• Stars
    star
    143
  • Rank 257,007 (Top 6 %)
  • Language
    Objective-C
  • License
    GNU General Publi...
  • Created over 7 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

iOS & MacOS Remote Administrator Tools (RAT) | The404Hacking

EggShell

About EggShell

EggShell is an iOS and macOS post exploitation surveillance pentest tool written in Python. This tool creates 1 line multi stage payloads that give you a command line session with extra functionality. EggShell gives you the power and convenience of uploading/downloading files, taking pictures, location tracking, shell command execution, persistence, escalating privileges, password retrieval, and much more. Server communication features end to end encryption with 128 bit AES and the ability to handle multiple clients. This is a proof of concept pentest tool, intended for use on machines you own.

For detailed information and howto visit http://lucasjackson.me/eggshell

Follow: @The404Hacking

Creating And Running A Payload

EggShell gives us a convenient 1 line payload and listener on our local machine

On the target machine, after the payload is run, we will get a connection back

Taking Pictures

Eggshell has the command functionality of taking pictures on both iOS(frontcam/backcam) and macOS(picture)

Password Prompt / Root Privileges

With the prompt command, we can have a password pop up information retrieval + built in privilege escalation

Sending SMS through iMessage

Interacting With Multiple Sessions

MultiSession gives us easy access to interacting and managing multiple sessions

Featured

Featured in EverythingApplePro's video demonstrating an iOS 9.3.3 Webkit vulnerability used to run EggShell

EverythingApplePro

DISCLAMER

By using EggShell, you agree to the GNU General Public License v2.0 included in the repository. For more details at http://www.gnu.org/licenses/gpl-2.0.html. Using EggShell for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

Installation

git clone https://github.com/The404Hacking/EggShell-RAT && cd EggShell-RAT
easy_install pycrypto
python eggshell.py

iOS Commands:

  • sysinfo : get system information
  • cd : change directories
  • ls : list contents of directory
  • rm : delete file
  • pwd : get current directory
  • download : download file
  • upload : upload file
  • frontcam : take picture through front camera
  • backcam : take picture through back camera
  • mic : record microphone
  • getpid : get process id
  • vibrate : make device vibrate
  • alert : make alert show up on device
  • say : make device speak
  • locate : get device location
  • respring : respring device
  • setvol : set mediaplayer volume
  • getvol : view mediaplayer volume
  • isplaying : view mediaplayer info
  • openurl : open url on device
  • dial : dial number on device
  • getsms : download sms database
  • getnotes : download notes database
  • getcontacts : download addressbook
  • battery : get battery level
  • listapps : list bundle identifiers
  • open : open app
  • persistence : installs LaunchDaemon - tries to connect every 30 seconds
  • rmpersistence : uninstalls LaunchDaemon
  • open : open app
  • installpro : installs eggshellpro to device

EggShell Pro Commands (iOS)

  • lock : simulate lock button press
  • wake : wake device from sleeping state
  • home : simulate home button press
  • doublehome : simulate home button double press
  • play : plays music
  • pause : pause music
  • next : next track
  • prev : previous track
  • togglemute : programatically toggles silence switch
  • ismuted : check if we are silenced or not
  • islocked : check if device is locked
  • getpasscode : log successfull passcode attempts
  • unlock : unlock with passcode
  • keylog : log keystrokes
  • keylogclear : clear keylog data
  • locationservice: turn on or off location services

macOS Commands

  • cd : change directories
  • ls : list contents of directory
  • rm : delete file
  • pwd : get current directory
  • download : download file
  • upload : upload file
  • getpaste : get pasteboard contents
  • mic : record mic
  • picture : take picture through iSight
  • screenshot : take screenshot
  • getfacebook : retrieve facebook session cookies
  • brightness : adjust screen brightness
  • getvol : get output volume
  • setvol : set output volume
  • idletime : get the amount of time since the keyboard/cursor were touched
  • keyboard : your keyboard -> is target's keyboard
  • imessage : send message through the messages app
  • openurl : open url through the default browser
  • play : tell iTunes to play
  • pause : tell iTunes to pause
  • prev : tell iTunes to play previous track
  • next : tell iTunes to play next track
  • pid : get process id
  • prompt : prompt user to type password
  • su : su login
  • persistence : attempts to connect back every 60 seconds
  • rmpersistence : removes persistence

Local Commands

  • lls : list contents of local directory
  • lcd : change local directories
  • lpwd : get current local directory
  • lopen : open local directory
  • clear : clears terminal

Notes

  • Supports Python 2.7.x
  • Expect Updates :)

The404Hacking | Digital UnderGround Team

The404Hacking

Follow us !

