This post is by a banned member (Aachen) - Unhide
OP 08 August, 2021 - 12:45 AM
Reply
This post is by a banned member (PatReeks) - Unhide
12 August, 2021 - 09:23 PM
Reply
(16 July, 2021 - 01:13 PM)YouNeverSawMe Wrote: Show MoreByob BuildYourOwnBotnet
Byob BuildYourOwnBotnet Web GUIDashboardA control panel for your C2 server with a point-and-click interface for executing post-exploitation modules. The control panel includes an interactive map of client machines and a dashboard which allows efficient, intuitive administration of client machines.
![[Image: preview-dashboard.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fgithub.com%2Fmalwaredllc%2Fbyob%2Fraw%2Fmaster%2Fweb-gui%2Fbuildyourownbotnet%2Fassets%2Fimages%2Fpreviews%2Fpreview-dashboard.png) Payload GeneratorThe payload generator uses black magic involving Docker containers & Wine servers to compile executable payloads for any platform/architecture you select. These payloads spawn reverse TCP shells with communication over the network encrypted via AES-256 after generating a secure symmetric key using the Diffie-Hellman IKE.
![[Image: preview-payloads2.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fgithub.com%2Fmalwaredllc%2Fbyob%2Fraw%2Fmaster%2Fweb-gui%2Fbuildyourownbotnet%2Fassets%2Fimages%2Fpreviews%2Fpreview-payloads2.png) Terminal EmulatorThe web app includes an in-browser terminal emulator so you can still have direct shell access even when using the web GUI.
![[Image: preview-shell.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fgithub.com%2Fmalwaredllc%2Fbyob%2Fraw%2Fmaster%2Fweb-gui%2Fbuildyourownbotnet%2Fassets%2Fimages%2Fpreviews%2Fpreview-shell.png) Console ApplicationClientGenerate fully-undetectable clients with staged payloads, remote imports, and unlimited post-exploitation modules
Remote Imports: remotely import third-party packages from the server without writing them to the disk or downloading/installing them
Nothing Written To The Disk: clients never write anything to the disk - not even temporary files (zero IO system calls are made) because remote imports allow arbitrary code to be dynamically loaded into memory and directly imported into the currently running process
Zero Dependencies (Not Even Python Itself): client runs with just the python standard library, remotely imports any non-standard packages/modules from the server, and can be compiled with a standalone python interpreter into a portable binary executable formatted for any platform/architecture, allowing it to run on anything, even when Python itself is missing on the target host
Add New Features With Just 1 Click: any python script, module, or package you copy to the
directory automatically becomes remotely importable & directly usable by every client while your command & control server is running
Write Your Own Modules: a basic module template is provided in
directory to make writing your own modules a straight-forward, hassle-free process
Run Unlimited Modules Without Bloating File Size: use remote imports to add unlimited features without adding a single byte to the client's file size
Fully Updatable: each client will periodically check the server for new content available for remote import, and will dynamically update its in-memory resources if anything has been added/removed
Platform Independent: everything is written in Python (a platform-agnostic language) and the clients generated can optionally be compiled into a portable executable (Windows) or bundled into a standalone application (macOS)
Bypass Firewalls: clients connect to the command & control server via reverse TCP connections, which will bypass most firewalls because the default filter configurations primarily block incoming connections
Counter-Measure Against Antivirus: avoids being analyzed by antivirus by blocking processes with names of known antivirus products from spawning
Encrypt Payloads To Prevent Analysis: the main client payload is encrypted with a random 256-bit key which exists solely in the payload stager which is generated along with it
Prevent Reverse-Engineering: by default, clients will abort execution if a virtual machine or sandbox is detectedModulesPost-exploitation modules that are remotely importable by clients
Persistence (
Code: byob.modules.persistence
Code: yob.modules.packetsniffer
Code: byob.modules.escalate
Code: byob.modules.portscanner
Code: byob.modules.keylogger
Code: byob.modules.screenshot
Code: byob.modules.outlook
Code: byob.modules.process
Code: byob.core.generators
thank you dude
This post is by a banned member (akakw453) - Unhide
22 August, 2021 - 09:57 AM
Reply
This post is by a banned member (thepaperman) - Unhide
26 August, 2021 - 12:39 AM
Reply
(16 July, 2021 - 01:13 PM)YouNeverSawMe Wrote: Show MoreByob BuildYourOwnBotnet
Byob BuildYourOwnBotnet Web GUIDashboardA control panel for your C2 server with a point-and-click interface for executing post-exploitation modules. The control panel includes an interactive map of client machines and a dashboard which allows efficient, intuitive administration of client machines.
