blazeinfosec/bt2 blazeinfosec/bt2

  • Stars
    star
    194
  • Rank 199,078 (Top 4 %)
  • Language
    Python
  • License
    Apache License 2.0
  • Created over 8 years ago
  • Updated about 6 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
blazeinfosec/bt2
github

blazeinfosec

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Blaze Telegram Backdoor Toolkit is a post-exploitation tool that leverages the infrastructure of Telegram as a C&C

bt2: Blaze Telegram Backdoor Toolkit

bt2 is a Python-based backdoor in form of a IM bot that uses the infrastructure and the feature-rich bot API provided by Telegram, slightly repurposing its communication platform to act as a C&C.

Dependencies

Installation

$ sudo pip install telepot
$ sudo pip install requests

PS: Telepot requires minimum of requests 2.9.1 to work properly.

Limitations

Currently the shellcode execution component is dependent on ctypes and works only on Windows platforms.

Usage

Before using this code one has to register a bot with Telegram. This can be done by talking to Botfather - after setting up the name for the bot and username you will get a key that will be used to interact with the bot API.

For more information see Telegram bots: an introduction for developers

Also, it is highly advisable to replace 'botmaster ID' with the ID of the master, locking the communication between the bot to the specific ID of the botmaster to avoid abuse from unauthorized parties.

$ python bt2.py

Sample screenshot

Resources

We published a blog post with a few more details on command and control platforms and how to use the tool: https://blog.blazeinfosec.com/bt2-leveraging-telegram-as-a-command-control-platform/

Disclaimer

bt2 is a mere proof of concept and by no means intends to breach the terms and conditions of Telegram. It was developed for usage in legitimate penetration testing engagements and neither the author nor Blaze Information Security can be liable for any malicious use of the tool.

Known bugs

  • After launching a reverse shell and exiting from it, all commands sent to the bot have duplicate responses.
  • The 'kill' functionality is not working as it should.
  • After successful execution of shellcode, the bot dies. Upon return it fetches the previous messages from the server and executes the shellcode again. Need to find a way to avoid fetching of previous messages.

Author

  • Julio Cesar Fort - julio at blazeinfosec dot com
  • Twitter: @juliocesarfort / @blazeinfosec

License

This project is licensed under the Apache License - see the LICENSE file for details.

More Repositories

1

pcrappyfuzzer

Script to perform quick 'n dirty fuzzing of PCAPs with radamsa and Scapy.
Python
168
star
2

ssrf-ntlm

Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.
Python
56
star
3

CVE-2017-10366_peoplesoft

CVE-2017-10366: Oracle PeopleSoft 8.54, 8.55, 8.56 Java deserialization exploit
Python
27
star
4

aslrekt

ASLREKT is a proof of concept for an unfixed generic local ASLR bypass in Linux.
C
24
star
5

webshotter

A very simple Python script to take screenshots of websites
Python
17
star
6

Flame

Flame - Send vulnerabilities reports to SIEM
Ruby
15
star
7

detect-kippo-cowrie

Proof of concept written in Python to detect Kippo and Cowrie SSH honeypots.
Python
8
star
8

nuclei-templates

Nuclei templates written by Blaze Information Security
7
star
9

advisories

Public security advisories released by the consultants of Blaze Information Security
7
star
10

public-reports

Reports of public audits performed by Blaze Information Security
7
star
11

burpbounty-profiles

Public Burp Bounty profiles
BlitzBasic
6
star
12

ActiveEvent

ActiveEvent is a Burp plugin that integrates Burp Scanner and Splunk events
Ruby
5
star
13

presentations

Public presentations given by the engineers and consultants of Blaze Information Security
1
star
14

analyze-secheaders

HTTP Security Headers Analyzer
Python
1
star
15

compliance-pentest

Repository for information regarding pentesting for compliance requirements
1
star