The404Hacking - The404Cracking

Instagram - GitHub

YouTube - Aparat

The404Hacking.BlogSky.Com

More Repositories

1

AndroRAT

AndroRAT | Remote Administrator Tool for Android OS Hacking
Java
807
star
2

websploit

Websploit is an advanced MITM framework.
Python
192
star
3

ZIP-Password-BruteForcer

Zip File Password Cracking with Using Password List !
Python
107
star
4

Windows-Python-RAT

A New Microsoft Windows Remote Administrator Tool [RAT] with Python by Sir.4m1R.
Python
91
star
5

XsSCan

XsSCan | Web Application XSS Scanner | Coded By Sir.4m1R [Mr.Hidden]
Python
61
star
6

BruteSploit

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p
Shell
41
star
7

Infoga

Infoga - Email Information Gathering Script
Python
35
star
8

Instagram-Brute-Forcer

InstaBrute | Using For Brute Force Instagram Account
Python
31
star
9

b374k-mini

PHP Webshell with handy features.
PHP
31
star
10

CyberScan

CyberScan
Python
23
star
11

WordBrutePress

WordBrutePress v1.0 | WordPress Admin Panel Password Cracker [Brute Force]
Python
20
star
12

Hash-Cracker

Python Script for Hash Cracking | Coded By Sir.4m1R
17
star
13

Admin-Page-Finder

Site Admin Page Finder with Python Script | Edited By Sir.4m1R
Python
17
star
14

URLExtractor

Information Gathering & WebSite ReConnaissance.
Shell
14
star
15

CMSmap

CMSmap tool v0.6 - Simple CMS Scanner
Python
12
star
16

Fake-Mail

Fake Mail PHP Script
PHP
11
star
17

sqlmap

Automatic SQL injection and database takeover tool.
Python
11
star
18

Sn1per

Automated Pentest Recon Scanner
PHP
11
star
19

Instagram

Instagram Brute Force Attack !
Python
9
star
20

DSSS

Damn Small SQLi Scanner. (DSSS)
Python
9
star
21

Sudo

Sudo Command for Microsoft Windows
Batchfile
8
star
22

CloudFail

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Python
7
star
23

cupp

CUPP - Common User Passwords Profiler !
Python
7
star
24

CameraDar

CameraDar hacks its way into RTSP CCTV cameras.
7
star
25

FakeMail

Fake Mail PHP Script 2
PHP
6
star
26

wpscan

WPScan is a black box WordPress vulnerability scanner.
Ruby
6
star
27

Hidden-PHP-Uploader

Hidden PHP Uploader [Username:Password]
5
star
28

PubIP

Get Your Public IP Address | Coder: Sir.4m1R
Python
5
star
29

Kali-Apache2

Kali Linux Apache2 Service By Hanieh Panahi
Python
4
star
30

vrn

πŸ‘¨ Code for "Large Pose 3D Face Reconstruction from a Single Image via Direct Volumetric CNN Regression".
MATLAB
4
star
31

randomrepo

Repo for random stuff
3
star
32

the404hacking.github.io

The404Hacking GitHub WebSite
HTML
3
star
33

TabChi

Best TabChi git | Free, Don't Show Ads, Don't Delecting By Telegram, Easy Working !
Lua
3
star
34

sn1per-docker

Dockerized version of Sn1per
Shell
3
star
35

TGSeeD

Best AntiSpam Git Link | Powered By The404Hacking
Lua
2
star
36

edge

C++
2
star
37

MacPhish

Office for Mac Macro Payload Generator
Python
1
star
38

distro

Torch installation in a self-contained folder.
CMake
1
star
39

The404Hacking

Config files for my GitHub profile.
1
star