neurax icon indicating copy to clipboard operation
neurax copied to clipboard

Published 20 hours ago verified publisher icon redcode-labs

Feature ideas

Open TormentedSoul666 opened this issue 3 years ago • 3 comments

As already said in the other repository I'm very intrigued by your projects and adding Golang to my skillset now, after getting annoyed with Paramiko in Python. Did you limit the scanning feature on purpose on the /24 cidr or is a improvement to scan outside of the local network already in planning? Also I'm curious what you think about fileless self replicating code, only loaded and executed in RAM. Is that even possible with Go?

TormentedSoul666 avatar Jul 11 '21 14:07 TormentedSoul666

I should have checked the source prior to asking stupid questions, you're exploiting Active Directory and therefore you stay inside of the LAN. But you're using the ARP cache and there are like limitless options to spread via MITM. I'll think about a practical concept and initiate a merge request then.

TormentedSoul666 avatar Jul 13 '21 19:07 TormentedSoul666

MITM vector would be really cool - can't wait to see what you'll come up with. Speaking of the RAM stuff, I am currently working on such project ;> should be ready before September. I am writing it mostly in Assembly and low-level C - I suppose that in Go would be way harder (due to sizes) and a bit less practical.

wintrmvte avatar Jul 14 '21 10:07 wintrmvte

I'm already working on ARP and DNS Poisoning to inject Neurax in multiple ways into the HTTP stream. I'm a novice with Go (coming from C, Python and NodeJs) but in the best case it will be possible to monitor Ethernet traffic and patch downloaded executables on the fly with Neurax (PoC is available in MITMf/Sergio-Proxy in Python).

TormentedSoul666 avatar Jul 18 '21 00:07 TormentedSoul666