EvilZone

Programming and Scripting => Projects and Discussion => Topic started by: bubzuru on October 16, 2012, 04:06:38 AM

Title: Back Door Manager
Post by: bubzuru on October 16, 2012, 04:06:38 AM: where to start .....

here is the info from the project file
Quote
Name: Bubzuru's Back Door Manager (Super Alpha)
Author: Bubzuru
Date: 15/10/12 23:35
*****************************************************************
Description:
Manage ip\port your back doors will
connect to through a simple web interface .....
---------------------------------------------------------------
Server info will be saved to the log in this format.
ID:IP:CONTOIP:PORT:CONNECT(BOOL):NAME
----------------------------------------------------------------
To add your back door to the log file simply
send a get request to ?set=1&cname=var&id=var&port=var
----------------------------------------------------------------
To get connection info send a get request to
?get=1&cname=var&id=var and the full server
string will be printed out to the browser.
do as you will with this infomation.. get ip\port etc.
******************************************************************
Idea:
The idea is simple, a reverse connection back door needs two
things to work. And that's an ip address and port. Now we could
hardcoded these addresses into our back door, but then its limited.
It can only connect to one address if that address goes down or
gets found then your fucked. But how about if we could make getting
the ip address\port to connect to a dynamic procedure ? then we could
tell the back door to connect to our manager and then from there we
can tell it when and where to connect to. thats the idea behind this app
******************************************************************
Notes:
the design of the interface theam is a hevily
modified version of AGD by Ahmed el Gabri
available here http://gabri.me/2010/04/free-xhtmlcss-template/ (http://gabri.me/2010/04/free-xhtmlcss-template/)

Big thanx to him, i dont know if im allowed to use it like
this but who the fuck cares ? i gave credit so :)

I dont code html/css/php this was made out of nasecity with a
free css theam, a php cheat sheat, and the little web knowlage
i have so bash if you like, but i think this could catch on :D

Pics:
(http://www.imageupload.co.uk/files/ca4rv3csw8c7y8wwh8cl.png)

(http://www.imageupload.co.uk/files/qgn7riwwh6epiicj9z39.png)

i want to make this an evilzone project. the code will be posted in a day or 2
i need people who know php\css to help. the project works i even have a test app
but i suck at php and i know this app could be better\catch on

and then just to build up the hype EvilVnc 3 (RCBDM) will be relesed sooon
remote connect vnc that uses BDM insted of the EvilVnc 2 ip logger

if you wana help post so we can sort the team out
Title: Re: Back Door Manager
Post by: ca0s on October 16, 2012, 05:58:48 PM: I could help with PHP. HTML + CSS too, but I kinda hate web design :P
Title: Re: Back Door Manager
Post by: Z3R0 on October 16, 2012, 09:37:10 PM: It seems a little fruitless to use bindshells with your backdoor. The only exception I can see is if you are on the same subnet, and your backdoors are ran with admin privileges. The main issue I have is the inability to bypass NAT when using bindshells.

Why not have them reverse connect? Doing so takes away ~~three~~ two problems at once: ~~having to be ran with admin privileges to listen~~, only has to comply with outbound firewall rules, and as mentioned before, bypasses NAT restrictions.

EDIT: Didn't see before that the listening port can be changed to something > 1024. Nevermind about privileges. :P
Title: Re: Back Door Manager
Post by: bubzuru on October 16, 2012, 09:45:22 PM: Quote from: m0rph on October 16, 2012, 09:37:10 PM
It seems a little fruitless to use bindshells with your backdoor. The only exception I can see is if you are on the same subnet, and your backdoors are ran with admin privileges. The main issue I have is the inability to bypass NAT when using bindshells.

Why not have them reverse connect? Doing so takes away three problems at once: having to be ran with admin privileges to listen, only has to comply with outbound firewall rules, and as mentioned before, bypasses NAT restrictions.

you can use any back door you like
the point is that the bd will connect to the mannager
to find where and if it should connect, you could use this with ant bd
EvilVnc(RCBDM) comes to mind

Edit:
a few get requests to a web server are not likely to be spooted by anyone
the manager just tells the bd where and if to connect

Edit 2:
This is a manager for reverse connection back doors
its simple the bd connects to the manager and asks
for its info (from the log file) then connects to the ip\port you tell it to
Title: Re: Back Door Manager
Post by: Z3R0 on October 16, 2012, 09:47:56 PM: lol sorry bubz, I should have read the entire post before making assumptions. I rest my case. It looks very promising!
Title: Re: Back Door Manager
Post by: jeremy78 on October 19, 2012, 07:25:11 PM: looks like an awesome backdoor manager
Title: Re: Back Door Manager
Post by: bubzuru on October 29, 2012, 01:05:46 AM: sorry for being away so long

here is the (very messy)code
if you have any commen\ideas\help , post here
and i will modify the code

hopfuly we can have v1 out this week
Title: Re: Back Door Manager
Post by: bubzuru on October 29, 2012, 02:07:38 AM: here is a test app
output is something like this
Quote
Enter Mannager Address: http://127.0.0.1/bla/index.php

Enter Computer Name: test123

Enter Back Door ID: testid

Master Says Do Not Connect Out
Master Says Do Not Connect Out
Master Says Do Not Connect Out

Master Says Connect To 127.0.0.1 On Port 8888
Do Your Shit !!!!

delete the comments from the top of index.php or the test app wont work
Title: Re: Back Door Manager
Post by: bubzuru on October 29, 2012, 02:22:06 AM: NOTE:
Dont run the manager on 127.0.0.1 it causes bugs, just use a free host