Still Currently working on the forum design, until I find a perfect design that can sit there for the whole life :p .. Please Bare with us if you see the design change while / after you refresh a page or return ! Sorry for the Inconvenience ~!
Posts : 1 Join date : 2012-08-23 Age : 27 Location : Indore
Subject: A complete guide to RAT Wed Oct 16, 2013 4:21 pm
What is RAT?
RAT stands for Remote Access Tool. It allows to access a system remotely without having physical access to the system. It is basically a service that is available in Windows OS known as remote services. It is used to connect to the network system remotely. Simple Remote Desktop Connection and RADIUS servers are the two common methods of doing this. So we will exploit this service to get unauthorized access. There are many famous tools that allows us to do the following like blackshades, crybergate, cerberus, turkojan etc.
So here we will be discussing about cybergate.
So how will cybergate work?
In cybergate you can create servers (infected exes). If you victim opens this file you will be able to RAT him.
Will the server(infected file) that I create will be picked up by Anti-Virues? Yes, it will be. You will need to crypt is using a crypter or use other methods like Hexing.
Ok so lets get to the practical part:
I. Create No-IP Account:
1) Goto No-IP.com and register and account.
2) Login to your account.
3) Click on this :- https://i.imgur.com/Bzca9mr.jpg
4) Keep the same setting as in the picture. And click on create host.
Pic :- https://i.imgur.com/4RiI6KR.jpg
5) Now goto this page :- http://www.noip.com/downloads.php?page=win
and download the no-ip client.
6) Open the downloaded client and install it.
7) Open the installed No-IP Duc client.
Now give in your login details and you will see the created host.
9) Remove the checkbox and again check it.
Pic :- https://i.imgur.com/9YXR3Tl.jpg
10) Minimize your no-ip duc
Remember you always need to open your no-ip client and click the check box to get smiley whenever you are going to control your RATs.
II. Port Forwarding:
What is Port Forwarding?
Port forwarding or port mapping is the forwarding of a TCP/IP packet in a network address translator gateway to a predetermined network (which will be our No-IP Account).
1) Find out your gateway.
2) Goto Start----> Run
3) Type in "cmd"
4) Now type "ipconfig" and click enter
5) And you will get the gateway IP.
Pic :- https://i.imgur.com/3IUac3y.jpg
6) Now type the gateway IP in your web browser.
7) It will ask for username and password.
You can find your username and password from a sticker behind your router. Most of the time the user and pass will be "admin". 9) After successful login to your router you will be able to see options for port forwarding.
10) Forward port "100" to your local IP.
To check whether port "100" is open.
Goto this link: http://www.canyouseeme.org/
...and type in port 100 and check the result.
III. Creating a server:
1) Close your anti-virus. Since this type of virus/trojan builders are detected by anti-viruses as a false positive.
3) Unrar/Decompress it and open "CyberGate v1.07.5.exe"
4) Wait for 20 seconds untill the disclaimer notice is scrolled over.
5) Click on Control Center and click "Start".
6) A box will pop up. Give the settings: type in the same details (from the top):
Pic :- https://i.imgur.com/sS0RcHH.jpg
then save it.
7) If any Windows Firewall box pops up click "Allow access".
Goto Control Center -----> Builder ----> Create Server.
9) A new box pops up. Click "Add User". Type in a username.
10) Double click the created username.
11) Pic :- https://i.imgur.com/ICvKnm9.jpg
12) Give username: Cyber and password: 123456 click add type-in the NO-iP you created and add ":100" at the end. click OK - this will add it to the DNS list.
13) Follow the picture
14) Select: Bind File,
Bind "..." to setup some file.
Click add after browsing the file you want the virus to be binded.
So you created a server binded to some file!
IV. Crypting the created server:
The server that you created will be detected by lots of anti-viruses. You need to get it FUD (Fully UnDetectable) by crypting it with a crypter or by using other methods like hexing.
I am not going in detail about it on this thread. You could buy a good FUD crypter and crypt your server which will be the easy method.
V. Spread your server:
Now its all set, you need to spread the server.
1. Youtube - YouTube is a video sharing website on which users can upload and share videos, millions of people are online... Now , make a video about a crack , like For Adobe Photoshop , VB.Net , Teamviewer (These were just the examples) or any Games , then get your virus FUD(recommended) and Make a video and post. Now I know alot of people do this , but they don't do 1 thing right. Srreading the video.
How to do this???
GO to https://www.youtube.com/ and click on Videos , then click on Most Viewed , and then choose All Time
Then go to every single video that has alot of views and post this:
Wow look what i found click on my name and watch the video , it will get ur free sh*t etc etc...
Then you will get loads of people infected.
2.Torrents - This is the most effective way. First you need a torrent client, I use uTorrent, because it's the easiest. Once you get your torrent client, Get some fake stuff, like Steam games Keygen or Cracks or w/e and then put them in a .rar file and put the keylogger on it. (BIND IT). Now you gotta create the torrents. Open uTorrent, and then go to File -> Create New Torrent And add your .rar file on it, okay so now trackers are needed...
Then click START SEEDING. Now .. CLick Create -> Save AS... and save anywhere u want After you saved , go to http://www.thepiratebay.org/, Register and upload your torrent
3. Chat Rooms - This is slow but you get adult people (You can get credit cards and paypals from this). First of all , go to any chat room from any of these below:
And then , upload your file to any free file hosting such as sharesend and then go to chat rooms, and start spamming "I am looking for nice person to talk, please have a look at my pictures - my name is and I am 16! Go here and tell me if u like it and wanna talk!
4.Forums - I used to do this when i first started using keyloggers , it was pretty fun actually.
First you go to any gaming forum such as http://www.mpgh.net/ and create a new thread with the name "Free All In One CrossFire HACK" and then post a fake virus scan of ur file and put download link, you will get alot of 12-17 years old kids who play all day RPG games...
5.Impersonating Microsoft - This one doesnt work very well , but you can use this for targeting. First of all go to http://www.passport.net/ and make a @microsoft.co.uk email... then, add someone you want on that msn and tell him : A new virus has been detected , for your safety , we need you to download this file or else your computer may be in danger.
Remember: This is not ethical hacking and none respected hacker will use such methods. However, it's good to know and understand what is RATing and how does it work.
Hope you found it useful!
The Joker Admin
Posts : 182 Join date : 2012-06-11 Age : 33
Subject: LOCKED Fri Oct 18, 2013 9:46 am
Thread will be ( Locked ) until Images are fixed !