{"id":27201083,"url":"https://github.com/gregl83/comandare","last_synced_at":"2025-04-09T21:55:06.443Z","repository":{"id":57608830,"uuid":"318018032","full_name":"gregl83/comandare","owner":"gregl83","description":"TCP Command Line Execution","archived":false,"fork":false,"pushed_at":"2021-02-19T16:57:49.000Z","size":40,"stargazers_count":1,"open_issues_count":6,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-09T21:55:03.667Z","etag":null,"topics":["backdoor","rust","security","tcp"],"latest_commit_sha":null,"homepage":"","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/gregl83.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-12-02T23:21:50.000Z","updated_at":"2021-07-21T13:28:34.000Z","dependencies_parsed_at":"2022-08-30T10:30:11.129Z","dependency_job_id":null,"html_url":"https://github.com/gregl83/comandare","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gregl83%2Fcomandare","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gregl83%2Fcomandare/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gregl83%2Fcomandare/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gregl83%2Fcomandare/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/gregl83","download_url":"https://codeload.github.com/gregl83/comandare/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248119394,"owners_count":21050754,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["backdoor","rust","security","tcp"],"created_at":"2025-04-09T21:55:05.828Z","updated_at":"2025-04-09T21:55:06.436Z","avatar_url":"https://github.com/gregl83.png","language":"Rust","funding_links":[],"categories":[],"sub_categories":[],"readme":"# comandare\n\nTCP Command Line Execution.\n\n## Problem Statement\n\nNetwork ports enable computers to interact around the world but unintentional open ports wreak havoc on system security.\n\n## Intent\n\nDemonstrate how a program can open a port enabling remote access; otherwise, known as a backdoor.\n\n## Goal\n\nReinforce security intuition with network port management.\n\n## Installation\n\n1. [Install Rust and Cargo](https://doc.rust-lang.org/cargo/getting-started/installation.html)\n2. Git clone this repository\n3. From cloned repository, run:\n\n   `cargo install --path=.`\n\n4. That's it, `comandare` should now be installed on your system!\n\n## Usage\n\nRun `comandare` to see command execution format.\n\nSupported modes:\n\n- Client (uses command argument)\n- Server (doesn't use command argument)\n\n## Model\n\nComandare uses a server target model which is largely mitigated by any standard firewall. Incoming traffic in most configurations is rightfully blocked. Thus, binding a TCP Server to a specific port might work in a local network but be blocked from remote access over the internet or networks backed by one or more firewalls. A more effective approach, since TCP is a two-way communication protocol, is to initiate a client target model with event-driven connection attempts.\n\n## Caution\n\nThis package is not intended on being deployed or used in an environment other than for educational testing; thus, sacrifices have been made to simply assemble a proof of concept. NOT to be used maliciously. \n\nThe TCP Server does not implement any form of Auth leaving your network security as the sole guardian of your data.\n\nOpening TCP Ports on a system *can* be bad, use at your own risk!\n\n## Mitigation\n\nControlling network port access is paramount to preventing unauthorized remote access to a given machine. Regularily updating, in a timely manner, security patches is important to prevent software vulnerabilities from introducing attack vectors that can circumvent sensible security policies. Defining security policies and locking down network access beyond what's needed for interactions with trusted parties. Choose firewall and monitoring tools from reputable transparent sources. Every time risk is reduced, the likelihood of a successfull attack goes down.\n\n## Detection\n\nAn academic background in computer networking is worth its weight in gold while evaluating potential network security threats. While this is true, there are a few tools that can be used to identify potential threats.\n\n- [Wireshark](https://www.wireshark.org/) network analyzer provides comprehensive details on network activity.\n- [netstat](https://en.wikipedia.org/wiki/Netstat) networking utility provides insight into port usage with minimal configuration.\n\nUseful `netstat` command to get the ball rolling:\n\n```bash\nsudo netstat -tulnp\n```\n\nThere are many other useful tools available, but between `Wireshark` and `netstat` one can easily evaluate network activity and identify suspicious actors.\n\n## Final Words\n\nHopefully this package can increase intuition on backdoor implementations indirectly helping secure systems.\n\n## License\n\n[MIT](LICENSE)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgregl83%2Fcomandare","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgregl83%2Fcomandare","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgregl83%2Fcomandare/lists"}