{"id":17383364,"url":"https://github.com/gsociety0/anonxploit","last_synced_at":"2025-06-26T10:04:15.936Z","repository":{"id":219623871,"uuid":"748930259","full_name":"gsociety0/AnonXploit","owner":"gsociety0","description":"Windows RAT w/ antivirus bypass.","archived":false,"fork":false,"pushed_at":"2024-01-30T22:35:36.000Z","size":765,"stargazers_count":4,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-09T05:25:43.687Z","etag":null,"topics":["anonxploit","antivirus-bypass","backdoor","command-and-control","hacking","implant","metasploit","msfconsole","netcat","pentest","post-exploitation","python3","rat","redteam","remote-access","remote-access-tool","reverse-tcp-shell","shellcode","windows"],"latest_commit_sha":null,"homepage":"https://github.com/gsociety0/AnonXploit","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/gsociety0.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-01-27T04:20:44.000Z","updated_at":"2024-11-26T17:47:59.000Z","dependencies_parsed_at":"2024-01-30T23:48:39.556Z","dependency_job_id":"b5d4c22c-fabb-4eb8-998b-011922c24da3","html_url":"https://github.com/gsociety0/AnonXploit","commit_stats":{"total_commits":28,"total_committers":1,"mean_commits":28.0,"dds":0.0,"last_synced_commit":"70e33e5d40596ab2868e27d9ef9fbc609d44c639"},"previous_names":["gsociety0/anonxploit"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/gsociety0/AnonXploit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gsociety0%2FAnonXploit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gsociety0%2FAnonXploit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gsociety0%2FAnonXploit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gsociety0%2FAnonXploit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/gsociety0","download_url":"https://codeload.github.com/gsociety0/AnonXploit/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gsociety0%2FAnonXploit/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":262044446,"owners_count":23249749,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anonxploit","antivirus-bypass","backdoor","command-and-control","hacking","implant","metasploit","msfconsole","netcat","pentest","post-exploitation","python3","rat","redteam","remote-access","remote-access-tool","reverse-tcp-shell","shellcode","windows"],"created_at":"2024-10-16T07:41:24.038Z","updated_at":"2025-06-26T10:04:15.919Z","avatar_url":"https://github.com/gsociety0.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003chtml lang=\"en\"\u003e\n \u003chead\u003e\n \u003cmeta charset=\"UTF-8\"\u003e\n \u003cmeta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\"\u003e\n \u003cmeta name=\"author\" content=\"gsociety\"\u003e\n \u003c/head\u003e\n \u003cbody\u003e\n \u003cimg src=\"./src/img/logo.png\" alt=\"logo\"\u003e\n \u003cp\u003e\n \u003cimg src=\"https://badges.frapsoft.com/os/v1/open-source.svg\" alt=\"Open Source Love\"\u003e\n \u003ca href=\"https://www.gnu.org/licenses/gpl-3.0\"\u003e\u003cimg src=\"https://img.shields.io/badge/License-GPLv3-blue.svg\" alt=\"License: GPL v3\"\u003e\u003c/a\u003e\n \u003cimg src=\"https://img.shields.io/badge/dependencies-Up%20to%20Date-brightgreen.svg\" and=\"Dependencies\"\u003e\n \u003c/p\u003e\n \u003ch4\u003eAnonXploit is a pentesting tool, that create a Powershell RAT. It can be used by organizations of all sizes, including individuals.