Connect with us

Ethical Hacking/Pen Testing

Stich: Python framework which allows to build custom payloads for Windows, Mac OSX and Linux

Published

on

Disclaimer

About Stitch

A Cross Platform Python Remote Administration Tool:

This is a cross platform python framework which allows you to build custom payloads for Windows, Mac OSX and Linux as well. You are able to select whether the payload binds to a specific IP and port, listens for a connection on a port, option to send an email of system info when the system boots, and option to start keylogger on boot. Payloads created can only run on the OS that they were created on.

Features

Cross Platform Support

  • Command and file auto-completion
  • Antivirus detection
  • Able to turn off/on display monitors
  • Hide/unhide files and directories
  • View/edit the hosts file
  • View all the systems environment variables
  • Keylogger with options to view status, start, stop and dump the logs onto your host system
  • View the location and other information of the target machine
  • Execute custom python scripts which return whatever you print to screen
  • Screenshots
  • Virtual machine detection
  • Download/Upload files to and from the target system
  • Attempt to dump the systems password hashes
  • Payloads’ properties are “disguised” as other known programs

Windows Specific

  • Display a user/password dialog box to obtain user password
  • Dump passwords saved via Chrome
  • Clear the System, Security, and Application logs
  • Enable/Disable services such as RDP,UAC, and Windows Defender
  • Edit the accessed, created, and modified properties of files
  • Create a custom popup box
  • View connected webcam and take snapshots
  • View past connected wifi connections along with their passwords
  • View information about drives connected
  • View summary of registry values such as DEP

Mac OSX Specific

  • Display a user/password dialog box to obtain user password
  • Change the login text at the user’s login screen
  • Webcam snapshots

Mac OSX/Linux Specific

  • SSH from the target machine into another host
  • Run sudo commands
  • Attempt to bruteforce the user’s password using the passwords list found in Tools/
  • Webcam snapshots? (untested on Linux)

Implemented Transports

All communication between the host and target is AES encrypted. Every Stitch program generates an AES key which is then put into all payloads. To access a payload the AES keys must match. To connect from a different system running Stitch you must add the key by using the showkey command from the original system and the addkey command on the new system.

Implemented Payload Installers

The “stitchgen” command gives the user the option to create NSIS installers on Windows and Makeself installers on posix machines. For Windows, the installer packages the payload and an elevation exe ,which prevents the firewall prompt and adds persistence, and places the payload on the system. For Mac OSX and Linux, the installer places the payload and attempts to add persistence. To create NSIS installers you must download and install NSIS.

Wiki

Requirements

For easy installation run the following command that corresponds to your OS:

# for Windows
pip install -r win_requirements.txt

# for Mac OSX
pip install -r osx_requirements.txt

# for Linux
pip install -r lnx_requirements.txt

Windows Specific

Mac OSX Specific

Mac OSX/Linux Specific

To Run

python main.py
or
./main.py

Motivation

My motivation behind this was to advance my knowledge of python, hacking, and just to see what I could accomplish. Was somewhat discouraged and almost abandoned this project when I found the amazing work done by n1nj4sec, but still decided to put this up since I had already come so far.

Other open-source Python RATs for Reference

Screenshots

linux options win_options win_upload osx_download

License

See LICENSE

DISCLAIMER

Stitch is for education/research purposes only. The author takes NO responsibility and/or liability for how you choose to use any of the tools/source code/any files provided. The author and anyone affiliated with will not be liable for any losses and/or damages in connection with use of ANY files provided with Stitch. By using Stitch or any files included, you understand that you are AGREEING TO USE AT YOUR OWN RISK. Once again Stitch and ALL files included are for EDUCATION and/or RESEARCH purposes ONLY. Stitch is ONLY intended to be used on your own pentesting labs, or with explicit consent from the owner of the property being tested.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Ethical Hacking/Pen Testing

Lazy Script ( A perfect Automated All in 1 script for all Newbies ) for Ethical Hacking

Published

on

By

Welcome to the LAZY script v2.1.4

A video Hackersploit made : https://www.youtube.com/watch?v=oBpo5sElrMY

A video sstec made: https://www.youtube.com/watch?v=gSO7c2MN7TY

For feature-recommendation , add it on the “Issues” tab. NOW!

