Stitch
Stitch copied to clipboard
nathanlopez
stitchgen problem
hi first thanks for this great rat, but when i try to generate a payload using stitchgen, i have nothing in binaries folder ""i'm using kali linux"..
Hey, well thank you for trying the stitch rat out. I didnt really do much heavy testing on Kali, mainly CentOS but I dont think that should matter all that much. For clarification, after running stitchgen you are not finding the binaries generated in your <stitch_path>/Payloads/configX/ folder, correct? Never encountered this, but I will boot up a kali vm when I can to try and duplicate it :]
I think I am having the same problem here, when I run the stitchgen on my Debian VPS, it says
Would you like to use the current configurations? [Y/N]: y
[+] Stitch Modules are now complete.
[*] Starting exe generation...
[██████████████████████████████████████████████████] %100
Would you like to create Makeself Installers for your payloads? [y/n]: y
[*] Creating Makeself Installers...
[██████████████████████████████████████████████████] %100
[+] Payload creation is complete: /home/Synthx/Stitch/Payloads/config4
but when I go into that config4 folder every folder inside of the config4 folder is blank.
Also, when I open the config4 folder, it has a file called PAYLOAD_CONFIG.log do I need to do something with this file?
Hey xSynthx, so the PAYLOAD_CONFIG.log is just for reference if you forget which properties that payload folder was created with (Listening port, binding port, binding ip, etc). I just made a couple of commits which should add logging to help debug this situation. If you go to Stitch/Logs/stitch.log you should see output from the commands used to create the executables and installers. If you see errors and if you could post it id appreciate it.
I checked the logs, and this is all I have
[02/08/2017 09:52:30 PM] INFO: Starting Stitch
[02/08/2017 09:52:30 PM] INFO: Now listening on port 4040
[02/08/2017 09:55:53 PM] INFO: Stitch Modules are now complete.
[02/08/2017 09:56:04 PM] INFO: Payload creation is complete: /home/Synthx/Stitch/Payloads/config1
[02/08/2017 09:57:29 PM] INFO: Exiting Stitch...
[02/08/2017 09:57:38 PM] INFO: Starting Stitch
[02/08/2017 09:57:38 PM] INFO: Now listening on port 4040
[02/08/2017 09:58:48 PM] INFO: Stitch Modules are now complete.
[02/08/2017 09:58:52 PM] INFO: Payload creation is complete: /home/Synthx/Stitch/Payloads/config2
[02/08/2017 10:07:57 PM] INFO: Stitch cmd command: "q"
[02/10/2017 06:22:59 PM] INFO: Starting Stitch
[02/10/2017 06:22:59 PM] INFO: Now listening on port 4040
[02/10/2017 06:24:51 PM] INFO: Stitch Modules are now complete.
[02/10/2017 06:24:54 PM] INFO: Payload creation is complete: /home/Synthx/Stitch/Payloads/config3
[02/10/2017 06:30:03 PM] INFO: Stitch Modules are now complete.
[02/10/2017 06:30:07 PM] INFO: Payload creation is complete: /home/Synthx/Stitch/Payloads/config4
[02/10/2017 06:32:36 PM] INFO: Stitch Modules are now complete.
[02/10/2017 06:32:39 PM] INFO: Payload creation is complete: /home/Synthx/Stitch/Payloads/config5
[02/10/2017 06:33:54 PM] INFO: Stitch cmd command: "clea"
[02/10/2017 06:33:54 PM] ERROR: /bin/sh: 1: clea: not found
[02/10/2017 06:34:36 PM] INFO: Exiting Stitch...
I still dont know what to do with the config4 folder, it contains nothing other than blank folders and PAYLOAD_CONFIG.log......
Im sorry bro, ive grabbed the latest and havent been able to reproduce on my end :/
Im not really going to be maintaining this all that much but if someone else finds a solution I will be accepting pull requests.
So you are basically telling me you made a RAT that you aren't even gonna keep updated, and you basically don't care about? wow, pff, bullshit, I have a other one that does everything this one does, but even more and better, fuck is this
Lol, first off this is for people to look at and learn. You want a pro tool use metasploit. I have a job in computer security so this project isn't my life. Yes there are going to be bugs but it wont be my life's mission to make this RAT the best. I tried replicating your problem and I couldn't. If you don't like it then use your program that "does everything this one does, but even more and better". I know there's better stuff out there. Have a good day.
Nice Tools Bro... btw how to make payload for windows... im running stitchgen but nothing see *.exe in payload folder or configX sub folder.. have DOC or WIKI ?
running Stitch from kali
@wootw0rm, Thanks bro. Just created the wiki. To create a windows payload you have to run stitchgen on a windows machine. That creates windows payloads, then you will have to add the aeskey of you windows machine onto your kali machine running stitch. You can find the step by step here
I had the same issue with no binaries being created on OS X, after looking through the logs I moved everything in Configuration/Build/st_main to a folder I made called 'bak' and then tried remaking the RATs and it seemed to work. The files I had removed were recreated by Stitch.
@xSynthx you're literally complaining that someone handed you free software, you egotistical little shit. Go jump off a bridge.
@nathanlopez Nice RAT. I'll see if I can reproduce the issue and come up with a fix.
One question, between these files, which does a connect back to the CnC cupst_Installer stitch_lnx_Installer sshst_Installer nmbd_st_Installer smbd_st_Installer
Hey, I've got this issue too but on OSX and I followed @hummelm10 guide but inside of the "Configuration/" folder there isn't any of these "Build/st_main"
From what i am seeing here, Looks like a permission problem. I will try this when i get home and get my PC and server back up and running. I will laugh though if @sparta3407 and @xSynthx is missing library's for this. Speaking along those lines, @nathanlopez does this have code to check if the machine that this is ran on has the correct library's?
ModuleNotFoundError: No module named 'StringIO' [12351] Failed to execute script st_main