Payload GeneratorThe payload generator uses black magic involving Docker containers & Wine servers to compile executable payloads for any platform/architecture you select. These payloads spawn reverse TCP shells with communication over the network encrypted via AES-256 after generating a secure symmetric key using the Diffie-Hellman IKE.
Terminal EmulatorThe web app includes an in-browser terminal emulator so you can still have direct shell access even when using the web GUI.
Console ApplicationClientGenerate fully-undetectable clients with staged payloads, remote imports, and unlimited post-exploitation modules
Remote Imports: remotely import third-party packages from the server without writing them to the disk or downloading/installing them
Nothing Written To The Disk: clients never write anything to the disk - not even temporary files (zero IO system calls are made) because remote imports allow arbitrary code to be dynamically loaded into memory and directly imported into the currently running process
Zero Dependencies (Not Even Python Itself): client runs with just the python standard library, remotely imports any non-standard packages/modules from the server, and can be compiled with a standalone python interpreter into a portable binary executable formatted for any platform/architecture, allowing it to run on anything, even when Python itself is missing on the target host
Add New Features With Just 1 Click: any python script, module, or package you copy to the
directory automatically becomes remotely importable & directly usable by every client while your command & control server is running
Write Your Own Modules: a basic module template is provided in
directory to make writing your own modules a straight-forward, hassle-free process
Run Unlimited Modules Without Bloating File Size: use remote imports to add unlimited features without adding a single byte to the client's file size
Fully Updatable: each client will periodically check the server for new content available for remote import, and will dynamically update its in-memory resources if anything has been added/removed
Platform Independent: everything is written in Python (a platform-agnostic language) and the clients generated can optionally be compiled into a portable executable (Windows) or bundled into a standalone application (macOS)
Bypass Firewalls: clients connect to the command & control server via reverse TCP connections, which will bypass most firewalls because the default filter configurations primarily block incoming connections
Counter-Measure Against Antivirus: avoids being analyzed by antivirus by blocking processes with names of known antivirus products from spawning
Encrypt Payloads To Prevent Analysis: the main client payload is encrypted with a random 256-bit key which exists solely in the payload stager which is generated along with it
Prevent Reverse-Engineering: by default, clients will abort execution if a virtual machine or sandbox is detectedModulesPost-exploitation modules that are remotely importable by clients
Persistence (
Code: byob.modules.persistence
Code: yob.modules.packetsniffer
Code: byob.modules.escalate
Code: byob.modules.portscanner
Code: byob.modules.keylogger
Code: byob.modules.screenshot
Code: byob.modules.outlook
Code: byob.modules.process
Code: byob.core.generators
ill test it out
This post is by a banned member (jazda) - Unhide
29 August, 2021 - 12:39 AM
Reply
This post is by a banned member (PaarraKanker) - Unhide
18 September, 2021 - 01:29 AM
Reply
This post is by a banned member (MrrBossMan) - Unhide
18 September, 2021 - 11:21 AM
Reply
Thanks for this hope it goes well
This post is by a banned member (Spamg0d) - Unhide
19 September, 2021 - 05:13 PM
Reply
|
![[Image: preview-dashboard.png]](https://github.com/malwaredllc/byob/blob/master/web-gui/buildyourownbotnet/assets/images/previews/preview-dashboard.png)
![[Image: preview-payloads2.png]](https://github.com/malwaredllc/byob/blob/master/web-gui/buildyourownbotnet/assets/images/previews/preview-payloads2.png)
![[Image: preview-shell.png]](https://github.com/malwaredllc/byob/blob/master/web-gui/buildyourownbotnet/assets/images/previews/preview-shell.png)
