Using web sockets for a RAT? – Digitalmunition




Home Forums Using web sockets for a RAT?

This topic contains 1 reply, has 2 voices, and was last updated by  DrinkMoreCodeMore 1 month, 4 weeks ago.

  • Author
    Posts
  • #333392

    anonymous
    Participant

    Would using websockets be a good idea for a RAT as they are easier to work with than raw TCP and would hide better in traffic analysis?

  • #333393

    DrinkMoreCodeMore

    Check out the RAT section in our wiki, you might be able to learn some stuff from those projects.

    https://old.reddit.com/r/hacking/wiki/index#wiki_remote_administration_.26amp.3B_payloads

  • #333394

    ShiroiOk

    Websockets do perform very well but TCP still beats it, your best bet to hide any traffic but would be to use exfiltration methods or obfuscate the connection.

    For example rat client is run then a proxy server is installed and all data is transmitted back to the attacker over http, https or dns.

You must be logged in to reply to this topic.