EvilZone

I think I haven't had matching sig/avatars since I was like 16 or 15... Also your name makes me want to gouge my eyes out. But hey just my opinion

But that's 1337 d0n't u s33 th@t.

1337 as fuck brah. But seriously, the name was taken otherwise not that it really matters.

I like your avatar and sig. Colors are nice, maybe the font on the signature is not good or too big. But I ain't and designer.

Thank you.

Do you really think it was necessary to create two threads for this?

Not at all, i just realized there was a creative arts forum after i posted in random. Sorry lol.

a penis instead of a skull would be much better in my opinion

We can put that in rotation.

Hey guys while i'm here, could you tell me what the deal is with forum cookies. I'm unsure as to how they work exactly.

Alright so i know how to make a Windows service in python but i'm unsure as to how to have it install itself. My end game is to compile the script and to have the program install itself as a service once the executable is clicked.

Normally you write your service and at the end include a call to the service handler like so:

def ctrlHandler(ctrlType):
   return True

if __name__ == '__main__':   
   win32api.SetConsoleCtrlHandler(ctrlHandler, True)   
   win32serviceutil.HandleCommandLine(aservice)

I'm unsure however as to how to go about automating the process.

Thanks in advance.

I'm not sure if there is such a thing as a best programming language it really depends on what you're looking for. But, as has been mentioned, python is very adaptable and in my opinion powerful and forgiving to get into. I'd recommend it to anyone looking to get into programming.

Hi there, i'm Darksec. A while ago, bytebleeder posted the source for a python based RAT to github. The thing itself is pretty sweet and functional as is, however it could seriously use some improvements in order to be realistically deployed in whatever scenario.

Maybe you're asking yourself why anyone would want to make a RAT in python? Well, because it's pretty cool and because it will be fun.

Here's the source code for the implant:

https://github.com/byt3bl33d3r/gcat/blob/master/implant.py

And here's the source code for your controller:

https://github.com/byt3bl33d3r/gcat/blob/master/gcat.py


In any event, i was wondering if there are any python programmers here that would feel like collaborating with me on this. The more the merrier and i am pretty sure 95% of people here are more 1337 than me so having more experience/skills on board is always a plus.


In any case, here are some of my thoughts.


As you can see it uses gmail as a C&C. Bad opsec? We could probably make it more secure.

As you can also see from the source code the client doesn't offer anything in way of persistence. To remedy this i am working on a module that will have the client run as a service in the background of an infected machine(Unless you have a better idea). I'm about 80% through with this module. Also, to make sure we can retrieve every keystroke also after an infected machine has rebooted i am pickling my keylogger data.

Furthermore i was playing with the idea of having deployment take place in two stages. It would involve delivering an executable bound to an evil executable through whatever vector is most appropriate for our puposes. The evil executable would run obfuscated shellcode that will download the main module to a common and not so obvious directory and then execute it. The main module would then install itself as a service and run in the background under a generic name. I have obfuscated shellcode for this purpose ready to go. What i also have is a superior crypter for sanbox evasion and AV bypass.

Basically i have some things setup and ready to go, it would however be awesome to have someone to collaborate with so we can bounce some ideas off eachother, see what works, see what doesn't, cut back on time needed to build this and stuff like that. If nothing else i imagine it will be a good educational and fun experience.

Anyway, let me know what you think.