Thursday, September 22, 2022
HomeHackerAV Evading OSX Backdoor And Crypter Framework

AV Evading OSX Backdoor And Crypter Framework




OSripper is a completely undetectable Backdoor generator and Crypter which specialises in OSX M1 malware. It can additionally work on home windows however for now there is no such thing as a assist for it and it IS NOT FUD for home windows (but at the least) and for now i cannot concentrate on home windows.

You may as well PM me on discord for assist or to ask for brand spanking new options SubGlitch1#2983


Options

  • FUD (for macOS)
  • Cloacks as an official app (Microsoft, ExpressVPN and so forth)
  • Dumps; Sys information, Browser Historical past, Logins, ssh/aws/azure/gcloud creds, clipboard content material, native customers and so forth. (extra on Cedric Owens swiftbelt)
  • Encrypted communications
  • Rootkit-like Behaviour
  • Each Backdoor generated is solely distinctive

Description

Please verify the wiki for data on how OSRipper features (which modifications extraordinarily regularly)

https://github.com/SubGlitch1/OSRipper/wiki

Listed below are instance backdoors which had been generated with OSRipper

 macOS .apps will appear like this on vt

Getting Began

Dependencies

You want python. If you don’t want to obtain python you may obtain a compiled launch.
The python dependencies are specified within the necessities.txt file.

Since Model 1.4 you have to metasploit put in and on path in order that it may well deal with the meterpreter listeners.

Putting in

Linux

apt set up git python -y
git clone https://github.com/SubGlitch1/OSRipper.git
cd OSRipper
pip3 set up -r necessities.txt

Home windows

git clone https://github.com/SubGlitch1/OSRipper.git
cd OSRipper
pip3 set up -r necessities.txt

or obtain the most recent launch from https://github.com/SubGlitch1/OSRipper/releases/tag/v0.2.3

Executing program

Solely this

Contributing

Please be happy to fork and open pull repuests. Solutions/critisizm are appreciated as nicely

Roadmap

v0.1

  • ✅Get down detection to 0/26 on antiscan.me

  • ✅Add Changelog

  • ✅Daemonise Backdoor

  • ✅Add Crypter

  • ✅Add Extra Backdoor templates

  • ✅Get down detection to at the least 0/68 on VT (for mac malware)

v0.2

v0.3

Coming quickly

Assist

Simply open a subject and in poor health make sure that to get again to you

Changelog

  • 0.2.1

    • OSRipper will now pull all data from the Goal and ship them to the c2 server over sockets. This contains data like browser historical past, passwords, system data, keys and and so forth.
  • 0.1.6

    • Proccess will now trojanise itself as com.apple.system.monitor and drop to /Customers/Shared
  • 0.1.5

  • 0.1.4

  • 0.1.3

    • Received detection on VT all the way down to 0. Made the Proccess invisible
  • 0.1.2

    • Added third module and listener
  • 0.1.1

License

MIT

Acknowledgments

Inspiration, code snippets, and so forth.

Help

I’m very sorry to even write this right here however my funds should not wanting good proper now.
If you happen to recognize my work i’d actually be comfortable about any donation. You do NOT need to that is solely optionally available

BTC: 1LTq6rarb13Qr9j37176p3R9eGnp5WZJ9T

Disclaimer

I’m not accountable for what is completed with this challenge. This software is solely written to be studied by different safety researchers to see how straightforward it’s to develop macOS malware.



RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -
Google search engine

Most Popular

Recent Comments