\u003c/h4\u003e\n \u003ch4\u003eIt was developed with the purpose of exploiting the vulnerability of creating a reverse shell between the pentester and the injected computer. This tool can work without warnings about viruses and suspicious connections.\u003c/h4\u003e\n \u003cbr\u003e\n \u003cdiv class=\"table_of_contents\"\u003e\n \u003ch2\u003e📋 Table of Contents\u003c/h2\u003e\n \u003cp\u003e\u003ca href=\"#supported_os\"\u003e1. 💻 Compatible Operating Systems\u003c/a\u003e\u003c/p\u003e\n \u003cp\u003e\u003ca href=\"#installation\"\u003e2. 🔨 Installation\u003c/a\u003e\u003c/p\u003e\n \u003cp\u003e\u003ca href=\"#how_to_use\"\u003e3. 📡 How to Use\u003c/a\u003e\u003c/p\u003e\n \u003cp\u003e\u003ca href=\"#code_analysis\"\u003e4. ☑️ Code Analysis\u003c/a\u003e\u003c/p\u003e\n \u003cp\u003e\u003ca href=\"#license\"\u003e5. ©️ License\u003c/a\u003e\u003c/p\u003e\n \u003c/div\u003e\n \u003cbr\u003e\n \u003cdiv id=\"supported_os\"\u003e\n \u003ch2\u003e💻 Supported Operating Systems\u003c/h2\u003e\n \u003ctd\u003e\u003cimg src=\"https://img.shields.io/badge/OS-Linux%20%7C%20WSL%20%7C%20Termux-blue??style=flat\u0026logo=Linux\u0026logoColor=b0c0c0\u0026labelColor=363D44\" alt=\"Operating systems\"/\u003e\u003c/td\u003e\n \u003ctd colspan=\"2\"\u003e\u003cimg src=\"https://img.shields.io/badge/CPU-x86__64%20%7C%20Arm%20-blue?style=flat\u0026logoColor=b0c0c0\u0026labelColor=363D44\" alt=\"CPU Architect\"/\u003e\u003c/td\u003e\n \u003ch4\u003eWe carried out the tests on systems based on Ubuntu, Debian and Termux. We believe it will also work on other systems, such as Fedora and Arch. The installation instructions are for Ubuntu/Debian and Termux only. If you don't know how to install on other operation system, google it.\u003c/h4\u003e\n \u003c/div\u003e\n \u003cbr\u003e\n \u003cdiv id=\"installation\"\u003e\n \u003ch2\u003e🔨 Installation\u003c/h2\u003e\n \u003ch3\u003eInstallation for Debian/Ubuntu\u003c/h3\u003e\n \u003ch5\u003eSystem Update\u003c/h5\u003e\n \u003ccode\u003esudo apt update\u003c/code\u003e\n \u003ch5\u003eInstall Git\u003c/h5\u003e\n \u003ccode\u003esudo apt install -y git\u003c/code\u003e\n \u003ch5\u003eDownload the Repository\u003c/h5\u003e\n \u003ccode\u003egit clone https://github.com/gsociety0/AnonXploit.git\u003c/code\u003e\n \u003ch5\u003eInstall AnonXploit\u003c/h5\u003e\n \u003ccode\u003ebash ./install\u003c/code\u003e\n \u003ch3\u003eInstallation for Termux\u003c/h3\u003e\n \u003ch5\u003eSystem Update\u003c/h5\u003e\n \u003ccode\u003epkg update\u003c/code\u003e\n \u003cbr\u003e\n \u003ccode\u003epkg upgrade -y\u003c/code\u003e\n \u003ch5\u003eInstall Git\u003c/h5\u003e\n \u003ccode\u003epkg install -y git\u003c/code\u003e\n \u003ch5\u003eInstall Python3\u003c/h5\u003e\n \u003ccode\u003epkg install -y python python-pip\u003c/code\u003e\n \u003ch5\u003eDownload the Repository\u003c/h5\u003e\n \u003ccode\u003egit clone https://github.com/gsociety0/AnonXploit.git\u003c/code\u003e\n \u003ch5\u003eInstall AnonXploit\u003c/h5\u003e\n \u003ccode\u003ebash ./install\u003c/code\u003e\n \u003c/div\u003e\n \u003cbr\u003e\n \u003cdiv id=\"how_to_use\"\u003e\n \u003ch2\u003e📡 How to Use\u003c/h2\u003e\n \u003ch4\u003eTo create the RAT you need to run two programs, client.py and server.py. Where the client will automatically create the RAT, and the server will wait for the connection.