Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Define the control program's features #14

Open
0xLyte opened this issue Feb 11, 2016 · 2 comments
Open

Define the control program's features #14

0xLyte opened this issue Feb 11, 2016 · 2 comments
Assignees
@0xLyte
Labels
question
Milestone
rkduck v0.1

Comments

@0xLyte
Copy link
Member

0xLyte commented Feb 11, 2016

A program running in userland is used to control the rootkit.
What this program will control needs to be defined.
@0xLyte 0xLyte added this to the rkduck v0.1 milestone Feb 11, 2016
@0xLyte 0xLyte self-assigned this Feb 18, 2016
@mpgn
Copy link
Member

mpgn commented Feb 18, 2016

check #16

0xLyte pushed a commit that referenced this issue Feb 19, 2016
Crumbs - userland program #16 #14
a8ca849 
Crumbs can send commands to a kernel module.
Authentication is needed before issuing commands.
Command line arguments can be parsed
@0xLyte
Copy link
Member Author

0xLyte commented Feb 19, 2016

Current commands :

  • hide a file
  • unhide a file
  • hide a process
  • unhide a process
  • change backdoor mode to shell
  • change backdoor mode to reverse shell
  • activate ssh backdoor
  • deactivate ssh backdoor

Commands to add :

  • change attacker ip (reverse shell)
  • change attacker port (reverse shell)
  • hide user
  • unhide user

Currently, crumbs only work with the command line arguments. A prompt should be added.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@0xLyte 0xLyte

Labels
question
Projects
None yet
Milestone
rkduck v0.1
Development

No branches or pull requests
2 participants
@mpgn @0xLyte