Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/rmccrystal/rust-remote-access-trojan

A Remote Access Trojan (RAT) system built in Rust
https://github.com/rmccrystal/rust-remote-access-trojan

Last synced: about 2 months ago
JSON representation

A Remote Access Trojan (RAT) system built in Rust

Host: GitHub
URL: https://github.com/rmccrystal/rust-remote-access-trojan
Owner: rmccrystal
Created: 2024-07-08T20:57:30.000Z (6 months ago)
Default Branch: master
Last Pushed: 2024-07-09T19:04:21.000Z (6 months ago)
Last Synced: 2024-07-10T03:02:55.644Z (6 months ago)
Language: Rust
Size: 8.79 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Rust Remote Access Trojan (RAT)

This project implements a Remote Access Trojan (RAT) system in Rust, allowing remote command execution and management of multiple clients.

## Disclaimer and Responsible Use

**IMPORTANT:** This project is for educational and research purposes only. The use of this software for any malicious or unauthorized activities is strictly prohibited and illegal. Always obtain explicit permission before running this software on any system you do not own or have authorization to access.

By using this software, you agree to:
1. Only use it on systems you own or have explicit permission to access.
2. Comply with all applicable laws and regulations.
3. Not use it for any malicious, harmful, or illegal activities.

The authors and contributors of this project are not responsible for any misuse or damage caused by this software.

## Project Structure

The project is organized as a Rust workspace with three main crates:

- `client`: Implements the client-side functionality.
- `server`: Implements the server-side functionality.
- `shared`: Contains shared code used by both client and server.

## Features

- TCP-based communication between clients and server.
- Custom serialization and deserialization for commands and responses.
- Length-prefixed framing protocol for message transmission.
- Server can manage multiple client connections.
- Remote command execution on clients.
- Server-side CLI for managing clients and sending commands.

## Getting Started

### Prerequisites

- Rust and Cargo (latest stable version)

### Building the Project

1. Clone the repository:
```
git clone
cd
```

2. Build the project:
```
cargo build --release
```

### Running the Server

1. Start the server:
```
cargo run --release --bin server
```

2. The server will start listening on `127.0.0.1:4000`.

### Running a Client

1. In a separate terminal, start a client:
```
cargo run --release --bin client
```

2. The client will automatically connect to the server at `localhost:4000`.

## Server CLI Commands

- `clients`: List all connected clients.
- `send `: Send a command to a specific client.
- `send-all `: Send a command to all connected clients.
- `exit`: Shut down the server.

## Implementation Details

### Shared Crate

- Defines `Serialize` and `Deserialize` traits for message encoding/decoding.
- Implements `Framer` trait for sending and receiving data frames.
- Defines `Command` and `Response` enums for client-server communication.
- Implements `LengthDelineated` protocol for message framing.

### Client

- Connects to the server using a TCP stream.
- Listens for commands from the server and executes them.
- Can execute shell commands and print to console.
- Sends execution results back to the server.

### Server

- Manages multiple client connections using threads.
- Provides a CLI for the server operator to manage clients and send commands.
- Handles responses from clients asynchronously.

## Future Improvements

- Implement authentication and encryption for secure communication.
- Add more sophisticated command types and responses.
- Implement error handling and recovery mechanisms.
- Add unit and integration tests.
- Enhance logging and monitoring capabilities.
- Implement additional security measures to prevent misuse.

## Legal and Ethical Considerations

Before using or modifying this software, ensure you understand and comply with all relevant laws and regulations in your jurisdiction. Unauthorized access to computer systems is illegal and unethical. Always prioritize privacy, security, and obtain proper authorization for any penetration testing or security research activities.