Home

Awesome

Powershell-RAT

Python based backdoor that uses Gmail to exfiltrate data as an e-mail attachment.

This RAT will help someone during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends the information to an attacker as an e-mail attachment.

<B>Note: This piece of code is Fully UnDetectable (FUD) by Anti-Virus (AV) software. </B>

<B><I>This project must not be used for illegal purposes or for hacking into system where you do not have permission, it is strictly for educational purposes and for people to experiment with.</I></B>

Any suggestions or ideas for this tool are welcome - just tweet me on @ManiarViral

RAT Architecture Diagram

image

Screenshot

On the first run of the Powershell-RAT user will get options as below:

image

Using Hail Mary option to backdoor a Windows machine:

image

Successfully taking screenshots of the user activity:

image

Data exfiltrated as an email attachment using Gmail:

image

My Windows machine do not have Python installed, what should I do?

<pre> pip install pyinstaller </pre>

Setup

How do I use this?

Questions?

Twitter: https://twitter.com/maniarviral LinkedIn: https://au.linkedin.com/in/viralmaniar

Contribution & License

<a rel="license" href="http://creativecommons.org/licenses/by/4.0/"><img alt="Creative Commons License" style="border-width:0" src="https://i.creativecommons.org/l/by/4.0/80x15.png" /></a><br />This work is licensed under a <a rel="license" href="http://creativecommons.org/licenses/by/4.0/">Creative Commons Attribution 4.0 International License</a>.</br> Want to contribute? Please fork it and hit up with a pull request.

Any suggestions or ideas for this tool are welcome - just tweet me on @ManiarViral

To Do