lolrip / ak Goto Github PK
View Code? Open in Web Editor NEWExpansion of the original XSCF https://nets.ec/Facebook#Content_Forgery -- macOS, Slack, Facebook, Twitter, Android SMS
Expansion of the original XSCF https://nets.ec/Facebook#Content_Forgery -- macOS, Slack, Facebook, Twitter, Android SMS
rip in packets bha thx d1zzy :^) ==== Introduction ==== AK is a module from the uncompleted, now defunct BHA Assault Kit. It is an XSCF engine: provide it with two sites to clone and a blacklist of user-agents/ips, and it will do the following: 1. clone both sites locally 2. attempt to provide a shortened link to your external IP 3. start a local http server that presents different pages to regular vs. blacklisted users The intended use for this is to create a webserver that lies to preview bots such as the ones Facebook, Twitter, and macOS use, and serves different content to normal users. This means that the preview that the targeted service fetches will be different from what the user actually sees. For more information, please see: https://nets.ec/Facebook#Content_Forgery ==== Configuration ==== BHAAK has three configuration files: ua.cnf ip.cnf ak.cnf ua.cnf should be a list of blacklisted user agents, and ip.cnf should be a list of blacklisted ip addresses. If anything using these user agents or those ip addresses tries to retrieve a page, it will be served the blacklist response. ak.conf is the main config file for BHAAK itself, and contains the following properties: normal_clone this is the site to clone and serve to normal users blacklist_clone this is the site to clone and serve to preview bots api_key this is a goo.gl api key payload this must be either 'None' or the path to a file; if the latter, the file will be appended to the page served to normal users. We have included some fingerprinting JS ftp either 'True' or 'False', decides whether ips of blacklisted user agents are automatically added to ip.conf. This does not work with macOS or iOS (False by default) The clone parameters can either be URLs or links to local files on your system. If they are links, they must be valid links with a http:// or https:// scheme. The api_key is optional, but the daily limit on goo.gl API requests without a key is quite low. Once you are configured, simply run ak47.py and follow the instructions. The IP, blacklist status and time of each connection will be logged to access.log once the server is running. ==== Usage ==== cd ./ak edit ./conf/* edit line 269 in ./payloads/finger.txt sudo python ak47.py sudo netcat -nvlp 9999 send URL to target execute malicious code ==== Tests ==== To test UA blacklist: $ curl 127.0.0.1 this should return the response that normal users will receive $ curl -H "User-Agent: $(head -n 1 conf/ua.cnf)" 127.0.0.1 this should return the response that blacklisted user agents will receive To test IP blacklist: Visit the page in your browser. You should get the page served to normal users. Now add "127.0.0.1" to ip.cnf and refresh. You should now be served the response that blacklisted IPs will receive. [?] Help! The link doesn't work! BHAAK starts an HTTP server on your machine and fetches your external IP, shortening it with goo.gl if it can. If you can't access the webserver by your IP, try disabling your firewall or opening port 80 on your router. All of the normal considerations with setting up a server on Tor or through a proxy or VPN also apply. If you don't understand how a webserver works, you probably shouldn't be using this. ==== To Do ==== add payloads beyond fingerprinting automate listener to catch/parse data extend listener to auto-exploit known vulns inject man in the browser code implement new/automated URL shortening (goo.gl deprecated) better documentation
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.