users interested in hacking. It contains almost all of the security tools needed to break into any wifi network.

Please only use the above apps/tools on devices/systems that you have permission to use. We will not be held liable for anything you do with the information provided above.

DroidJack (#16)

With an easy-to-use GUI and all the features you need to monitor your loved ones' Android devices, DroidJack gives you the power to establish control over their devices. It has a lot of advanced features that you can control with your smartphone from afar. DroidJack is at the top of the list because it can also read and write WhatsApp messages.

To download and see all of the features, go here.

SpyNote #17

SpyNote is a light weight Android remote administration tool (RAT) that allows you to remotely access a smartphone device. It gives you the ability to control Android devices using an intuitive user interface and all of the features you'll need to keep track of them. Create a custom APK or bind the payload to an existing APK, such as a game or social media application.

To download and learn more about computer features, go here.

You can get SpyNote v3.2, SpyNote v4, and SpyNote v5 for free, as well as see the full list of features.

SpyMax (nineteen)

SpyMax is an upgraded version of Spynote with the most advanced remote capabilities. It has a number of features that allow a user to log in as an administrator to a remote computer. Spy MAX is a remote administration tool that lets you control your system using a graphical user interface (GUI). It has the ability to take complete control of the victim's computer.

You can also download older versions of SpyMax, such as SpyMax v2 and SpyMax v1, to see all of the features.

All of the top Android remote administration tools (rats) for 2022 are listed below. You can also look at the list of the Best RATs for PC. There are other rats, but these are the most technologically advanced and feature-rich. There may be a few more that can compete with these and earn a spot among the top Android apps.

EntySec Ghost (EntySec Ghost)

Ghost Framework is a post-exploitation framework for Android that uses the Android Debug Bridge to gain remote access to a device.


git+ pip3 install

The "EntySec Ghost" Project is not affiliated with Open Source Agenda. EntySec/Ghost is the source of this README.


A NodeJS-powered cloud-based remote Android management suite.


GPS Tracking

Recording with a microphone

Consult the Contacts List

Logs of SMS

Send Call Logs via SMS

View the Apps that Have Been Installed

Permissions to View Stubs

Clipboard in Real-Time Logging

Logging of Live Notifications

View WiFi Hotspots (logs previously seen)

Downloader and File Explorer

APK Builder has built-in command queueing.


Java Runtime Environment 8

See installation for OS specifics


A Server


Install JRE 8 (We cannot stress this enough USE java 1.8.0 ANY issues that dont use this will be closed WITHOUT a response)

Debian, Ubuntu, Etc

sudo apt-get install openjdk-8-jre

Fedora, Oracle, Red Hat, etc

su -c "yum install java-1.8.0-openjdk"


click HERE for downloads

Install NodeJS Instructions Here (If you can't figure this out, you shouldn't really be using this)

install PM2

npm install pm2 -g

Download and Extract the latest release from HERE

In the extracted folder, run these commands

npm install <- install dependencies

pm2 start index.js <-- start the script

pm2 startup <- to run L3MON on startup

Set a Username & Password

Stop L3MON pm2 stop index

Open maindb.json in a text editor

under admin

set the username as plain text

set the password as a LOWERCASE MD5 hash

save the file

run pm2 restart all

in your browser navigate to HTTP://<SERVER IP>:22533

It's recommended to run L3MON behind a reverse proxy such as NGINX


When opening an issue, you MUST use the provided templates. Issues without this will not receive support quickly and will be put to the bottom of the figurative pile.

Please have a look through the current issues, open and closed to see if your issue has been addressed before. If it's java related, it's most definitely been addressed - In short Use Java 1.8.0

Shotdroid (#21)

ShotDroid is an android pentesting tool. There are three tools, each with its own set of capabilities. Retrieve files from the Android directory, internal and external storage, Android Keylogger + Reverse Shell, and other sources. Take a webcam shot of your face using the phone's and PC's front cameras.

Features !

Hide apps in android files.

Custom android directory.

For Android Keylogger -> you can see it here: Simple-keyboard or LokiBoard.

Automatic html template in take face webcam.

Custom html or custom your html folder in take face webcam tool.



This tool is for educational purpose only, usage of SHOTDROID for attacking targets without prior mutual consent is illegal. Developers assume no liability and are not responsible for any misuse or damage cause by this program.


android studio (

ngrok (





git clone

cd shotdroid


Video Demo:

Android Files: Kali Tutorial

Android Keylogger: Kali Tutorial

AdbNet is number 22.

ADB is a tool for exploiting Android devices.

A tool that allows you to look for and exploit vulnerable Android devices all over the world.

- Post-Exploitation modules for controlling and tinkering with the device you're connected to

- Scanners will scour the globe for vulnerable Android devices to exploit.

- Options for controlling the number of connected devices.

- Options for determining whether or not the devices to which you are connected are online.

- IP-Lookup to get information about a specific IP address.

- The ability to dump the IP addresses of vulnerable Android devices. [This makes it easier for you because you don't have to look for it yourself]

Getting the required API keys

Create an account on and then go to your account page and get your free api_id and api_secret key and open '' and edit in your api id and api key here:

Create an account on and go to your account to get your free api key, once you have it copied, open '' and edit in your api key here: image

Simple Tutorial

First, run the 'dump shodan' or 'dump censy' (dump shodan is recommended) command to

dump the IP addresses of the vulnerable devices.

Then, after you find an IP-address you want to try, run the 'connect' command and you will be prompted to enter

the target IP address, once you enter the target ip address, you will be prompter to enter the port. For the port,

you can try entering '5555' or '4444' since those are the most common ports. If you want, you can try finding the

specific port yourself, but it might take some time.

Now AdbNet will now try to connect to the vulnerable android device.

If it fails to connect, try another IP.

If you manage to connect to a device, now you can check if you are really connected by using the 'devices' command.

< Warning! > You can only be connected to one device at a time! To kill the sessions use the 'killall' command! < Warning! >

To open a shell and execute commands on the device, use the 'terminal' command.

To run post-exploitation modules, run the 'post' command for the post-exploitation menu to load. Then, you

can run any module you like.


Installation/How To Run

sudo apt install pq

sudo apt install adb

pip3 install colorama

pip3 install requests

python3 or python or py

TIP: For people that are new to this, if you are having issues install a certain python module, just do this: pip3 install <modulename>

23- Adbwebkit Access ADB From Your Browser With A Beautiful User Interface

Table of Contents Installation And Usage Connection Dependency

YouTube Tutorials for Installing on Termux Operating Systems Contact Tabs Next Update Tabs Recommendations




Finally, which Android RAT piques your interest?

I hope you enjoyed reading the above list of top Android RATs, which includes the majority of the most recent releases and are also Kali Linux compatible. The majority of the above, such as AndroRAT, DroidJack, and Zanti, are well-known in the communities. All of the aforementioned have a long history of wreaking havoc on digital businesses around the world.