https://github.com/secretsquirrel/backdoor-pyc

Patch pyc files with your code. Fairly lame.
https://github.com/secretsquirrel/backdoor-pyc

Last synced: 7 months ago
JSON representation

Patch pyc files with your code. Fairly lame.

• Host: GitHub
• URL: https://github.com/secretsquirrel/backdoor-pyc
• Owner: secretsquirrel
• Created: 2015-11-09T23:23:50.000Z (over 10 years ago)
• Default Branch: master
• Last Pushed: 2015-11-10T17:10:32.000Z (over 10 years ago)
• Last Synced: 2025-04-14T01:09:11.100Z (about 1 year ago)
• Language: Python
• Homepage:
• Size: 0 Bytes
• Stars: 67
• Watchers: 10
• Forks: 30
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Backdoor-pyc

Replace pyc files with malicious pyc files.

## Change Log

####11/10/2015

* No more writing to tmp, just edit the pyc file directly

* Bug fixes 

## Prior work

	https://www.virusbtn.com/virusbulletin/archive/2011/07/vb201107-reversing-Python#id3072912

	https://github.com/jgeralnik/Pytroj

	http://www.slideshare.net/iamit/infecting-python-bytecode

## Usage

	python27|python3X ./backdoor-pyc27.py -h

	Usage: backdoor-pyc27.py [-h] [-p PATH] [-l NIX] [-w WINDOWS]

	To replace utf_8.pyc with your code...

	optional arguments:

	  -h, --help            show this help message and exit

	  -p PATH, --path PATH  path to utf_8.pyc

	  -l NIX, --nix NIX     payload for nix

	  -w WINDOWS, --windows WINDOWS

	                        payload for windows

	*Make edits to the testing27.py file [HOST]*

	For python27

	python ./backdoor-pyc27.py -l testing27.py -p /usr/lib/python27/encodings/utf_8.py

	For python3.X 

	python3 ./backdoor-pyc3X.py -l testing3X.py -p /usr/lib/python3/rlcompleter.py -v 34  #notice version for python3

## Contributing

Pull requests welcome