GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → 0xIslamTaha → Python Rootkit

0xIslamTaha / Python Rootkit

Python Remote Administration Tool (RAT) to gain meterpreter session

Programming Languages

python
139335 projects - #7 most used programming language

Labels

securitymalwareratmeterpreter

Projects that are alternatives of or similar to Python Rootkit

trolo
trolo - an easy to use script for generating Payloads that bypasses antivirus
Stars: ✭ 45 (-87.43%)
Mutual labels:  malware, rat, meterpreter
Green Hat Suite
Green-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.
Stars: ✭ 112 (-68.72%)
Mutual labels:  malware, rat, meterpreter
qt-rat
Remote administration tool with Qt5
Stars: ✭ 37 (-89.66%)
Mutual labels:  malware, rat
ToxicEye
👽 Program for remote control of windows computers via telegram bot. Written in C#
Stars: ✭ 305 (-14.8%)
Mutual labels:  malware, rat
Quiescis
Quescis is a powerful Remote Access Trojan for windows 💻 on C++
Stars: ✭ 56 (-84.36%)
Mutual labels:  malware, rat
Networm
Python network worm that spreads on the local network and gives the attacker control of these machines.
Stars: ✭ 135 (-62.29%)
Mutual labels:  malware, rat
Telegram Rat
Windows Remote Administration Tool via Telegram. Written in Python
Stars: ✭ 201 (-43.85%)
Mutual labels:  malware, rat
ConTroll Remote Access Trojan
Created a VERY SIMPLE remote access Trojan that will establish administrative control over any windows machine it compromises.
Stars: ✭ 69 (-80.73%)
Mutual labels:  malware, rat
Teleshadow3
Telegram Desktop Session Stealer
Stars: ✭ 83 (-76.82%)
Mutual labels:  malware, rat
maalik
Feature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-79.05%)
Mutual labels:  malware, rat
MsfMania
Python AV Evasion Tools
Stars: ✭ 388 (+8.38%)
Mutual labels:  malware, meterpreter
Ghost
👻 RAT (Remote Access Trojan) - Silent Botnet - Full Remote Command-Line Access - Download & Execute Programs - Spread Virus' & Malware
Stars: ✭ 312 (-12.85%)
Mutual labels:  malware, rat
Mass Rat
Basic Multiplatform Remote Administration Tool - Xamarin
Stars: ✭ 127 (-64.53%)
Mutual labels:  malware, rat
Ratel
RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Stars: ✭ 121 (-66.2%)
Mutual labels:  malware, rat
Serpentine
C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends
Stars: ✭ 216 (-39.66%)
Mutual labels:  malware, rat
TeleShadow2
TeleShadow - Telegram Desktop Session Stealer (Windows)
Stars: ✭ 88 (-75.42%)
Mutual labels:  malware, rat
Google rat
A Remote Access Tool using Google Apps Script as the proxy for command and control.
Stars: ✭ 64 (-82.12%)
Mutual labels:  malware, rat
Spacecow
Windows Rootkit written in Python
Stars: ✭ 81 (-77.37%)
Mutual labels:  malware, rat
The-MALWARE-Repo
A repository full of malware samples.
Stars: ✭ 380 (+6.15%)
Mutual labels:  malware, rat
RoboThief-Telegram-Session-Stealer
Robo Thief is a software for steal telegram session .
Stars: ✭ 18 (-94.97%)
Mutual labels:  malware, rat
View All Similar Projects ➔

python-rootkit

This is a full undetectable python RAT which can bypass almost all antivirus and open a backdoor inside any windows machine which will establish a reverse https Metasploit connection to your listening machine.

ViRu5 life cycle

  • Bypass all anti-virus.
  • Inject a malicius powershell script into memory.
  • Establish a reverse https connection to attacker machine.
  • Check every 10 seconds and make sure that the connection is still exist, If not it will re-establish a new connection.
  • Add a startup register key to re-connect to attacker after reboot.

Steps

  • Update viRu5/source.py parameters with your lhost and lport
  • Change source.py name to GoogleChromeAutoLaunch.py
  • Add GoogleChromeAutoLaunch.py, setup.py and your icon as icon.ico to c:\python27 dir
  • From cmd do 
    cd c:\python27
python setup.py py2exe
  • Find the RAT exe file in Dist dir.
  • Blind it with any photo, pdf, word or any kind of files
  • Send it to the victim
  • Use your social engineer skills to make him open the file
  • You will recieve a reverse https metasoplit connection :)

Testing on

  • Windows 7 32bit
  • Winodws 7 64bit
  • Widowns 8 32bit
  • Windows 8 64bit
  • Windows 8.1 32bit
  • Windows 8.1 64 bit
  • Windows 10 32bit
  • Windows 10 64bit

Thanks

Thanks for every security researsher how spend a time to help peaple and make the community more powerfull. Thanks for powerShellEmpire guys.

Disclaimer

This is for Educational purposes ONLY. First of all, this code aims to alarm people about security issues infected unpatched machines.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].