SNMP Backdoor Communication Channel
Perl
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
LICENSE
README.md
TODO
backdoor.pl
snmpbcc.pl

README.md

SNMP-BCC -- SNMP Backdoor Communication Channel

Written by: Anestis Bechtsoudis @ bechtsoudis.com

Copyright (C) 2012 Anestis Bechtsoudis

Disclaimer

The tool is only for testing purposes and can only be used where strict consent has been given. Do not use it for illegal purposes.

License

Any modifications, changes, or alterations to this application is acceptable, however, any public releases utilizing this code must be approved by its creator. Check the LICENSE file for more information.

Requirements

  • perl installed
  • libnet-rawip-perl
  • libio-socket-socks-perl (used at PoC client backdoor)

Usage

Usage: snmpbcc.pl [options]

Options:
  -c    SNMP Community String

  -t    Target Host IP:Port

  -r    SNMP Relay Service IP:PORT

  -h    Display help message

Backdoor PoC Client

A tiny PoC client backdoor written in perl is included to test SNMP-BCC under various setups. You can run the backdoor.pl at the client host to receive the commands over SNMP. After concluding to the tool's working protocol I'll implement a generation engine for various backdoor payloads to use at client hosts.

Examples

Send commands to 10.0.11.22:4444 using 10.0.12.52:161 as relay:

./snmpbcc.pl -c public -t 10.0.11.22:4444 -r 10.0.12.52:161