OK, In my last Tutorial we made a Server for sending Instructions to a Client. This time we will build the Client. Fire up your favourite Python environment and get the Code here.
-socket is again for the connection
-time is for pausing the Client (You will see later why)
-random is for getting random things. This time we want some random integers (Again you will see later why)
-lHost is the Variable, where you have to put in your own IP. If you test the whole RAT on the same Computer (Server and Client running there) then you have to just leave the field blank.
-Port is again the Variable where you can change the connection port (Both Ports have to be the same in Server Code and Client Code)
This time we have 2 Functions.
-send(msg) This Function encodes the argument given with UTF-8 and then sends it to the Server
-getInstructions() is the Heart of our Client. This Function receives the messages from the Server and then check them for keywords like 'test'. Test is the first added "feature" of this RAT. It sends only a response to the Server saying that it's working. Here is the place to add features for yourself, like a shutdown, dowload or even a shell. Be creative and try different ideas.
The first 2 Lines sets up a ready Connection. The while-statement repeats a try to connect to the Server IP as long as it can't etablish a Connection. Here is the point, where I used random to generate a random waiting time between the tries of connecting to the Server. I thought that every random thing in this makes it harder to identify the RAT, but this could be rubbish. After the Connection is etablished the getInstructions Function is started and the Client is ready for receiving your Commands ;)
At this Point I say again, that this RAT is unstable and unfinished. You can use it at your own Risk, but I think you should just use it for researching purposes. Here you can see a simple Structure, which can be used in your own simple RAT. If you want to write your own, I also recommend to use another language like C or Rust. Python is not very useful for things like this. Have fun editing and testing the Code, you have all rights to use and share this, but I prefer to get a reference or something ;)
Want to help support Null Byte and start making your own money as a white hat hacker? Jump start your White-Hat Hacking career with our 2020 Premium Ethical Hacking Certification Training Bundle from the new Null Byte Shop and get over 60 hours of training from Ethical Hacking Professionals.