Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Machine directly accessible on the network - bind mode #3

Closed
0xLyte opened this issue Jan 29, 2016 · 0 comments
Closed

Machine directly accessible on the network - bind mode #3

0xLyte opened this issue Jan 29, 2016 · 0 comments
Assignees
@mpgn
Labels
backdoor
Milestone
rkduck v0.1

Comments

@0xLyte
Copy link
Member

0xLyte commented Jan 29, 2016

Creation of a listening server which will wait for a connection to be initiated by the attacker.
@mpgn mpgn added this to the rkduck v0.1 milestone Jan 29, 2016
@0xLyte 0xLyte assigned 0xLyte, Chuibo and mpgn and unassigned 0xLyte and Chuibo Jan 29, 2016
@mpgn mpgn added the backdoor label Feb 8, 2016
@0xLyte 0xLyte changed the title [Backdoor] Machine directly accessible on the network - bind mode Machine directly accessible on the network - bind mode Feb 11, 2016
mpgn added a commit that referenced this issue Feb 13, 2016
@mpgn
Backdoor bind and reverse check #3 #4
8a07fee 
don't know what i'm doing

TODO: thread, send data, recieve data
mpgn added a commit that referenced this issue Feb 15, 2016
@mpgn
Update bind backdoor #3
ba9088d 
`nc 127.0.0.1 5000`

* can now send-recieve data

TODO
* thread
mpgn added a commit that referenced this issue Feb 17, 2016
@mpgn
Update backdoor #3 #4
419862c 
-> can execute cmd
-> get the result of the cmd
-> result are placed in a tmp file then read by the duck and send to the client
-> it's a bit hacky (not much)

TODO
* thread
* activate backdoor when needed
mpgn added a commit that referenced this issue Feb 18, 2016
@mpgn
Add thread on backdoor #3 #4
af2830b 
-> thread = working_queue

TODO
- activation on ICMP
mpgn added a commit that referenced this issue Feb 18, 2016
@mpgn
Add ICMP activation on the backdoor #3 #4
bf8c21b 
to activate the backdoor Oscar need to send valid ICMP packet with valid payload and size
Example : ping 127.0.0.1 -p 78563412 -s 10 -c 1
then he can use the reverse shell
The data  in the ICMP packets are in hexadecimal (little-Indian)

backdoor activation will be updated regarding #16
@mpgn mpgn closed this as completed Feb 19, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mpgn mpgn

Labels
backdoor
Projects
None yet
Milestone
rkduck v0.1
Development

No branches or pull requests
3 participants
@mpgn @0xLyte @Chuibo