![]()
tag:blogger.com,1999:blog-8317222231133660547.post-70132067834456874962021-02-24T17:30:00.019-03:002021-02-24T17:30:09.755-03:00BlackMamba - C2/post-exploitation Framework<div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-soKkh4iGdL4/YDSRjyM4eYI/AAAAAAAAVa4/sG8YEcb2lHIGnMsrowl6oi7Gk2Qozdm1ACNcBGAsYHQ/s561/BlackMamba_1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="535" data-original-width="561" src="https://1.bp.blogspot.com/-soKkh4iGdL4/YDSRjyM4eYI/AAAAAAAAVa4/sG8YEcb2lHIGnMsrowl6oi7Gk2Qozdm1ACNcBGAsYHQ/s16000/BlackMamba_1.png" /></a></div><p><br /></p><p>BlackMamba is a multi client C2/post <a href="https://www.kitploit.com/search/label/Exploitation%20Framework" target="_blank" title="exploitation framework">exploitation framework</a> with some spyware features. Powered by Python 3.8.6 and QT Framework.</p> <p>Some of BlackMamba features are:</p> <ul> <li><strong>Multi Client</strong> - Supports multiple client connections at the same time.</li> <li><strong>Real Time Communication Updates</strong> - Real time communication and updates between the client and server.</li> <li><strong>Encrypted Communication</strong> - Almost all communications are encrypt, with exception of screen video streaming.</li> <li><strong>Screenshot Gattering</strong> - Get a realtime screenshot from the client.</li> <li><strong>Video Streaming</strong> - Watch in real time the client screen.</li> <li><strong>Client Lock</strong> - Lock and unlock the machine of the client.</li> <li><strong>Encrypted <a href="https://www.kitploit.com/search/label/File%20Transfer" target="_blank" title="File Transfer">File Transfer</a> (upload/download)</strong> - Download files from the client or uploads files for the client.</li> <li><strong>Keylogger</strong> - Register all the keys pressed by client.</li> <li><strong>Web Downloader</strong> - Download files from URLs or content by RAW pages.</li></ul><span><a name='more'></a></span><div><br /></div><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-yVFuwAdyIxg/YDSRv0B6CiI/AAAAAAAAVbI/7Euyjl7Gka8yYk4ZXDQ29o2PTReIfaACQCNcBGAsYHQ/s1127/BlackMamba_7.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="718" data-original-width="1127" height="408" src="https://1.bp.blogspot.com/-yVFuwAdyIxg/YDSRv0B6CiI/AAAAAAAAVbI/7Euyjl7Gka8yYk4ZXDQ29o2PTReIfaACQCNcBGAsYHQ/w640-h408/BlackMamba_7.png" width="640" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-1jh5bzowDQk/YDSRwFkgY_I/AAAAAAAAVbM/MpXsotGWiJ0AvngZV17E_hj80DuyhPAOwCNcBGAsYHQ/s1366/BlackMamba_8.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="726" data-original-width="1366" height="340" src="https://1.bp.blogspot.com/-1jh5bzowDQk/YDSRwFkgY_I/AAAAAAAAVbM/MpXsotGWiJ0AvngZV17E_hj80DuyhPAOwCNcBGAsYHQ/w640-h340/BlackMamba_8.png" width="640" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-oi3RXXsQFOU/YDSRwU-ES7I/AAAAAAAAVbQ/oCUe5o8AkWkZKgXOtFb7VzZ2S-5XhmbDACNcBGAsYHQ/s1149/BlackMamba_9.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="655" data-original-width="1149" height="364" src="https://1.bp.blogspot.com/-oi3RXXsQFOU/YDSRwU-ES7I/AAAAAAAAVbQ/oCUe5o8AkWkZKgXOtFb7VzZ2S-5XhmbDACNcBGAsYHQ/w640-h364/BlackMamba_9.png" width="640" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-4cb9U6YCbx0/YDSRvGfjhoI/AAAAAAAAVbA/ZaFiqfoy4r8HQ45EjSvJo4dAb71JReg9wCNcBGAsYHQ/s978/BlackMamba_10.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="699" data-original-width="978" height="458" src="https://1.bp.blogspot.com/-4cb9U6YCbx0/YDSRvGfjhoI/AAAAAAAAVbA/ZaFiqfoy4r8HQ45EjSvJo4dAb71JReg9wCNcBGAsYHQ/w640-h458/BlackMamba_10.png" width="640" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-FitQ64EvPbM/YDSRvG8yvJI/AAAAAAAAVa8/c0L-HEROWSwxIvGTu_HvdpZLoHizq7zlQCNcBGAsYHQ/s976/BlackMamba_11.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="697" data-original-width="976" height="458" src="https://1.bp.blogspot.com/-FitQ64EvPbM/YDSRvG8yvJI/AAAAAAAAVa8/c0L-HEROWSwxIvGTu_HvdpZLoHizq7zlQCNcBGAsYHQ/w640-h458/BlackMamba_11.png" width="640" /></a></div><br /><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-GJDacso2B48/YDSRvG42psI/AAAAAAAAVbE/wP0MaLcoCm4rTqBNWGoyDRjhw01THz6xQCNcBGAsYHQ/s976/BlackMamba_12.