Hey guys, I've one question. How can I see configuration on a created Darkcomet server file so I can see which ip the server is accessing (attackers ip)?
Forum Thread: Darkcomet Server Disassembly
- Hot
- Active
-
Forum Thread:
Tools for Beginner Hacker
2
Replies
2 hrs ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
17
Replies
13 hrs ago -
Forum Thread:
How to Use Exploits Written in C Code
6
Replies
2 days ago -
Forum Thread:
How to Hack My College Website ?
20
Replies
4 days ago -
Forum Thread:
Problems with Internet Connection in Kali Linux After Changing to Static Ip Address
4
Replies
5 days ago -
Forum Thread:
SQL INJECTION
5
Replies
1 wk ago -
Forum Thread:
Popcorntime Alternative?
4
Replies
1 wk ago -
Forum Thread:
How Does Someone Attack Account by Just Having Their @Username ? The Application Is Kik!
7
Replies
1 wk ago -
Forum Thread:
I Need Help in Hacking a Gmail Account.
25
Replies
1 wk ago -
Forum Thread:
Whatsapp Hack?
19
Replies
1 wk ago -
Forum Thread:
HACKING GMAIL
3
Replies
1 wk ago -
Forum Thread:
I Need Your Response for a Homework Assignment.
7
Replies
1 wk ago -
Introduction:
Cffe
1
Replies
2 wks ago -
Forum Thread:
How to View Your Child's What's App And Many More!
3
Replies
3 wks ago -
Forum Thread:
Can some help me how to hack into a FB account to that was hacked. Trying to get a friends account back. Cheers.
6
Replies
3 wks ago -
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
13
Replies
3 wks ago -
Forum Thread:
Eml to PST Conversion
10
Replies
3 wks ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
1 mo ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
47
Replies
1 mo ago -
Forum Thread:
Parrot Security Os Problem......
15
Replies
1 mo ago
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Easily Detect CVEs with Nmap Scripts
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Detect Script-Kiddie Wi-Fi Jamming with Wireshark
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
Hack Like a Pro:
How to Crack Online Passwords with Tamper Data & THC Hydra
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Scan Websites for Interesting Directories & Files with Gobuster
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
-
How To:
Create Custom Wordlists for Password Cracking Using the Mentalist
-
How To:
Use Ettercap to Intercept Passwords with ARP Spoofing
2 Responses
I don't know how to get via static analisys, but you can always set up a VM, sniff the traffic and run the server. You will get where it connects to.
Some rats have hardcoded values, so if you can make another server yourself and compare the two files, you will get the custom config offset, but if your sample is packed or modified, that won't work. In any case, first tip will likely get the attackers IP for any kind of bot.
using ettercap worked! Thanks!
Share Your Thoughts