EvilBackdoor

[Stackprotector]

O hello,


I am writing a reverse backdoor shell, communication will be c++[hacker]<- -> PHP and/or Python as victim,  so targeting web-servers.


And i am asking you people, got any idea's on features that will just be mind blowing?,  feel free to apply if you like to write python/php modules.


Key features for first release
*Some modules for exploitation, (mysql shell, command line shell etc.)
*Control Application (First for linux,  maybe windows app)
*Reverse Python/PHP Shells
*Python IRC support (possible, may leave it because this type of C&C is oudated)
*Dynamic loading of modules(remote)


Planned features:
*Automatic file infector,  (wordpress, joombla  etc.)
*Remote update
*Encrypted shells, decrypt upon execute
*Encrypted client-server communication
*Handling of multiple hosts by the control application

[FuyuKitsune]

I REALLY want to say "distributed Bitcoin mining" but any server admin would notice spikes in CPU/GPU usage

[ca0s]

Once I though about injectig the connection in the process that launchs us (being us the backdoor) so it goes out from port 80. You need to be able to inject code and take over file descriptors (the socket). Over linux, I can take descriptors, but I don't know how to inject. Over windows, I can inject, but I cannot take descriptors. So I got kinda stuck with it

[Stackprotector]

Hehe:P,  i am building the sockapp on linux, so i know what you mean,   is there a huge difference in code for sockprogramming in windows?

[ca0s]

In windows, I couldn't take over a socket descriptor in order to send and receive from it. No dup or dup2.
Before you start receiving and sending you have to call WSAStartup. Before exiting, WSACleanup. It has also some more functions, but I have always used the UNIX style ones.

[10n1z3d]

And i am asking you people, got any idea's on features that will just be mind blowing?,  feel free to apply if you like to write python/php modules.

Encrypted client-server communication.

[Stackprotector]

Some updates,  i am on 300 lines of c++ code right now ,  authentication is done, and i have build a whole buffer system to emulate a console.

[Kulverstukas]

Will I be able to get a beta version?

[Stackprotector]

No,   but you will receive a alpha version:P,   i am thinking about completing an alpha this week,  and VIP only.

[Stackprotector]

*updated first post

[Stackprotector]

The first screenshots of the server application




The irc module is pure build for testing purposes, but it will be included in the first release.

Hope you guys got excited as much as i am

[Kulverstukas]

Better show the client. Server looks OK, but I hope it won't have a GUI in the final release
What good would be a backdoor that has a GUI for a server.

[Stackprotector]

Better show the client. Server looks OK, but I hope it won't have a GUI in the final release
What good would be a backdoor that has a GUI for a server.

There is no such thing as a client to show, the server is the interaction panel for connection with the shells ,  reverse remember?

[ande]

Will it be open sauwrs?

[Stackprotector]

Will it be open sauwrs?

The python and php, yes ofcourse .  Not so sure about the c++ code.