RAT-via-Telegram Running out of ideas for features

Any suggestion is appreciated

Apr 23 '17 21:04 mvrozanti

Hi!

I'm struggling to integrate the v2 of the telegram bot (change the v1 commands to the v2 keyboard) but I can't seem to handle it.
I've added an ARP table and tasklist features, and internal IP inside of ip_info.

Apr 28 '17 16:04 Dviros

@Dviros Hey

Can you elaborate on the first problem? Do create a pull request for those changes! Would be a very nice add.

Apr 28 '17 22:04 mvrozanti

Hi! Telegram bot API v2 allows to create a custom made keyboard instead of typing commands. I did manage to find my way from it, it would be awesome for you to check it (I've forked it and committed the changes) https://github.com/Dviros/RAT-via-Telegram/

Tell me what you think :) TODO: with these new button, the functionality of some input based functions won't work. I need help actually "asking" the user for input after the button click. Can you help?

Apr 28 '17 22:04 Dviros

Just read it and looks good! Except functions that need arguments need to hold some kind of phase-keeping. Maybe the function could call itself after changing a global variable phase to process the query_data and act accordingly.

If you can get that going while still being user-friendly as is, I'll merge right up. Thank you!

Apr 28 '17 22:04 mvrozanti

Hey dude, Only options for me is to use While loop. However, I don't know hot to implement an input (from the telegram message) inside the while loop. Can you help? Thanks!

Apr 29 '17 17:04 Dviros

I've been thinking about the markup keyboard but I just don't think it's very usable if they would be the only way to interact. Keeping this application terminal-like is a goal I'd like to keep. While buttons are faster for some times, they lack the argument part. It would probably get too messy.

But the ARP table and pc_info changes are well written already so I'm adding them and updating README.

Sounds good?

Apr 30 '17 03:04 mvrozanti

Hey dude, sure. Also found a solution for the tasklist

May 05 '17 09:05 Dviros

Looks good, I'm adding it as well then.

May 06 '17 01:05 mvrozanti

Change Wallpaper on Victim's PC like in BrainDamage RAT

Jun 25 '17 07:06 X3eRo0

@PulkitSingh256 thank you, just added on 23043c1a1c7719a216f510de50c44df52c257398

Jun 25 '17 22:06 mvrozanti

currently /wallpaper requires a image already on the victim. if possible make it like changing wallpaper with a URL /wallpaper <URL> please

Jun 26 '17 15:06 X3eRo0

@PulkitSingh256 check commit 2b5621129de42931f3c86fb7a39eab4dd52b876e

Jun 29 '17 19:06 mvrozanti

Thanks a lot

Jun 30 '17 13:06 X3eRo0

Update Compile.bat @echo off echo RAT-via-Telegram COMPILER set /p id1 = Enter The Path of folder in which RAT_Attack.py is placed : rem --specpath id1 --distpath "id1\dist" --workpath "id1\build" pyinstaller --clean --upx-dir "upx393w" --noconsole --onefile "RAT_Attack.py"

Jun 30 '17 17:06 X3eRo0

Hi dude, please implement it: https://github.com/hackIL/reveal-passwords-from-chrome-password-manager-/blob/master/getPass.py

It's for the chrome password gathering. I'm not sure it will work on the latest version, please test it. Cheers.

Jul 02 '17 13:07 Dviros

New Feature idea. Running Audio in background to work as a Panic Attack.

Jul 06 '17 13:07 X3eRo0

Hey man, Take a look in here: https://github.com/graniet/gshark-framework

Jul 07 '17 06:07 Dviros

Gshark is great tool

Jul 07 '17 12:07 X3eRo0

@Dviros getPass.py does retrieve the password but does not retrieve username for me.

EDIT: Didn't work on one site but worked on hotmail. Go figure. I'm adding it even though it looks a little buggy.

Jul 07 '17 17:07 mvrozanti

Found something that works! https://github.com/hassaanaliw/chromepass/blob/master/chromepass.py

Needs to close chrome processes
python chromepass.py -d >> passwords.txt >> send.file(passwords.txt)

Cheers!

Jul 07 '17 20:07 Dviros

Add features from this Script. https://github.com/arbazkiraak/hackbot

Jul 23 '17 13:07 X3eRo0

@PulkitSingh256 This needs to be a serious RAT and all your ideas are related to PRANK. Pls. keep this a serious RATing tool not a prank.

Jul 25 '17 05:07 Elite

@PulkitSingh256 I agree with @Elite. The application you linked while not prank-related per se it's not useful for controlling a Windows environment remotely either. We need data extraction/management about the system in various forms.

Jul 25 '17 23:07 mvrozanti

It was just a suggestion which got rejected. But if you can add a option to format any drive with just a command. That would be useful

Jul 26 '17 13:07 X3eRo0

PulkitSingh256 i will include recursive deletion

Jul 26 '17 17:07 mvrozanti

https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Payload---Chrome-Password-Stealer

It's a Rubber Ducky Payload but it does capture Passwords by WIN+R and then typing commands as a kyeboard. We can also create a python file for capturing that passwords.txt and sending them to Gmail or telegram

Aug 07 '17 05:08 X3eRo0

Aren't we doing this already?

Aug 08 '17 13:08 mvrozanti

But someone reported that it was not working so I just thought. Sorry

Aug 08 '17 13:08 X3eRo0

keystrokes injection

how do i run this cmd command on victim PC "C:\Program Files\Internet Explorer\iexplore.exe" -k http://fakeupdate.net/win10u/index.html

Oct 23 '17 04:10 X3eRo0

New Idea. And option like /pwn (lhost,lport) And this option automatically generated a powershell alfanumeric undetectable batch file and executes it on victim which gives a meterpreter session to us. How about that. I am working on a python script which does exactly that but without telegram after it gets completed I want you to include the code in RAT-via-Telegram and make it trigger with telegram.

Jan 01 '18 06:01 X3eRo0

RAT-via-Telegram RAT-via-Telegram copied to clipboard

Running out of ideas for features

RAT-via-Telegram
RAT-via-Telegram copied to clipboard