{"id":22400956,"url":"https://github.com/samdenty/backdoor-controller","last_synced_at":"2025-10-13T07:15:30.815Z","repository":{"id":95200198,"uuid":"110990656","full_name":"samdenty/backdoor-controller","owner":"samdenty","description":"Masking the Sethc.exe backdoor with an anti-detection system.","archived":false,"fork":false,"pushed_at":"2017-12-16T14:16:30.000Z","size":474,"stargazers_count":29,"open_issues_count":0,"forks_count":13,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-09-28T04:42:06.265Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Batchfile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/samdenty.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2017-11-16T15:47:31.000Z","updated_at":"2025-04-19T18:25:57.000Z","dependencies_parsed_at":"2023-06-26T00:27:18.395Z","dependency_job_id":null,"html_url":"https://github.com/samdenty/backdoor-controller","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/samdenty/backdoor-controller","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/samdenty%2Fbackdoor-controller","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/samdenty%2Fbackdoor-controller/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/samdenty%2Fbackdoor-controller/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/samdenty%2Fbackdoor-controller/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/samdenty","download_url":"https://codeload.github.com/samdenty/backdoor-controller/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/samdenty%2Fbackdoor-controller/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279014113,"owners_count":26085461,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-13T02:00:06.723Z","response_time":61,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-05T08:17:34.301Z","updated_at":"2025-10-13T07:15:30.798Z","avatar_url":"https://github.com/samdenty.png","language":"Batchfile","funding_links":[],"categories":[],"sub_categories":[],"readme":"## What is Backdoor Controller\n\nBackdoor Controller is a `sethc.exe` replacement that attempts to mask the presence of the [well-known backdoor](https://www.raymond.cc/blog/backdoor-reset-administrator-password-add-new-user-windows-7/). If you replace `sethc.exe` with `cmd.exe` (the normal way of installing the backdoor) you can easily tell the system has been comprimised by pressing the \u003ckbd\u003eSHIFT\u003c/kbd\u003e key 5 times.\n\n## What does Backdoor Controller do\n\nBy replacing `sethc.exe` with `backdoor-controller.exe` you'll get numerous advantages, for example:\n\n- If you press the \u003ckbd\u003eSHIFT\u003c/kbd\u003e key 5 times when a user is logged in, the normal sticky keys window will popup (instead of a command prompt window)\n- When you press the \u003ckbd\u003eSHIFT\u003c/kbd\u003e key 5 on the Windows login screen, you'll see a non-suspicious looking window popup\n  - If you select `No` the window will disappear and nothing will happen\n  - If you select `Yes` another window will popup asking you to enter the \"threshold\", in this window you are able to type codes\n    - `cmd` - opens a command prompt window ~ a native CMD.exe process (so you don't face the errors that the old one faces)\n    - `admin` - toggles the creation / deletion of a administrator user account\n    - `uninstall` - uninstalls the backdoor replacing the modified `sethc.exe` with the original\n    - `help` - shows all the available options for Backdoor Controller\n\n## Compiling\n\nIn order to get the native Windows popup dialogs \u0026 convert the batch file to an executable, I used [Bat To Exe Converter](http://www.f2ko.de/en/b2e.php) by [Fatih Kodak](http://www.f2ko.de/en/b2e.php). It's an awesome project, with loads of examples  \u0026 excellent documentation.\n## Screenshots\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/activate.PNG)\n\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/threshold.PNG)\n\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/cmd.PNG)\n\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/admin.PNG)\n\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/admin2.PNG)\n\n![](https://raw.githubusercontent.com/samdenty99/backdoor-controller/master/screenshots/help.PNG)\n\n[![Analytics](https://ga-beacon.appspot.com/UA-85426772-5/backdoor-controller/?pixel)](https://github.com/igrigorik/ga-beacon)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsamdenty%2Fbackdoor-controller","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsamdenty%2Fbackdoor-controller","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsamdenty%2Fbackdoor-controller/lists"}