\u003c/h4\u003e\n \u003ch5\u003eclient.py\u003c/h5\u003e\n \u003ccode\u003epython3 client.py\u003c/code\u003e\n \u003ch5\u003eserver.py\u003c/h5\u003e\n \u003ccode\u003epython3 server.py\u003c/code\u003e\n \u003ch3\u003e🪝 Social Engineering\u003c/h3\u003e\n \u003ch4\u003e(Ethically speaking) You need the other person to perform the RAT, for this, you can use Social Engineering (S.E) techniques. One of the ways that can be used is to convert this file into an Executable (.EXE), name it \"picture.png.exe\", define an icon of a photograph and send it to the person, making it appear that it is a photograph. Now, you study the situation and act in the best way possible.\u003c/h4\u003e\n \u003c/div\u003e\n \u003cbr\u003e\n \u003cdiv id=\"code_analysis\"\u003e\n \u003ch2\u003e☑️ Code Analysis\u003c/h2\u003e\n \u003ch4\u003eIf you check the source code of the two main files (client.py/server.py) of AnonXploit file, you will notice that the code is obfuscated. This is done for security reasons and compatibility with WSL (Windows Subsystem for Linux), where the antivirus detected the files as viruses and deleted them.\u003c/h4\u003e\n \u003ch3\u003e🏛️ RAT Architecture\u003c/h3\u003e\n \u003cimg src=\"./src/img/architecture.png\"\u003e \n \u003cbr\u003e\n \u003ch3\u003e🔬 Virus Total\u003c/h3\u003e\n \u003ch4\u003einstall file:\u003c/h4\u003e\n \u003cimg src=\"./src/img/install.png\"\u003e\n \u003cbr\u003e\n \u003ch4\u003eclient.py file (91% undetectable):\u003c/h4\u003e\n \u003cimg src=\"./src/img/client.png\"\u003e\n \u003cbr\u003e\n \u003ch4\u003eserver.py file:\u003c/h4\u003e\n \u003cimg src=\"./src/img/server.png\"\u003e\n \u003cbr\u003e\n \u003cbr\u003e\n \u003cp\u003e\u003cb\u003eDON'T UPLOAD THE RAT FILE TO VIRUS TOTAL!\u003c/b\u003e\u003c/p\u003e\n \u003ch4\u003eThe RAT bypasses Windows Defender antivirus. \u003cb\u003e(Information verified until 1/28/2024)\u003c/b\u003e\u003c/h4\u003e\n \u003ch4\u003e\"Files and URLs sent to VirusTotal will be shared with antivirus vendors and security companies...\"\u003c/h4\u003e\n \u003ch6\u003eSource: \u003ca href=\"https://en.wikipedia.org/wiki/VirusTotal#Privacy\"\u003eWikipedia\u003c/a\u003e\u003c/h6\u003e\n \u003c/div\u003e\n \u003cbr\u003e\n \u003cdiv id=\"license\"\u003e\n \u003ch2\u003e©️ License\u003c/h2\u003e\n \u003ch4\u003eThis project is licensed under the \u003ca href=\"https://choosealicense.com/licenses/agpl-3.0/\"\u003eGNU Affero General Public License v3.0\u003c/a\u003e\u003c/h4\u003e\n \u003ch4\u003e✅ Permission:\u003c/h4\u003e\n \u003cli\u003ePatent use;\u003c/li\u003e\n \u003cli\u003eCommercial use;\u003c/li\u003e\n \u003cli\u003ePrivate use;\u003c/li\u003e\n \u003cli\u003eDistribution;\u003c/li\u003e\n \u003cli\u003eModification.\u003c/li\u003e\n \u003ch4\u003e✒️ Conditions:\u003c/h4\u003e\n \u003cli\u003eSame license;\u003c/li\u003e\n \u003cli\u003eDisclose source;\u003c/li\u003e\n \u003cli\u003eLicense and copyright notice;\u003c/li\u003e\n \u003cli\u003eNetwork use is distribution;\u003c/li\u003e\n \u003cli\u003eState changes.\u003c/li\u003e\n \u003ch4\u003e⚠️ Limitations:\u003c/h4\u003e\n \u003cli\u003eLiability;\u003c/li\u003e\n \u003cli\u003eWarranty.\u003c/li\u003e\n \u003c/div\u003e\n \u003c/body\u003e\n\u003c/html\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgsociety0%2Fanonxploit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgsociety0%2Fanonxploit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgsociety0%2Fanonxploit/lists"}