This project is a fully featured Golang port of Shlyuz. For more information on Shlyuz, loosely modeled after Assassin as described in Vault 7, please refer to my series of blog posts on it.
This implementation of a Shlyuz implant has a number of features that make it enticing:
- Asymmetric encryption of communications using NaCl
- Symmetric encryption of communications using RC6
- Cross platform compatability for desktops
- Windows ✅
- OSX ✅
- Linux ✅
- Compiled binary (versus the python package of the previously released implant PoC)
- Enhanced Execution Methods loosely modelled after the ICE Standard as described in Valut 7 (
⚠️ WARNING: Wikileaks link)
- Generate an implant configuration using the teamserver setup application
- Place the encrypted
shlyuz.conffor the implant inconfigs/ - (
⚠️ Subject to change) Create a filesymkeyinconfigs/, with the contents being the generated config encryption key received from the teamserver setup application - Compile the implant
- Distribute the compiled implant
Don't use this yet, it's not ready.
This project makes extensive use of go build tags and VSCode. If you import the root of this project into VSCode or VSCodium, you will have an identical development environment.
Tasks have been provided that change your .vscode/settings.json to enable you to quickly switch VSCode's context between the component you are developing for.
First, run the task Set VSCode to Implant Environment (overwrites settings.json)
Warning Running this task will wipe your .vscode/settings.json file
Finally, run the Build Implant Task
First, run the task Set VSCode to LP Environment (overwrites settings.json)
Warning Running this task will wipe your .vscode/settings.json file
Finally, run the Build Listening Post Task
If you enjoyed this project, donations are accepted at und3rf10w.eth