Quasar icon indicating copy to clipboard operation
Quasar copied to clipboard

Published 20 hours ago verified publisher icon quasar

Tor Support

Open zero77 opened this issue 8 years ago • 13 comments

Can you add the option of Tor support so all traffic that is sent between the bots and C&C is sent through Tor. As this will add extra security and get rid of the need for VPNs and DDNS like no-ip.

zero77 avatar Jun 29 '16 08:06 zero77

Its already working! You can redirect all Sockets over TOR even QuasarRAT! There is no Limit in Tor!

Pleas Read the Tor References about Hidden Services! There you find how to do that!

You never be forced to use DDNS!

0xE232FE avatar Aug 30 '16 07:08 0xE232FE

how to direct traffic from the client through the tor?

superguard avatar Dec 23 '16 10:12 superguard

That would be interesting. If you could give us some more information it would be appreciated. Thank you!

kkar avatar Dec 26 '16 18:12 kkar

  1. Install Tor on Client-Side
  2. Install Privoxy
  3. Tell Privoxy to route all traffic through TOR. TOR is Listening on 9050
  4. Let the Client connect to 127.0.0.1:8118 (8118 Default Privoxy Port)

EnricoVogt avatar Jan 13 '17 16:01 EnricoVogt

It won't work just like that. Where is the onion-hostname part?

kkar avatar Jan 27 '17 23:01 kkar

I'm gonna do it as followed:

_handle(Client) will be a ProxySocket instead of a socket. If Settings.TOR = true then it will download tor and run it(background) then the Socket will connect trough a random socks port to the hidden service(control server) For the control server I'm thinking of using a ephemeral hidden service? On request generate a tor key and on every start(if autolisten is turned on) it will auto start the service again. But then you would need to save the private key to maybe the settings file, which is unsafe, maybe some sort of encryption before writing to a file? Need a suggestion on that

life-coder avatar Mar 15 '17 15:03 life-coder

@matteke-games you don't need to do that. Let us set up the hidden service manually, it's not a problem at all. The main "problem" (feature i'd say) is the connection itself. I've found a guy who compiled TOR in to a single executable. Do you want me to search my bookmarks and find the link, to help you avoid all of these useless tor dependencies?

kkar avatar Mar 19 '17 02:03 kkar

Bundling tor with the client is not really a good option besides you have to add "proper" socks support to the client so....

abdullah2993 avatar Mar 19 '17 09:03 abdullah2993

Also instead of a single statically compiled binary of tor you can have the client download the tor expert bundle and extract it but still need socks5 support on the client...

abdullah2993 avatar Mar 19 '17 09:03 abdullah2993

@kkar I want to provide ease of use for everyone as not everyone can setup a hidden service and @Abdullah2993 I'm going to use a modified version of TorSharp for this

life-coder avatar Mar 20 '17 09:03 life-coder

Hello, is there any update on this subject? Thanks again for this awesome project.

kkar avatar Aug 14 '17 15:08 kkar

Can someone update when this is done, if ever?

SkepticTiqer avatar Jun 15 '18 22:06 SkepticTiqer

any news ? tor connection would be awesome!!

TheDarkMythos avatar Dec 01 '19 09:12 TheDarkMythos