https://github.com/elmerikh/darkshell

web based c2 🏴‍☠️
https://github.com/elmerikh/darkshell

c2 c2-infrastructure ethical-hacking ethical-hacking-tools hacker http-c2 http-server http-web-server offensive-security red-team-tools red-teaming web-exploitation website-hacking

Last synced: 2 months ago
JSON representation

web based c2 🏴‍☠️

• Host: GitHub
• URL: https://github.com/elmerikh/darkshell
• Owner: ELMERIKH
• License: gpl-3.0
• Created: 2024-02-04T15:20:56.000Z (over 1 year ago)
• Default Branch: master
• Last Pushed: 2024-08-10T20:09:08.000Z (11 months ago)
• Last Synced: 2024-08-10T21:27:11.707Z (11 months ago)
• Topics: c2, c2-infrastructure, ethical-hacking, ethical-hacking-tools, hacker, http-c2, http-server, http-web-server, offensive-security, red-team-tools, red-teaming, web-exploitation, website-hacking
• Language: JavaScript
• Homepage:
• Size: 228 KB
• Stars: 7
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
![2024-02-07 13_39_44-Window](https://github.com/ELMERIKH/WebHTTPC2/assets/96123439/e4977389-90f6-467b-b96e-fe2ab4476693)

Greetings

-----------------

still in devellopment !!!

this is a simple http or https server that acts as a c2 using http post and get requests to send commands and get results from client(victim machine) 

communication is encrypted and decrypted inside server using rsa both ways

file uploading is encrypted using fernet 

server can be hosted only as mere webservice no need for vps ;)

password for server:

---------------------------

![2024-01-30 11_42_54-TOP-SECRET](https://github.com/ELMERIKH/WebHTTPC2/assets/96123439/0f6faeb5-219f-4a98-8f4c-aff13ba05765)

multiple clients handling :

--------------

![2024-02-07 13_42_28-Window](https://github.com/ELMERIKH/WebHTTPC2/assets/96123439/1d24827c-0212-4dbf-81b2-8e58997e7727)

harvest :

------------------

![2024-02-07 13_40_15-Window](https://github.com/ELMERIKH/WebHTTPC2/assets/96123439/6d77e547-1195-41d6-9668-7bbe175bfabe)

screenshare:

---------------

![2024-02-07 13_43_17-Window](https://github.com/ELMERIKH/WebHTTPC2/assets/96123439/e415570c-3629-4a62-9167-5c9aad6ac2e2)

available commands :

-----------

-any cmd command

-steal : steal cookies,browser passwords,downloads,webhistory..

-screenshare :  (screenshot every 2 sec )

-stopshare : stop screenshare

-screenshot : screenshot screen

-info : get user info and net info, wifi passwords ..

will add more features

setup:

---

git clone https://github.com/ELMERIKH/Darkshell

use rsa.py and fernet.py to generate keys and replace values in the top variables of both server.py and client.py

generate password  hash for server with pass.py

pip install -r requirements.txt

python server.py

DISCLAIMER :

-------------------------------

ME The author takes NO responsibility and/or liability for how you choose to use any of the tools/source code/any files provided. ME The author and anyone affiliated with will not be liable for any losses and/or damages in connection with use of DarkShell. By using DarkShell or any files included, you understand that you are AGREEING TO USE AT YOUR OWN RISK. Once again DarkShell is for EDUCATION and/or RESEARCH purposes ONLY.