Skip to content

aaronsamala/goot-clone

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
README.md
README.md
 
 
goot.js
goot.js
 
 
goot_ps_downloader.ps1
goot_ps_downloader.ps1
 
 
goot_stage3.ps1
goot_stage3.ps1
 
 

Repository files navigation

goot-clone

a bootleg clone of some parts of goot

This requires you to run a webserver. I just run a simple python server via "python3 -m http.server" from the folder with the files. This also requires you to modify the logging file to whatever you're using.

As of 15FEB24: The goot.js will create a PS file in a random roaming folder, execute the PS, and that PS will download stage3 from the web server.

For the road map ideas - this project isn't really something I'm fully commited to. It's more of something I'm just exploring to become familiar with Github Copilot, and to maybe make a few Youtube videos explaining.

Road map ideas:

  • Create another script to obfuscate everything
  • Enumerate the env and B64 encode it, and include it in the beacon just like the regular Goot
  • Create a scheduled task to run the PS script from the roaming folder
  • Add the fake forum JS using the research from https://github.com/aaronsamala/goot-research/

GitHub Copilot generated road map ideas from "provide other road map ideas":

GitHub Copilot Here are some additional road map ideas for your project:

  • Implement a command and control (C2) server to manage communication with the cloned Goot instances.
  • Enhance the obfuscation techniques used in the script to make it more difficult to detect and analyze.
  • Develop a module for lateral movement, allowing the cloned Goot instances to spread across a network.
  • Integrate encryption algorithms to secure the communication between the cloned Goot instances and the C2 server.
  • Implement persistence mechanisms to ensure the cloned Goot instances can survive system reboots.
  • Explore techniques for evading antivirus and intrusion detection systems.
  • Develop a module for privilege escalation, enabling the cloned Goot instances to gain higher levels of access on compromised systems.
  • Investigate methods for bypassing endpoint protection and application whitelisting.
  • Create a module for data exfiltration, allowing the cloned Goot instances to steal sensitive information from compromised systems.
  • Research and implement anti-forensic techniques to make it more challenging for investigators to trace the activities of the cloned Goot instances.
  • Remember to consider the ethical implications of your project and ensure that you are using your skills responsibly and legally.

About

a bootleg clone of some parts of goot

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages