Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/shipcod3/irc-bot-hunters
a collection of Metasploit PoC exploits I wrote for IRC Botnets that allows RCE
https://github.com/shipcod3/irc-bot-hunters
Last synced: 25 days ago
JSON representation
a collection of Metasploit PoC exploits I wrote for IRC Botnets that allows RCE
- Host: GitHub
- URL: https://github.com/shipcod3/irc-bot-hunters
- Owner: shipcod3
- License: mit
- Created: 2015-04-05T14:02:35.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2023-03-05T11:42:58.000Z (almost 2 years ago)
- Last Synced: 2024-08-04T23:10:58.401Z (4 months ago)
- Language: C
- Homepage: https://rootcon.org/
- Size: 187 KB
- Stars: 76
- Watchers: 7
- Forks: 25
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-security-collection - **43**星
README
# IRC Bot Hunters
a collection of Metasploit PoC exploits I wrote for IRC Botnets that takes over the owner of a bot which then allows Remote Code Execution. Most IRC Botnets can be taken over by using their herders' usernames or by triggering a certain command which does shell execution. Almost all of the modules here have been accepted in the Metasploit repository. If you are looking for C&C exploit modules or pwning backdoors like r57 / c99 shell, I have also made [some modules](https://github.com/rapid7/metasploit-framework/search?utf8=%E2%9C%93&q=jay+turla) which I have pushed in the main msf repository.![image](https://cloud.githubusercontent.com/assets/3483615/9675972/44986a28-52f7-11e5-8c1a-76cabf835cb6.png)
# Accepted Metasploit Modules
w3tw0rk / Pitbul IRC Bot Remote Code Execution - https://www.rapid7.com/db/modules/exploit/multi/misc/w3tw0rk_exec
Legend Perl IRC Bot Remote Code Execution - https://www.rapid7.com/db/modules/exploit/multi/misc/legend_bot_exec
Xdh / LinuxNet Perlbot / fBot IRC Bot Remote Code Execution - https://www.rapid7.com/db/modules/exploit/multi/misc/xdh_x_exec
PHP IRC Bot pbot eval() Remote Code Execution (Credited Only) - https://www.rapid7.com/db/modules/exploit/multi/misc/pbot_exec
# Some References
w3tw0rk / Pitbull Perl IRC Bot Remote Code Execution PoC Exploit - https://www.exploit-db.com/exploits/36652/Legend Perl IRC Bot - Remote Code Execution - https://www.exploit-db.com/exploits/36836/
# Inspiration
- MalwareMustDie!# Request for Metasploit Modules?
Want an IRC bot pwned or you have an exploit for an IRC bot that you want to be ported to msf? Contact me at [email protected]I am always open for suggestions and new modules as long as you give me details and analysis of a new IRC bot in the wild. Save the world from cavities!!!