update v1.0.8

Fadi002 · Mar 16, 2024 · a0bded2 · a0bded2
1 parent 8eb9dd8
commit a0bded2
Show file tree

Hide file tree

Showing 67 changed files with 1,089 additions and 114 deletions.
diff --git a/GUI/index.html b/GUI/index.html
@@ -58,6 +58,10 @@ <h1> Output: <button onclick="document.getElementById('outputwinapihooks').selec
           <label for="SSL">Dump OpenSSL Encrypted traffic:</label>
           <input type="checkbox" id="SSLBOX">
         </div>
+        <div class="checkbox-container">
+          <label for="PYCDUMB">PYC dumper:</label>
+          <input type="checkbox" id="PYCDUMB">
+        </div>
         <br>
         <button class="btns" onclick="navto('pyshell')">Back to PyShell menu</button>
       </div>
@@ -104,7 +108,10 @@ <h1>De4py pyshell</h1>
         <div class="frame" style="position: absolute; top: 120px; left: 50px; width: 350px; height: 85px;">
           <label for="pidinput">Target pid:</label>
           <input type="text" id="pidinput" class="custom-input">
-          <button style="margin-top: 15px;margin-left:120px;" class="btns" onclick="injectpyshell()">Inject</button>
+          <div style="text-align: center;">
+            <button style="margin-top: 15px; margin-left: 10px;" class="btns" onclick="injectpyshell('normal')">Inject</button>
+            <button style="margin-top: 15px; margin-left: 10px;" class="btns" onclick="injectpyshell('stealth')">Stealth Inject</button>
+        </div>        
         </div>
         <div class="frame" style="position: absolute; top: 270px; left: 50px; width: 890px; height: 240px; padding:0px;">
           <h1 style="margin-left:390px;">Commands</h1>

diff --git a/GUI/js/scripts.js b/GUI/js/scripts.js
@@ -9,6 +9,19 @@ setTimeout(showMenu, 2000);
 
 eel.expose(dead_process);
 
+function generateRandomString(length) {
+    var result = '';
+    var characters = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
+    for (var i = 0; i < length; i++) {
+        result += characters.charAt(Math.floor(Math.random() * characters.length));
+    }
+    return result;
+}
+
+async function change_title() {
+    document.title = generateRandomString(Math.floor(Math.random() * (30 - 10 + 1)) + 10);
+}
+
 function dead_process() {
     injected = false;
     analyzer_handle = false;
@@ -17,6 +30,7 @@ function dead_process() {
     MCBOX.checked = false
     MCDUMPBOX.checked = false
     SSLBOX.checked = false
+    PYCDUMB.checked = false
     navto("pyshell")
     createnotification("warning", "Process crashed/died/killed");
 }
@@ -56,6 +70,7 @@ async function exec_command(command) {
             MCBOX.checked = false
             MCDUMPBOX.checked = false
             SSLBOX.checked = false
+            PYCDUMB.checked = false
             if (eel.write_to_pipe(command)) {
                 createnotification("success", "Command executed");
             }
@@ -184,7 +199,7 @@ function createnotification(type, message) {
     }, 5000);
 }
 
-async function injectpyshell() {
+async function injectpyshell(typeinject) {
     const loadingspin = document.getElementById('loading-spin');
     const loadingSpinner = document.getElementById('loading-spinner');
     const pidinput = document.getElementById("pidinput");
@@ -195,15 +210,27 @@ async function injectpyshell() {
     }
     loadingspin.style.display = 'block';
     loadingSpinner.style.display = 'block';
-    try {
-        const result = await eel.inject_shell(pidinput.value.trim())();
-        outputt.textContent = result;
-        injected = true;
-        createnotification('success', 'pyshell injector function executed');
-    } catch {
-        createnotification('failure', 'pyshell injector function failed');
-        outputt.textContent = `failed to inject pyshell`;
-    }
+    if (typeinject == 'normal') {
+        try {
+            const result = await eel.inject_shell(pidinput.value.trim())();
+            outputt.textContent = result;
+            injected = true;
+            createnotification('success', 'pyshell injector function executed');
+        } catch {
+            createnotification('failure', 'pyshell injector function failed');
+            outputt.textContent = `failed to inject pyshell`;
+        }
+    } else {
+        try {
+            const result = await eel.stealth_inject_shell(pidinput.value.trim())();
+            outputt.textContent = result;
+            injected = true;
+            createnotification('success', 'pyshell injector function executed');
+        } catch {
+            createnotification('failure', 'pyshell injector function failed');
+            outputt.textContent = `failed to inject pyshell`;
+        }
+    }  
     loadingspin.style.display = 'none';
     loadingSpinner.style.display = 'none';
 }
@@ -301,6 +328,9 @@ document.addEventListener('DOMContentLoaded', function() {
     loadchangelog();
     load_info();
     loadPlugins();
+    if (eel.STEALTH_TITLE()) {
+        setInterval(change_title, 0);
+    }
     setInterval(updatetime, 1000);
     const navbar = document.getElementById('navbar');
     const menuToggle = document.getElementById('menulol');
@@ -311,6 +341,7 @@ document.addEventListener('DOMContentLoaded', function() {
     const MCBOX = document.getElementById('MCBOX');
     const MCDUMPBOX = document.getElementById('MCDUMPBOX');
     const SSLBOX = document.getElementById('SSLBOX');
+    const PYCDUMB = document.getElementById('PYCDUMB');
     MCDUMPBOX.disabled = true;
     menuToggle.addEventListener('click', function() {
         navbar.style.left = (navbar.style.left === '0px' || navbar.style.left === '') ? '-310px' : '0px';
@@ -354,6 +385,13 @@ document.addEventListener('DOMContentLoaded', function() {
             add_text_winapihook(await eel.dumpopensslcontent(false)());
         }
     });
+    PYCDUMB.addEventListener('change', async function() {
+        if (this.checked) {
+            add_text_winapihook(await eel.pycdumper(true)());
+        } else {
+            add_text_winapihook(await eel.pycdumper(false)());
+        }
+    });
     buttons.forEach(function(button) {
         button.addEventListener('click', function() {
             buttons.forEach(function(btn) {

diff --git a/INFO/changelog.json b/INFO/changelog.json
@@ -51,5 +51,14 @@
             "Improved WinAPI hooking",
             "Added test feature (use --test to run it) "
         ]
+    },
+    {
+        "version": "1.0.8",
+        "changes": [
+            "Added new deobfuscator (development tools obf)",
+            "Added runtime dumper",
+            "Added stealth features (titles + injecton)",
+            "Added error reports"
+        ]
     }
 ]
diff --git a/INFO/version b/INFO/version
@@ -1 +1 @@
-V1.0.7
+V1.0.8