Code Monkey home page Code Monkey logo

backdoorfactory's Introduction

backdoorfactory

A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.

Introduction

backdoorfactory is an extension to bettercap that allows the insertion of shellcode into intercepted file downloads.

It lets you man-in-the-middle web file downloads and inject them with platform-appropriate shellcode. It works on downloaded archives as well.

This is a complete refactor and rewrite of the original the-backdoor-factory.

Features

  • Works on PE, Mach-O, and ELF format binaries using the Binject Debug library
  • Integrates with bettercap's DNS and ARP based man-in-the-middling capabilites
  • Unpacks and repacks Zip, Tar, and Tar.gz archives, injecting any binaries inside
  • Supports configurable methods of shellcode injection via the Binjection library
  • Shellcode repository allows different shellcodes per architecture and per binary format

Documentation

Project documentation lives here.

backdoorfactory's People

Contributors

awgh avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

red-infosec nutc4k3 aaq1adqwe askyeye redwifiteam k0rsec m00zh33 minkione mmg1 jermainlaforce mewbak crackercat dzordre bktruss sswares dendisuhubdy backwardn flatl1neapt by1c dskho ocakliemre vkece juan157 eltorobiz egebalci reanimat0r pirenga ykankaya p-g-krish rafaelescrich listinvest python-pachou hack-payload-collection xpz3 mickeystone fadinglr nusiloot fenajojuk ilovesusu underwood12 7777333 0x0ff537 inosec2 playniuniu invelsec gsy-pi jayhill365 xelerated subedibibek-cmd aels alvin-tosh clayne mellonaut crispud cmdsecure zer010101 nullze runningoutoftimeu nkxxll gmh5225

backdoorfactory's Issues

RAR Support

Will this work on wireless or just on lan?

More arp posoning options would be great and not only when a download is made

Addition of rar format would be useful too

Shellcode is larger than available space

$ backdoor -f exec -s user_supplied_shellcode -U inject
__________ __ .___
______ _____ ____ | | __ | /_ ___________
| | /_ \ / | |/ // __ |/ _ \ / _ _ __ \
| | \ / __ \ _| </ // ( <> | <> ) | /
|_____ /(____ /___ >|_ __ |_/ _/|__|
/ / / / /

_ / / | ___________ ..
| ) _ \ / \ / _ _ __ < | |
| \ / __ \ _| | ( <> ) | /_ |
_ / ( /_ >| _/|_| / ____|
/ / / /

     !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
     ALERT: NEW VERSION IN DEVELOPMENT 
     *** ONLY AVAILABLE TO SPONSORS ***
     SPONSOR THE NEXT VERSION HERE: https://github.com/sponsors/secretsquirrel
     Author:    Joshua Pitts
     Email:     the.midnite.runr[-at ]gmail<d o-t>com
     Twitter:   @ausernamedjosh
     SPONSOR THE NEXT VERSION HERE: https://github.com/sponsors/secretsquirrel
     !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
     
     Version:   3.4.2

[] Checking file support
[] Patching x86_64 Mach-O Binary
[] Pre-text section 'code cave' size: 0x2b08
[] Looking for and setting selected shellcode
[!] Shellcode is larger than available space

I want to resolve the todo comment in the main function

I found a todo comment in the main.go function and I would be happy to fix it ๐Ÿ˜„.

backdoorfactory/main.go

Line 261 in 5be9dc0

// todo: detect 32 vs 64 bit, for now just default to 64

To make it a more elegant solution that using the hole Binject/debug lib for such an easy task I opened an issue in the Binject/binjection repo to add the arch type 32 or 64 bit to or aside the BinaryMagic function. If that issue is resolved I would like to come back and make a PR if that is file with you ๐Ÿ˜„.
(issue here Binject/binjection#8 (comment))

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.