Skip to content
/ unityrs Public

portable unity engine reverse shell (or unity engine game backdoor)

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Potato-Industries/unityrs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
README.md
README.md
 
 
poc1.cs
poc1.cs
 
 
poc2.cs
poc2.cs
 
 
unityrs_dev.unitypackage
unityrs_dev.unitypackage
 
 

Repository files navigation

unityrs

portable unity engine reverse shell (or unity engine game backdoor)

  • multi-platform (Mono or IL2CPP)
  • supports C# !!

https://medium.com/@Bank_Security/undetectable-c-c-reverse-shells-fab4c0ec4f15

Setup

https://unity3d.com/get-unity/download

  • kali supports the linux editor appimage binary

Proof of concept

  1. Import unityrs_dev.unitypackage to your unity project.
  2. Edit domain/ip:port in the poc.cs file.
  3. Build to your target platform. (Linux, Windows)
  4. Setup listener. (nc -lvp 8080)
  5. Download/upload & execute your game!

Screenshot 2019-11-28 at 04 34 35

Findings

  • bypasses AV (assuming you sign the binaries!)

Screenshot 2019-11-28 at 04 44 52

Screenshot 2019-11-28 at 04 08 51

Compile

Screenshot 2019-11-28 at 04 35 50

Screenshot 2019-11-28 at 04 35 35

Limitations

  • total size 50MB.

Enjoy~

About

portable unity engine reverse shell (or unity engine game backdoor)

Topics

csharp reverse-shell unity unity-engine

Resources

Readme
Activity

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages