16 replies to this topic

[passi]

Hi =D

If you own a system with a connect back exploit you need to have netcat listen on your pc. Then you have a dos based connection to execute commands on the remote machine.

Now I'd like to code a program in VB that works like the listening netcat. It waits on a specifyed port for the incoming connection or an just exploited machine.

I can't code C, if I could I knew how to do this... So my question is: Is it possible to make this in VB and with help of WinSock?

Thank you,
Passi

[nolimit]

Yes, you could use the Winsock OCX or directly link to the winsock library through classes. (I've done both). If you need help w/ code I could dig up some examples.

[Pro21]

Where is the interest to code a gui interface for a shellcode ?? You will have to write the command. It's easier to use netcat
But nice idea Good for the learning
Yes i think is possible t owrite that in VB, socket are easy to use. More than C.
Good luck

[passi]

I'm talking with nolimit in IRC currently.

@Pro21: The reason why I want to write this, is to make hacking more comfortable. You can save commands you have already written and the main fact: I will include a feature that allows to open a binary and transfer it onto the server.

That's cool
I hope I can do it ^^

[Pro21]

Nice

[Kenny]

i think this might interest you... here is the full vb source...

i have also compiled it to exe inc in zip

it will help give you idea's for your program

Attached Files

•  Net.jpg   44.82K   400 downloads
•  Netcat_W.zip   25.41K   261 downloads

[Pro21]

lool Thx who ?
Thx master chief

[passi]

Thanks ComSec, this is standart winsock thingy. The question is... Is it compatible to netcat's commands?

I need to play around to test it...

[jpno5]

when i started with vb i coded a little app that will persistently listen for shells, have a look in the download section, i'll have a look for the source ive got it here somewere, if i find it i'll upload it

[LittleHacker]

@ComSec  post Mar 18 2005, 01:26 PM

i think this might interest you... here is the full vb source...
i have also compiled it to exe inc in zip
it will help give you idea's for your program

But this proggy has not may do as many as netcat such as : port scanning or redirecting .
It's just a simple tcp/udp program

[Kenny]

well the idea LittleHacker...is to develop it further and write some code to add to the source ....

whats the point in having a ready made tool that did it all.... this thread would be pointless

follow me

The question is... Is it compatible to netcat's commands?

no idea passiw..... i compiled it BUT i have NOT tested it

BTW any progress with this yet anyone ?

[Digital_Spirit]

I wonder if I could get in on it. I am not a computer sci. major; I am a med student, but I do have tech certs. Does anyone know if it is for ALL students or just those in computer sci.? If so, I would like to introduce an open source prog I am working on called MedPanel that analyzes DNA Samples and creates 3d structures of helixial objects.

[ipixnic]

Oi!

Very nice too have a look at the source code.. So i am having this idea.

A tool just like this but with an exloit libary. when I exploit something using metasploit or whatever i sniff the traffic with ethereal and then save it so it can be implemented in the tool

work in progress, will be posted in the download section when it's finished

all my thanks to Kenny L

[secrou]

hey guys where is the problem`?

if you want to include some commands just do it.

example:

winsock dataarrival:
ws.getdata s
if s = "shutdown" then shell "shutdown.exe -s -t 0"
if s = "reboot" then shell "shutdown.exe -r -t 0"
if s = "doanyshit" then call API_that_does_funny_things


thats all....
a few modifications of the source, some hiding commands ("app.taskvisible = false, me.hide")
and a good filename with a API registry modification to autorun it and its done.
your first trojan is born.

[pip2kk]

Back in school i did a bit of network gaming programming in vb...if you have any questions or anything let me know. I would not mind getting in on this project