RECUB (Remote Encrypted Callback Unix Backdoor), is a handy admin tool which can be also used as a backdoor on a linux system. Some of its features make it unique to other backdoors
Features
1) Activation through ICMP "ping" echo packet 2) No need for server to listen on any port 3) Completly invisible from the network (well, thats what I think) 4) The activation packet will contain your IP/tcp port and it will be encrypted with blowfish 5) The server will recieve the activation packet and decrypt it with the embedded password. 6) If it dosent match, the server ignores it. 7) If it does match, the server will connect to your IP/PORT with the SSL protocol (using OpenSSL toolkit) 8) The SSL server on the client side is setup by the the client program 9) The server then checks the identity of the client with a SSL certificate 10) And fully encrypted connection is established. 11) Also comes with a (simple) process hiding LKM. (see lkm directory). 12) A new GTK+ 2 interface to handle RECUB client.
ZIP in Recub_unix.rar (Source of RECUB V.1 alpha here (this includes only the command line interface),Glade Project of RECUB GTK+ interface here.)
Blackknight
Apr 6 2004, 10:58 PM
That is really tragic... I mean come on ... how hard is it to code a backdoor that sends a reverse shell and is encrypted.. And its gui... sigh its just wrong.. no offence
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
