Zer0Byte

Geekiest Techno News

WeBaCoo: Web Backdoor Cookie


WeBaCoo (Web Backdoor Cookie) is a web backdoor script-kit, aiming to provide a stealth terminal-like connection over HTTP between client and web server. It is a post exploitation tool capable to maintain access to a compromised web server. WeBaCoo was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and Application Firewalls, proving a stealth mechanism to execute system commands to the compromised server. The obfuscated communication is accomplished using HTTP header’s Cookie fields under valid client HTTP requests and relative web server’s responses.

 

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
 _    _     ______       _____
| |  | |    | ___ \     /  __ \
| |  | | ___| |_/ / __ _| /  \/ ___   ___
| |/\| |/ _ \ ___ \/ _` | |    / _ \ / _ \
\  /\  /  __/ |_/ / (_| | \__/\ (_) | (_) |
 \/  \/ \___\____/ \__,_|\____/\___/ \___/ 

     Web Backdoor Cookie Script-Kit
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Written by: Anestis Bechtsoudis @ bechtsoudis.com
Copyright (C) 2011 Anestis Bechtsoudis

Disclaimer
==========
The tool is only for testing purposes and can only be used where strict consent has been given. Do not use it for illegal purposes.

License
=======
Any modifications, changes, or alterations to this application is acceptable, however, any public releases utilizing this code must be approved by its creator. Check the LICENSE file for more information.

Requirements
============
* liburi-perl
* libio-socket-socks-perl

Download WebaCoo

Related Links


 

Categories: TOP NEWS, Web Apps

Comments

  1. […] was designed to operate under the radar of modern up-to-dated AV, NIDS, IPS, Network Firewalls and  [ Read More ] Read More This entry was posted in All and tagged access, aiming, backdoor, between, capable, […]