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="699" data-original-width="976" height="458" src="https://1.bp.blogspot.com/-GJDacso2B48/YDSRvG42psI/AAAAAAAAVbE/wP0MaLcoCm4rTqBNWGoyDRjhw01THz6xQCNcBGAsYHQ/w640-h458/BlackMamba_12.png" width="640" /></a></div><div><br /></div><span style="font-size: large;"><b>Install Guide</b></span><br /> <blockquote> <p>SERVER INSTALL</p> </blockquote> <p>1º - Download the BlackMamba;</p> <p>2º - Install the PIP packages;</p> <pre><code> PyQt5<br /> Pillow<br /> PyAutoGUI<br /> pytest-shutil<br /> cryptography<br /> pynput<br /> pygame<br /></code></pre> <p>3º - Open the port 65000 and 65005 in your Gateway or Router (the port number is optional);</p> <p>4º - Create an exception in firewall for BlackMamba or disable it;</p> <p>5ª - Go to "BlackMamba/bin/profile/socket.txt" and input the port number opened;</p> <pre><code> SERVER_IP=0.0.0.0<br /> PORT=65000<br /> PORT_VIDEO=65005<br /><br /> IMPORTANT: Do not change the 0.0.0.0.<br /></code></pre> <p>6º (OPTIONAL) - Go to BlackMamba folder and open the "keygen.py" file. Copy the result key and paste in the "BlackMamba/bin/profile/crypt_key.py" ;</p> <pre><code>The BlackMamba use a default <a href="https://www.kitploit.com/search/label/Cryptography" target="_blank" title="cryptography">cryptography</a> key, is interesting that you change it.<br /></code></pre> <p>7º - Back to BlackMamba root folder and open the "main.py" file;</p> <pre><code>WINDOWS<br />python main.py<br /><br />GNU/LINUX<br />sudo chmod 777 main.py<br />sudo python3.8 main.py<br /><br /> KALI LINUX<br /> (sudo chmod 777 main.py)<br /> (sudo python3 main.py)<br /></code></pre> <p>8º - Click on the button that have a person icon and plus signal;</p> <p>9º - Input the path where the Python file will be created, input the both port numbers and the IP address (external or local) of your host, then click on the "Create" button.</p> <blockquote> <p>CLIENT INSTALL</p> </blockquote> <p>After create the Client script you'll need to open the script in the host target:</p> <p><strong>WINDOWS</strong></p> <p>python script.py</p> <p><strong>GNU/LINUX</strong></p> <p>1º Download the packages:</p> <pre><code>scrot -y<br />python3-pip -y<br />python3-tk -y<br />python3-dev -y<br /></code></pre> <p>2º sudo python3.8 script.py</p> <pre><code>KALI LINUX<br />(sudo python3 script.py)<br /></code></pre> <p><strong>IMPORTANT</strong>: The script of client not have persistence, if you want to do a persistence you'll need to made by yourself. Another important point is that the client script maybe delay some seconds or few minutes for connect/reconnect.</p> <br /><span style="font-size: large;"><b>Release status</b></span><br /> <p>Currently the BlackMamba is on beta stage, this means that the features are all completed but likely to contain a number of known and unknown bugs. Is important reinforce that the majority of critical bugs like crashes or <a href="https://www.kitploit.com/search/label/Buffer%20Overflow" target="_blank" title="buffer overflow">buffer overflow</a> alredy have been solved.</p> <br /><span style="font-size: large;"><b>More information</b></span><br /> <p>For more information please take a look in the Wiki.</p> <br /><span style="font-size: large;"><b>Call for Contributions</b></span><br /> <p>I'm just one person developing the BlackMamba, if anyone finds this tool useful and would like to add some functionality, improve the code performace or improve something in the BlackMamba the best way to get it added is to submit a pull request.</p> <p>If you want to collaborate but you don't know Python you can help me so much with bug reports, you can do it with Issues :)</p> <br /><span style="font-size: large;"><b>Author</b></span><br /> <p>Gustavo (<a href="https://github.com/loseys" rel="nofollow" target="_blank" title="Loseys">Loseys</a>)</p> <br /><span style="font-size: large;"><b>Acknowledgments, Contributors & Involuntary Contributors</b></span><br /> <p><strong>(In no particular order)</strong></p> <ul> <li><a href="https://stackoverflow.com/users/6273251/random-davis" rel="nofollow" target="_blank" title="Random Davis">Random Davis</a> for help me with video streaming script.</li> <li><a href="https://github.com/Wanderson-Magalhaes" rel="nofollow" target="_blank" title="Wanderson-Magalhaes">Wanderson-Magalhaes</a> for GUI inspiration. Tamo junto Wanderson.</li> <li><a href="https://github.com/byt3bl33d3r" rel="nofollow" target="_blank" title="@byt3bl33d3r">@byt3bl33d3r</a> for README inspiration.</li> <li><strong>Vitor</strong> for help me with some English translations.</li> </ul> <br /><br /><div style="text-align: center;"><b><span style="font-size: x-large;"><a class="kiploit-download" href="https://github.com/loseys/BlackMamba" rel="nofollow" target="_blank" title="Download BlackMamba">Download BlackMamba</a></span></b></div>Zion3R[email protected]
文章来源: http://www.blogger.com/feeds/8317222231133660547/posts/default/7013206783445687496
如有侵权请联系:admin#unsafe.sh