Comments (5)
./client.py --encrypt --compress W.X.Y.Z 80
./server.py --port 80
DEBUG:main:[*] Searching http://W.X.Y.Z:81
Somethings not right here. Please update when you've decided on a port.
from byob.
@BrandonFanti The output you're seeing is correct, the server lists on PORT, it hosts post-exploitation modules on PORT+1, hosts packages/libraries on PORT+2, and handles file uploads via incoming HTTP POST requests on PORT+3.
from byob.
Hello @malwaredllc ! Thanks for your work, and apologies if I am posting this in the wrong place; this is my first time ever reporting an issue on GitHub. I am experiencing more or less the same issue that Almazys was, and #124 did not appear to fix it for me. Here's a screenshot of the error I am having:
(I've redacted sensitive information)
Here's some background:
- I am building the client executable and serving the client on a Windows 10 virtual machine.
- This error occurs for me whether I run the --freeze executable or just straight python script.
- I have tested trying to use a separate virtual machine as the server, including trying to use a Linux machine (I move the stager/payload to the appropriate directories). The error is the same no matter what server I use.
- I have tested the client/server combo in BOTH python 2.7 and python 3.6 - I get the same error.
- From the inspection I did of server.py, it appears that the header being received by the server is not long enough (it seems to be empty to me).
Thanks for any insight!
from byob.
Hello again, @malwaredllc! I spent some time debugging my issue, and I was actually able to resolve it. Turns out, my issue was due to the fact that my virtual machine exists in an air-gapped network. This was a problem because when the payload attempts to create a C2 connection with the server, it tries to contact an external IP to retrieve geolocation information. The malware can't even get DNS information for that hostname, so it just fails.
The following lines of code were the issue. After commenting them out, I was able to successfully create a C2 connection.
[_get_info(self) - lines 1389-1392]
\# add geolocation of host machine latitude, longitude = globals()['geolocation']() info['latitude'] = "_b64__" + base64.b64encode(latitude.encode('utf-8')).decode('ascii') info['longitude'] = "_b64__" + base64.b64encode(longitude.encode('utf-8')).decode('ascii')
To make a short story long, I tried running the malware as a python file instead of the executable, and I received this error:
Eventually I found the geolocation code in the payload file and was able to remove it.
from byob.
@tdb1192 Good catch! I will add some handling for this in client payload initialization to prevent it from simply failing.
from byob.
Related Issues (20)
- How to add x64 support? HOT 2
- unable to locate directory containing user-installed packages HOT 3
- Navigate to http://127.0.0.1:5000 and set up your user to get started. Traceback (most recent call last): File "/home/kali/byob/web-gui/run.py", line 1, in <module> from buildyourownbotnet import create_app File "/home/kali/byob/web-gui/buildyourownbotnet/__init__.py", line 16, in <module> from buildyourownbotnet import client, server File "/home/kali/byob/web-gui/buildyourownbotnet/server.py", line 32, in <module> from .models import db File "/home/kali/byob/web-gui/buildyourownbotnet/models.py", line 2, in <module> from flask_bcrypt import Bcrypt ModuleNotFoundError: No module named 'flask_bcrypt' HOT 17
- Always asked reboot HOT 1
- Windows executable isn't generating
- No module named 'flask' HOT 12
- How to run python script? HOT 5
- Cant create second user HOT 3
- stager download link not working HOT 1
- mac os run ???? HOT 2
- unable to locate directory containing user-installed packages HOT 4
- Does anyone know how to fix the "unable to create an executable" error HOT 1
- Can't create Windows exe x32 payload HOT 3
- Payload installed not as .exe HOT 2
- i have error on this byob please give me solution HOT 3
- Run error HOT 2
- having problems with run.py HOT 9
- Flask Issue and http://127.0.0.1:5000 cannot open. HOT 9
- unable to locate directory containing user-installed packages
- cant run run.py please help me i am beging to you please HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from byob.