Skip to content
/ ReverseShell-C Public

Reverse Shell Malware written in C, for Windows machines - as part of my studies into Cybersecurity and C language

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jpmamededs/ReverseShell-C

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
README.md
README.md
 
 
reverseShell.c
reverseShell.c
 
 
server
server
 
 
serverSide.c
serverSide.c
 
 
shell.exe
shell.exe
 
 

Repository files navigation

Reverse Shell Malware

This project is a reverse shell malware written in C, developed as part of studies in networks and cybersecurity. It allows an attacker to gain remote control of a machine and execute commands on the victim’s terminal.

🚀 How It Works

  1. The attacker starts a listener on the server to wait for connections.
  2. The victim executes the malware, which:
    • Establishes a connection to the server.
    • Redirects the victim’s terminal (cmd.exe) to the created socket.
  3. The attacker gains full remote control of the victim’s machine.

🚨‼️ THIS WAS MADE FOR EDUCATIONAL PURPOSES

🛠️ Requirements

1. Development Environment

  • Operating System: Windows
  • Compiler: GCC (MinGW for Windows)
  • Library: Winsock2 (included by default in Windows)

2. Tools Needed on the Server

  • Netcat (or alternatives like Socat) to create the listener.

📋 Step-by-Step Instructions

1. Set Up the Listener on the Attacker's Server

1.1. Compile and launch the server code.
1.2. Use Netcat to wait for incoming connections from the malware.

2. Execute the Malware on the Victim’s Machine

2.1. Transfer the Malware

  • Move the shell.exe file to the target machine using one of the following methods:
    • USB drive
    • File-sharing platforms
    • Remote upload

2.2. Run the Executable

  • Execute the shell.exe file on the victim’s machine.
  • Once executed, the malware will:
    • Attempt to connect to the attacker’s server using the predefined IP address and port.
    • Establish a reverse shell session, providing remote access to the victim’s terminal.

3. Gain Control of the Victim's Machine

3.1. Establish the Connection

  • Once the victim executes the malware, a reverse shell connection will be established.
  • You can now access the victim’s terminal through Netcat.

3.2. Execute Remote Commands

  • Use the terminal session to remotely execute commands on the victim’s machine.
  • Example commands you can run:
    • File exploration: dir (Windows) or ls (Linux)
    • Download files: Use curl or wget if available.
    • System monitoring: tasklist (Windows) or top (Linux)

🔮 Future Improvements

1. Add Encryption

  • Implement encryption protocols (e.g., AES or RSA) to secure data transfer between the attacker and the victim.
  • Ensure stealthier connections by making traffic less detectable by network monitoring tools.

2. Cross-Platform Compatibility

  • Extend support for other operating systems such as:
    • Linux
    • macOS
  • Refactor the codebase to use platform-independent libraries for socket communication.

3. Firewall/Antivirus Evasion

  • Develop advanced methods to bypass:
    • Firewalls: Use techniques like packet fragmentation or tunneling.
    • Antivirus Detection: Implement techniques such as obfuscation, polymorphic code, or process injection.
Video.1.mov

🚨 That's only a code demonstration of the Malware, I'm not responsible for any misuse of the code and the malware.

About

Reverse Shell Malware written in C, for Windows machines - as part of my studies into Cybersecurity and C language

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages