Ares是一款Python编写的远程访问工具。Ares由两部分主要程序组成:C&C服务器和客户端,C&C服务器是管理客户端代理的web界面,客户端需要运行在被入侵的主机上,并且确保能够与C&C服务器通信。
![]()
安装
git clone https://github.com/sweetsoftware/Ares.gitcd Aresls
安装Python要求
pip install -r requirements.txt
初始化数据库:
cd server
./ares.py initdb
要在Linux上编译Windows代理,请设置wine(可选):
./wine_setup.sh
服务器
使用内置(调试)服务器运行:
./ares.py runserver -h 0.0.0.0 -p 8080 --threaded
或使用gunicorn运行:
gunicorn ares:app -b 0.0.0.0:8080 --threads 20
现在可以在http:// localhost:8080上访问服务器
代理
运行Python代理(更新config.py以满足您的需求):
cd agent
./agent.py
为独立二进制文件构建新代理程序:
./builder.py -p Linux --server http://localhost:8080 -o agent
./agent
命令
要查看支持的选项列表,请运行./builder.py -h
./agent/builder.py -h
usage: builder.py [-h] -p PLATFORM --server SERVER -o OUTPUT
[--hello-interval HELLO_INTERVAL] [--idle_time IDLE_TIME]
[--max_failed_connections MAX_FAILED_CONNECTIONS]
[--persistent]
Builds an Ares agent.
optional arguments:
-h, --help show this help message and exit
-p PLATFORM, --platform PLATFORM
Target platform (Windows, Linux).
--server SERVER Address of the CnC server (e.g http://localhost:8080).
-o OUTPUT, --output OUTPUT
Output file name.
--hello-interval HELLO_INTERVAL
Delay (in seconds) between each request to the CnC.
--idle_time IDLE_TIME
Inactivity time (in seconds) after which to go idle.
In idle mode, the agent pulls commands less often
(every seconds).
--max_failed_connections MAX_FAILED_CONNECTIONS
The agent will self destruct if no contact with the
CnC can be made times in a
row.
--persistent Automatically install the agent on first run.
文章来源及下载:
https://github.com/sweetsoftware/Ares
![]()
你可能喜欢
Apache日志实时分析工具:ARTLAS
Umap2:开源USB host安全评估工具
Kali Linux中前十名的Wifi攻击工具
|
|
转播
