{"id":13840111,"url":"https://github.com/jafarlihi/serpentine","last_synced_at":"2025-04-05T17:06:53.292Z","repository":{"id":45087345,"uuid":"271259040","full_name":"jafarlihi/serpentine","owner":"jafarlihi","description":"C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends","archived":false,"fork":false,"pushed_at":"2023-04-14T18:03:24.000Z","size":215,"stargazers_count":449,"open_issues_count":3,"forks_count":94,"subscribers_count":25,"default_branch":"master","last_synced_at":"2024-08-05T17:24:43.646Z","etag":null,"topics":["keylogger","penetration-testing","rat","redteam","remote-admin-tool","remote-administration","remote-administration-tool","remote-administrator-tool","windows-rat"],"latest_commit_sha":null,"homepage":"","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jafarlihi.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2020-06-10T11:30:34.000Z","updated_at":"2024-08-03T07:53:45.000Z","dependencies_parsed_at":"2024-04-18T23:35:08.952Z","dependency_job_id":null,"html_url":"https://github.com/jafarlihi/serpentine","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jafarlihi%2Fserpentine","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jafarlihi%2Fserpentine/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jafarlihi%2Fserpentine/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jafarlihi%2Fserpentine/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jafarlihi","download_url":"https://codeload.github.com/jafarlihi/serpentine/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224197398,"owners_count":17271982,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["keylogger","penetration-testing","rat","redteam","remote-admin-tool","remote-administration","remote-administration-tool","remote-administrator-tool","windows-rat"],"created_at":"2024-08-04T17:00:42.103Z","updated_at":"2024-11-12T00:33:30.042Z","avatar_url":"https://github.com/jafarlihi.png","language":"C++","funding_links":[],"categories":["C++","C++ (225)"],"sub_categories":[],"readme":"# serpentine\n\nserpentine is a Windows RAT (Remote Administration Tool) that lets you interact with the clients using a multiplatform RESTful C2 server.\n\nFunctionalities:\n\n- Startup\n\n- Get files\n\n- Put files\n\n- Keylogger (Just get `%APPDATA%/svchost/log` file)\n\n- Reverse shell (Using `netcat` as a client, listen on a port `nc -l -p 5555` and request a reverse shell connection to that port)\n\n- Reverse proxy (Using [`revp`](https://github.com/jafarlihi/revp), upload `revp` to the client and execute it with a reverse shell)\n\n- Take screenshots\n\n- Remote desktop (Using `qtserpentine` frontend) [Work in progress, sending input is still in development]\n\n### Dissection\n`client` directory holds the Windows portion of the RAT made with C++ and Boost.\n\n`server` holds the RESTful server portion made with Java and Spring.\n\n`frontend` can hold any number of frontends that consume the RESTful API, currently holds `goserpentine` terminal client and `qtserpentine` GUI client.\n\n#### Building \u0026 running\nBuild `server` with `mvn package` and then run the JAR with 2 arguments, first being the client-listening port and second the port RESTful API will be served at. Example: `java -jar target/serpentine-0.1.0.jar 2222 8080`\n\nBuild `client` with Visual Studio and also include Boost libraries: https://www.boost.org/doc/libs/1_73_0/more/getting_started/windows.html\nChange `client` settings in `config.h`.\n\nBuild `goserpentine` `frontend` with `go build` and run the resulting executable to see the list of options.\n\nBuild `qtserpentine` by installing Qt Creator and building through that. Provide `QTSERPENTINE_API_ADDRESS` environment variable that points to the API server.\n\n#### API\n(To learn more about the endpoints and input parameters check the controllers in server code)\n\n`/client` GET --\u003e Returns list of currently connected clients (clients that pinged in the last 10 seconds)\n\n`/client` POST --\u003e Changes name associated with a client\n\n`/file/{client}` POST --\u003e Fetches a file from a client\n\n`/file/{client}` PUT --\u003e Uploads a file to a client\n\n`/shell/{client}` POST --\u003e Makes a client initiate a reverse shell connection\n\n`/desktop/{client}` GET --\u003e Takes and fetches a screenshot\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjafarlihi%2Fserpentine","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjafarlihi%2Fserpentine","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjafarlihi%2Fserpentine/lists"}