Remote Administration

  • TheFatRat is an exploiting tool which compiles a malware with famous payload, and then the compiled maware can be executed on Linux , Windows , Mac and Android. TheFatRat Provides An Easy way to create Backdoors and Payload which can bypass most anti-virus. TheFatRat is an easy to use tool which helps in generating backdoors, system exploitation, post exploitation attacks, browser attacks, DLL files, FUD payloads against Linux, Mac OS X, Windows, and Android. It can be combined with msfvenom (Metasploit framework) which can be then utilized to utilise a reverse shell. It offers a lot of features, but in this article, I backdoor with msfvenom. How to Install the FatRat? In order to install the FatRat tool, we need to download/clone the package from Github using the following command. git clone https://github.com/Screetsec/TheFatRat.git The downloaded package contains the setup file that can be executed as follows. cd TheFatRat ./setup.sh [Note: If the setup.sh is not an executable format, then change the file permission using the chmod +x setup.sh command] The installation process can take some time due to the installation of different bundles as shown in the following screenshot. How FatRat Works? After successful installation, the FatRat tool can be executed using the following command. fatrat The tool runs a dependency check before loading in the terminal. After verifying the dependencies, the FatRat menu appears on the screen. As we can see in the above screenshot, there are a number of ways we can create the backdoors.  For instance, we can generate payloads through PwnWinds by selecting the sequence number (#6) from the list. The PwnWind has the following set of backdoors/payloads to be automatically generated by the tool. Let’s generate a test (.exe) payload written in C# + Powershell (option#2). We need to embed the localhost IP address and...
  • December 13, 2020

    Take Over Any Android Device In Minutes.

    Android Remote Administration Tool (RAT) named Ahmyth which is being trojanized into other Android apps and is getting distributed in the wild. Upon infecting an Android device this RAT can send sensitive information present on the device like SMS and call logs as well as perform functions like taking a picture, sending a text message or record audio via the microphone. Download & Install AhMyth There are two ways to download and install AhMyth. The first is to directly use the source code from GitHub. The second is to use the binaries they provide. Method 1 From Source Code If you chose to start with the source code, then you’ll need to check that you have a few prerequisites installed. Java — it’s used to generate the APK backdoor. Electron — it’s used to start the desktop application. Electron-builder and Electron-packer — they are used to build the binaries for macOS, Windows, and Linux. Once you have those prerequisites, you’re ready to proceed. First clone the code from GitHub with the following commands. git clone https://github.com/AhMyth/AhMyth-Android-RAT.git Then move to the AhMyth-Android-Rat directory with the following. cd AhMyth-Android-RAT/AhMyth-Server Once you’re in, start AhMyth with the command below. npm start This program is still in beta development, and as such, it isn’t as robust as it could be. Some users have gotten errors when attempting to start it. If you do, try again running it as root, as seen below. sudo npm start --unsafe-perm You’ll know it’s working when you see the GUI launch. Method 2 From Binaries The source code is one way to download it, but if you’re lazy like me, there’s a slightly easier way — use the binaries! It’s particularly nice when you’re working on a Windows computer and don’t want to mess around with the command line....