All Projects → nathanlopez → Stitch

nathanlopez / Stitch

Licence: other
Python Remote Administration Tool (RAT)

Programming Languages

python
139335 projects - #7 most used programming language
shell
77523 projects
objective c
16641 projects - #2 most used programming language

Projects that are alternatives of or similar to Stitch

Torat
ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
Stars: ✭ 415 (-79.44%)
Mutual labels:  cross-platform, payload, rat, keylogger, reverse-shell
Pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
Stars: ✭ 6,737 (+233.85%)
Mutual labels:  payload, rat, reverse-shell
trolo
trolo - an easy to use script for generating Payloads that bypasses antivirus
Stars: ✭ 45 (-97.77%)
Mutual labels:  reverse-shell, rat, payload
ToxicEye
👽 Program for remote control of windows computers via telegram bot. Written in C#
Stars: ✭ 305 (-84.89%)
Mutual labels:  rat, keylogger, payload
Tinkerershell
A simple python reverse shell written just for fun.
Stars: ✭ 62 (-96.93%)
Mutual labels:  rat, keylogger, reverse-shell
Rat Via Telegram
Windows Remote Administration Tool via Telegram
Stars: ✭ 453 (-77.55%)
Mutual labels:  rat, keylogger
Chimera
Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Stars: ✭ 463 (-77.06%)
Mutual labels:  payload, reverse-shell
Wpforce
Wordpress Attack Suite
Stars: ✭ 633 (-68.63%)
Mutual labels:  keylogger, reverse-shell
Skyrat
SkyRAT - Powershell Remote Administration Tool
Stars: ✭ 21 (-98.96%)
Mutual labels:  rat, keylogger
Swift Keylogger
Keylogger for mac written in Swift using HID
Stars: ✭ 995 (-50.69%)
Mutual labels:  mac-osx, keylogger
Blazerat
🔥 Control your Linux home computer with telegram bot.
Stars: ✭ 60 (-97.03%)
Mutual labels:  rat, keylogger
Covertutils
A framework for Backdoor development!
Stars: ✭ 424 (-78.99%)
Mutual labels:  payload, reverse-shell
Rat Hodin V2.9
Remote Administration Tool for Linux
Stars: ✭ 97 (-95.19%)
Mutual labels:  rat, keylogger
Hercules
HERCULES is a special payload generator that can bypass antivirus softwares.
Stars: ✭ 526 (-73.93%)
Mutual labels:  payload, reverse-shell
Paradoxiarat
ParadoxiaRat : Native Windows Remote access Tool.
Stars: ✭ 395 (-80.43%)
Mutual labels:  rat, keylogger
KeyPlexer
Capstone: Keylogger Trojan
Stars: ✭ 32 (-98.41%)
Mutual labels:  reverse-shell, keylogger
Thoron
Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.
Stars: ✭ 87 (-95.69%)
Mutual labels:  rat, reverse-shell
Shoes4
Shoes 4 : the next version of Shoes
Stars: ✭ 1,509 (-25.22%)
Mutual labels:  cross-platform, mac-osx
Horus-Eye
Just Simple Code To Play With Android Payloads (;
Stars: ✭ 54 (-97.32%)
Mutual labels:  rat, payload
YAPS
Yet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-98.27%)
Mutual labels:  reverse-shell, rat

DISCLAIMER

Stitch is for education/research purposes only. The author takes NO responsibility and/or liability for how you choose to use any of the tools/source code/any files provided. The author and anyone affiliated with will not be liable for any losses and/or damages in connection with use of ANY files provided with Stitch. By using Stitch or any files included, you understand that you are AGREEING TO USE AT YOUR OWN RISK. Once again Stitch and ALL files included are for EDUCATION and/or RESEARCH purposes ONLY. Stitch is ONLY intended to be used on your own pentesting labs, or with explicit consent from the owner of the property being tested.

About Stitch

A Cross Platform Python Remote Administration Tool:

This is a cross platform python framework which allows you to build custom payloads for Windows, Mac OSX and Linux as well. You are able to select whether the payload binds to a specific IP and port, listens for a connection on a port, option to send an email of system info when the system boots, and option to start keylogger on boot. Payloads created can only run on the OS that they were created on.

Features

Cross Platform Support

  • Command and file auto-completion
  • Antivirus detection
  • Able to turn off/on display monitors
  • Hide/unhide files and directories
  • View/edit the hosts file
  • View all the systems environment variables
  • Keylogger with options to view status, start, stop and dump the logs onto your host system
  • View the location and other information of the target machine
  • Execute custom python scripts which return whatever you print to screen
  • Screenshots
  • Virtual machine detection
  • Download/Upload files to and from the target system
  • Attempt to dump the systems password hashes
  • Payloads' properties are "disguised" as other known programs

Windows Specific

  • Display a user/password dialog box to obtain user password
  • Dump passwords saved via Chrome
  • Clear the System, Security, and Application logs
  • Enable/Disable services such as RDP,UAC, and Windows Defender
  • Edit the accessed, created, and modified properties of files
  • Create a custom popup box
  • View connected webcam and take snapshots
  • View past connected wifi connections along with their passwords
  • View information about drives connected
  • View summary of registry values such as DEP

Mac OSX Specific

  • Display a user/password dialog box to obtain user password
  • Change the login text at the user's login screen
  • Webcam snapshots

Mac OSX/Linux Specific

  • SSH from the target machine into another host
  • Run sudo commands
  • Attempt to bruteforce the user's password using the passwords list found in Tools/
  • Webcam snapshots? (untested on Linux)

Implemented Transports

All communication between the host and target is AES encrypted. Every Stitch program generates an AES key which is then put into all payloads. To access a payload the AES keys must match. To connect from a different system running Stitch you must add the key by using the showkey command from the original system and the addkey command on the new system.

Implemented Payload Installers

The "stitchgen" command gives the user the option to create NSIS installers on Windows and Makeself installers on posix machines. For Windows, the installer packages the payload and an elevation exe ,which prevents the firewall prompt and adds persistence, and places the payload on the system. For Mac OSX and Linux, the installer places the payload and attempts to add persistence. To create NSIS installers you must download and install NSIS.

Wiki

Requirements

For easy installation run the following command that corresponds to your OS:

# for Windows
pip install -r win_requirements.txt

# for Mac OSX
pip install -r osx_requirements.txt

# for Linux
pip install -r lnx_requirements.txt

Windows Specific

Mac OSX Specific

Mac OSX/Linux Specific

To Run

python main.py
or
./main.py

Motivation

My motivation behind this was to advance my knowledge of python, hacking, and just to see what I could accomplish. Was somewhat discouraged and almost abandoned this project when I found the amazing work done by n1nj4sec, but still decided to put this up since I had already come so far.

Other open-source Python RATs for Reference

Screenshots

linux options win_options win_upload osx_download

License

See LICENSE

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].