I AM NOT RESPONSIBLE HOW YOU USE THIS TOOL.BE LEGAL AND NOT STUPID.

This script will make your life easier, and of course faster.

Its not only for noobs.Its for whoever wants to type less and do actually more.

What is this

This is a script for Kali Linux that automates many procedures about wifi penetration and hacking. I actually made it for fun for me just to save some time, but i don’t mind publicing it.

Features

NEW FEATURE: Custom keyboard shortcuts!! Launch any tool within lscript , with your own shortcuts!!! (type ks to set your shortcuts)

Enabling-Disabling interfaces faster Changing Mac faster Anonymizing yourself faster View your public IP faster View your MAC faster

TOOLS

You can install whichever tool(s) you want from within lscript! 
Fluxion                         by Deltaxflux
WifiTe                          by derv82
Wifiphisher                     by George Chatzisofroniou
Zatacker                        by LawrenceThePentester
Morpheus                        by Pedro ubuntu  [ r00t-3xp10it ]
Osrframework                    by i3visio
Hakku                           by 4shadoww
Trity                           by Toxic-ig
Cupp                            by Muris Kurgas
Dracnmap                        by Edo -maland-
Fern Wifi Cracker               by Savio-code
Kichthemout                     by Nikolaos Kamarinakis & David Schütz
BeeLogger                       by Alisson Moretto - 4w4k3
Ghost-Phisher                   by Savio-code
Mdk3-master                     by Musket Developer
Anonsurf                        by Und3rf10w
The Eye                         by EgeBalci
Airgeddon                       by v1s1t0r1sh3r3
Xerxes                          by zanyarjamal
Ezsploit                        by rand0m1ze
Katana framework                by PowerScript
4nonimizer                      by Hackplayers
Sslstrip2                       by LeonardoNve
Dns2proxy                       by LeonardoNve
Pupy                            by n1nj4sec
Zirikatu                        by pasahitz
TheFatRat                       by Sceetsec
Angry IP Scanner                by Anton Keks
Sniper                          by 1N3
ReconDog                        by UltimateHackers
RED HAWK                        by Tuhinshubhra
Routersploit                    by Reverse shell
CHAOS                           by Tiagorlampert
Winpayloads                     by Ncc group 
Infoga                          by m4ll0k
nWatch                          by Suraj
Eternal scanner                 by Peterpt
Eaphammer                       by S0lst1c3
Dagon                           by Ekultek
LALIN                           by Screetsec
Ngrok                           by inconshreveable + more
Kwetza                          by Chris Le Roy
Bleachbit                       by Andrew Ziem
Operative framework             by Tristan Granier
Netattack2                      by Christian Klein
Findsploit                      by 1N3
Howdoi                          by Benjamin Gleitzman
Dr0p1t-Framework                by Karim Shoair
FakeImageExploiter              by r00t-3xp10it
Leviathan                       by Utku Sen, Ozge Barbaros
WiFi-Pumpkin                    by P0cL4bs
Avet                            by govolution
Meterpreter_Paranoid_Mode-SSL   by r00t-3xp10it
Koadic                          by zerosum0x0
Empire                          by Will Schroeder,
                                       Justin Warner, 
                                       Matt Nelson,
                                       Steve Borosh,
                                       Alex Rymdeko-harvey, 
                                       Chris Ross
Veil                            by ChrisTruncer
SecHub                          by JoshDelta
DKMC                            by Mr.Un1k0d3r RingZer0 Team
Demiguise                       by Richard Warren
UniByAv                         by Mr.Un1k0d3r RingZer0 Team
LFISuite                        by D35m0nd142
Faraday                         by Infobyte
MSFPC                           by g0tmi1k
NoSQLMap                        by codingo, tcsstool
Evil-Droid                      by Mascerano Bachir
Iftop                           by Paul Warren, Chris Lightfoot
MORE ARE BEING ADDED ON EVERY UPDATE

Wifi password scripts

Handshake       (WPA-WPA2)
Find WPS pin    (WPA-WPA2)
WEP hacking     (WEP)    

Others

Email spoofing
Metasploit automation (create payloads,listeners,save listeners for later etc...)
Auto eternalblue exploiting (check on ks) -> hidden shortcuts
Browser auto-expoiting with BeEF and MITMf
SQLmap automated
+more

How to install (Kali Linux)

(make sure you are a root user)

Official Installation Tutorial on Kali Linux 2020.5: https://youtu.be/xcb5uwP5nSU

Be carefull.If you download it as a .zip file, it will not run.Make sure to follow these simple instructions.

