Exploiter Project - Perl

Sh3llc0d3

Well I've tarted it up a bit, I prefer CLI but I'll see if I can get something together with glade, looking pretty good. I've followed chronic's example and added ascii header for the CLI, looks pretty good at the moment, going to setup apache in virtualbox and see if the defacer works next

Sh3llc0d3

Updated with the new (ever so slightly buggy :P) source code. It looks a lot neater, however some fundamentals need tweaking. It's a simple project and that's the way I like it. It will get a bit more complicated in the next few versions if I carry on down the exploitation line.

Sh3llc0d3

Added demo video of the program working... well mostly. Sorry I was going to add music but I suppose you'll have to imagine some music while you watch it :)

chroniccommand

Looks pretty good bro. Still working on getting my Python version working. No luck yet though :/

Sh3llc0d3

said:

Looks pretty good bro. Still working on getting my Python version working. No luck yet though :/

I've got everything working now apart from the auto-defacer. When that's working it'll be awesome. Still thinking of features I could add...

chroniccommand

said:

said:

Looks pretty good bro. Still working on getting my Python version working. No luck yet though :/

I've got everything working now apart from the auto-defacer. When that's working it'll be awesome. Still thinking of features I could add...

Hm.
[list]
[*]Meterpreter[/*:m]
[*]Scripts( By that I mean a function where users can import scripts kinda like nmap has NSE)[/*:m]
[*]OS detection[/*:m]
[*]Sending email to the attacker[/*:m][/list:u]

Sh3llc0d3

OS Detection can be done at the moment using "uname -a" as a command. I'll look into a Meterpreter session I think :)

chroniccommand

said:

OS Detection can be done at the moment using "uname -a" as a command. I'll look into a Meterpreter session I think :)

Yea but I'm talking to tell if it's Windows/*nix/OSX. Like you can have a function that detects to os, then if it's windows, goes to a windows function that's more windows specific etc.

Sh3llc0d3

Ahhh right i'm with you, so it's windows/nix etc compatible you mean, that'd be amazing if I could implement the function. I'll work on some ideas now, thanks :)

chroniccommand

said:

Ahhh right i'm with you, so it's windows/nix etc compatible you mean, that'd be amazing if I could implement the function. I'll work on some ideas now, thanks :)

Easy. Well atleest in Python. Not sure about Perl.

Sh3llc0d3

said:

said:

Ahhh right i'm with you, so it's windows/nix etc compatible you mean, that'd be amazing if I could implement the function. I'll work on some ideas now, thanks :)

Easy. Well atleest in Python. Not sure about Perl.

Yeah i'm sure it will be when I apply myself :)

Xin

Just get it to identify the OS, then assign the command set from there

Bursihido

Cool project :D
Good job Semtex :)

Sh3llc0d3

said:

Cool project :D
Good job Semtex :)

Thanks Bursihido :) It's coming along well. Going to get more done when I finish coursework lol

Sh3llc0d3

What does everyone think to my GUI for exploiter... it's only a test at the moment. I've had to completely re-write it. I'm also adding some private ASM code which will be executed on the server.

[spoiler]http://i.imgur.com/P73Qy.png[/spoiler]

It's my first attempt at a full GUI in p/Tk so be constructive ;)

chroniccommand

said:

What does everyone think to my GUI for exploiter... it's only a test at the moment. I've had to completely re-write it. I'm also adding some private ASM code which will be executed on the server.

[spoiler]http://i.imgur.com/P73Qy.png[/spoiler]

It's my first attempt at a full GUI in p/Tk so be constructive ;)

Looks really good man. I want to learn to code a GUI in Python I may read up on Tkinter // wxPython. Also what type of private ASM code?

Sh3llc0d3

said:

said:

What does everyone think to my GUI for exploiter... it's only a test at the moment. I've had to completely re-write it. I'm also adding some private ASM code which will be executed on the server.

[spoiler]http://i.imgur.com/P73Qy.png[/spoiler]

It's my first attempt at a full GUI in p/Tk so be constructive ;)

Looks really good man. I want to learn to code a GUI in Python I may read up on Tkinter // wxPython. Also what type of private ASM code?

Yeah I'm not getting into GUI coding too much 'cos I've got other projects to work on I just thought I'd give this a basic easily configurable GUI then leave it.

The ASM is just an experimental payload I've made, I'll post more info on it when I've added the feature into the client.

chroniccommand

said:

said:

said:

What does everyone think to my GUI for exploiter... it's only a test at the moment. I've had to completely re-write it. I'm also adding some private ASM code which will be executed on the server.

[spoiler]http://i.imgur.com/P73Qy.png[/spoiler]

It's my first attempt at a full GUI in p/Tk so be constructive ;)

Looks really good man. I want to learn to code a GUI in Python I may read up on Tkinter // wxPython. Also what type of private ASM code?

Yeah I'm not getting into GUI coding too much 'cos I've got other projects to work on I just thought I'd give this a basic easily configurable GUI then leave it.

The ASM is just an experimental payload I've made, I'll post more info on it when I've added the feature into the client.

Ah alright. Do you know a lot of ASM? Where did you learn it? I'm watching Viveks assembly primer for hackers series and its pretty good I'm learning a bit about assembly so PM me if you need any help with the project in general.

Sh3llc0d3

Yeah the problem you'll soon find with the syntax he uses (AT&T - GAS [GNU assembler]) is that it has next to no documentation or tutorials apart from his and a few others. That's why I know a lot of people go for NASM, MASM or Intel syntax. I don't know a lot of ASM I just know that one syntax, not inside out though (nobody is stupid enough to claim that about asm). I can (depending on the code) port other syntax to GAS.

I'll be ok though, everythings going well, those vid's got me originally going on asm a while back however you need further reading materials to keep it going.

Xin

Thats so nice Semtex what did you use for that?

Howdy, Stranger!

Top Posters

Who's Online (4)