一隅

手握三尺青锋,平尽天下不平事

Powershell-RAT and Python-Rootkit

0x01 前言

两款基于Python的可绕过安全检测的RAT,简单分析下代码

Powershell-RAT Python based backdoor that uses Gmail to exfiltrate data as an e-mail attachment

Python-Rootkit Python Remote Administration Tool (RAT) to gain meterpreter session

共同点差不多就是:功能单一、相对隐蔽

Use your social engineer skills to make him open the file这句话逗笑了,精髓啊

tools

os fingerprint

xprobe2
NetworkMiner
Nmap

xss

xsshunter The XSS Hunter service

XSS-Harvest xss keylogger

java

jexboss Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

bluetooth

BtleJuice Bluetooth Smart (LE) Man-in-the-Middle framework
bluepot Bluetooth Honeypot

credentials

LaZagne Credentials recovery project 一键获取服务器所有明文密码
NetRipper 截获内存中的各类https明文密码

phishing

PoT Phishing on Twitter

information

ID-entify Search for information related to a domain

malware

malware.one a binary substring searchable malware catalog containing terabytes of malicious code

deserialization

modjodaAndroid Java Deserialization Vulnerability Tester

xxe

XXEinjector Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

fuzz

Droid-Application-Fuzz-Framework Android application fuzzing framework with fuzzers and crash monitor.


会把平时遇到的一些有用的工具放在这,遇到就加几个