MADE FOR KALI LINUX

cd
apt-get update
git clone https://github.com/arismelachroinos/lscript.git
cd lscript
chmod +x install.sh
./install.sh

How to run it

(make sure you are a root user)

open terminal
type  "l"
press enter

(Not even “lazy”!! Just “l”! The less you type , the better!)

How to uninstall

cd /root/lscript
./uninstall.sh
rmdir -r /root/lscript 

How to update

Run the script
Type "update"

Continue Reading

Ethical Hacking/Pen Testing

Wifi Hacking with Fluxion (Need 2 Wifi Adapters with Monitor mode active)

Published

on

By

Fluxion is the future of MITM WPA attacks

Fluxion is a security auditing and social-engineering research tool. It is a remake of linset by vk496 with (hopefully) fewer bugs and more functionality. The script attempts to retrieve the WPA/WPA2 key from a target access point by means of a social engineering (phishing) attack. It’s compatible with the latest release of Kali (rolling). Fluxion’s attacks’ setup is mostly manual, but experimental auto-mode handles some of the attacks’ setup parameters. Read the FAQ before requesting issues.

If you need quick help, fluxion is also available on gitter. You can talk with us on Gitter or on Discord.

Installation

Read here before you do the following steps.
Download the latest revision

git clone git@github.com:FluxionNetwork/fluxion.git

# Or if you prefer https 

git clone https://www.github.com/FluxionNetwork/fluxion.git

Switch to tool’s directory

cd fluxion 

Run fluxion (missing dependencies will be auto-installed)

./fluxion.sh

Fluxion is also available in arch

cd bin/arch
makepkg

or using the blackarch repo

pacman -S fluxion

📜 Changelog

Fluxion gets weekly updates with new features, improvements, and bugfixes. Be sure to check out the changelog here.

:octocat: How to contribute

All contributions are welcome! Code, documentation, graphics, or even design suggestions are welcome; use GitHub to its fullest. Submit pull requests, contribute tutorials or other wiki content — whatever you have to offer, it’ll be appreciated but please follow the style guide.

📖 How it works

  • Scan for a target wireless network.

  • Launch the Handshake Snooper attack.

  • Capture a handshake (necessary for password verification).

  • Launch Captive Portal attack.

  • Spawns a rogue (fake) AP, imitating the original access point.

  • Spawns a DNS server, redirecting all requests to the attacker’s host running the captive portal.

  • Spawns a web server, serving the captive portal which prompts users for their WPA/WPA2 key.

  • Spawns a jammer, deauthenticating all clients from original AP and luring them to the rogue AP.

  • All authentication attempts at the captive portal are checked against the handshake file captured earlier.

  • The attack will automatically terminate once a correct key has been submitted.

  • The key will be logged and clients will be allowed to reconnect to the target access point.

  • For a guide to the Captive Portal attack, read the Captive Portal attack guide

 

Disclaimer

Neither the project nor its developer promote any kind of illegal activity and are not responsible for any misuse or damage caused by this project.
This project is for educational purpose only.
Please do not use this tool on other people’s devices without their permission.
Do not use this tool to harm others.
Use this project responsibly on your own devices only.
It is the end user’s responsibility to obey all applicable local, state, federal, and international laws.

Continue Reading

Ethical Hacking/Pen Testing

Beelogger for Windows: Send Keylogs to Gmail

Published

on

By

Cloning:
git clone https://github.com/4w4k3/BeeLogger.git
Running:
cd BeeLogger
sudo su
chmod +x install.sh
./install.sh
python bee.py
If you have another version of Python:

python2.7 bee.py
DISCLAIMER:
“DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.” Taken from LICENSE.

Continue Reading

Trending