[TuT] USG 0.X + NoVirusThanks scan automation [CryptMaker v1.0.5] [April 14] | Ksecurity-team

Subscribe & Don,t Miss A Free Hacking Course| Receive Daily Updates

Enter your email address:

Delivered by FeedBurner

[TuT] USG 0.X + NoVirusThanks scan automation [CryptMaker v1.0.5] [April 14]



Well, this is my first big post, so please bear with my if my style isn't fully in sync with the community yet.
I spent most of my afternoon writing these scripts, so I hope you find them as useful as I have. Anyhow, here we go.

== Please read and understand the whole guide before you begin. ==
[Image: cryptmakergui.png]


LAST VERSION: CryptMaker v1.0.5 (LINK) (pw: hf.net)
LAST VERSION: April 14, 2010
C
== April 2, 2010: For a pre-installed environment to run CryptMaker in (with PHP, AutoIt3, and VB6 already installed), check the bottom of this post! ==


[SCREENSHOTS]

[STUFF YOU'LL NEED]
  • The tools (see download link at top of page).
  • PHP 5.3 or newer (LINK) AND knowledge of how to run command line PHP files. Be sure to include the PHP directory in your windows PATH variable. See Q&A if you're unsure on how to do this.
  • AutoIt v3 installed

[WHAT THESE FILES ARE]
  • ./_clean.bat - Removes transitional files from generating stubs. Called on by _CryptMaker.au3
  • ./_CryptMaker.au3 - (Written in AutoIt) Automates the process of stub generation with USG. Will generate and compile your stubs for you.
  • ./ToCheck/_Snoopy.class.php - A PHP class for simplifying website interaction (used by _Submit.php)
  • ./ToCheck/_Submit.php - Goes through the current folder looking for stubs and upload them to NoVirusThanks.org automatically. Also removes any orphaned .ini files from failed compiles.
  • ./ToCheck/_Check.php - After running _Submit.php, this script will check the scan status of your stubs, removing any which trigger more than a set threshold of AV detections. Also generates __List.html which contains links to the scan results for verification.

BEFORE YOU BEGIN: Be absolutely sure that your hosts file (C:\Windows\system32\drivers\etc\hosts) is set to read only! For some reason, USG takes it upon itself to block VirusTotal, Jotti, AND HackForums.net.


[USAGE]
  1. Execute and configure USG to your liking.
  2. Run "_CryptMaker.au3". Select which aspects of the stubs you'd like randomized. Press OK when done.
  3. The tooltip in the upper left will guide you and give you status updates. When you are ready, press F4 to unpause the script and let it run!
  4. When you feel like you've generated enough stubs, you can either press F4 and wait for the script to finish the current stub, or press F5 to kill it immediately. Using F5 is important to stopping CryptMaker as it runs "_clean.bat" on close and removes unnecessary transitional files.
  5. Select all of your newly generated stubs and move them into the "ToCheck" folder. They MUST (unless you want to modify the .php scripts) be in "ToCheck" for the upload and checking scripts to work.
  6. The following is optional: Open "_Config.php" with your preferred text editor and modify the settings as you wish. You can include proxy usage, debug logging, and deletion threshold (will delete if detected by more than $threshold AV software).
  7. Run "_Submit.php" either via command prompt. You can execute by double clicking (if you have associations set) but the window will disappear after execution finishes. This step will upload your newly generated stubs to NoVirusThanks.org AND utilizes their "Do not distribute" feature.
  8. Run "_Check.php". If ran immediately after _Submit.php, it'll usually take a while on the first few files as it waits for the scans to finish. This script will delete any stub that failed to meet the threshold requirements.
  9. The following is optional: open the newly created "__Links.html" file in a web browser and feel free to manually check the scan results.
  10. Move the remaining stubs and .ini files to a different folder for safe keeping. This also ensures that they don't waste your time later by accidentally re-uploading and checking them.
  11. Enjoy your new bulk quantity of ("as-you-decided" quality) stubs!


[SHORT Q&A]

Q: Why did you feel the need to start ALL of your files off with underscores?
A: If you keep your folders sorted by name, it'll keep them at the top. This becomes especially helpful if you have a folder with a few hundred stubs in it and you don't want to dig for the main programs.

Q: How do I setup PHP to run via command line?
A: Get the .zip version of PHP (NOT THE .MSI) and extract it to "C:\PHP". Then, right click on "My Computer" and go to Properties. If you are using Vista or Windows 7, click "Advanced System Settings". Now, click "Environment Variables". From this window, find PATH in either the top section or the bottom section and click it, then click Edit. At the end of it, include ";C:\PHP" (be sure to include the semicolon so it can tell the previous folders apart). Keep mashing OK until all the windows are gone.
For running PHP files via command line: open the command prompt and navigate to the folder with the .php file(s). Type "php [file]" where [file] is the filename of the script you wish to run.

Q: While running _Check.php I get an error message about "REGEX". What should I do?
A: Check this thread and (1)make sure you have the most recent version available. If you're certain you do, (2)make sure nobody else has reported the error yet, and if they haven't, post the error in this thread and/or send me a PM. I'll hopefully get things on track again.

Q: You write your code very [adverb]. Why?
A: Because that's how I code. Deal with it.

Q: Wait, you actually put comments in your code?
A: Damn right I did. Hopefully it'll cut down on the number of questions on how the scripts work. That and its good programming etiquette to actually comment your code.

Q: I have a comment or suggestion about CryptMaker, what should I do?
A: If your suggestion hasn't been made already, feel free to include it in this thread. Suggestions are always appreciated.

Q: Why isn't (program) working?
A: Two part answer: 1) make sure the issue you're having hasn't been discussed already or is going to be addressed in an upcoming update and 2) you're going to have to be considerably more technical than that. Include a good bit of information with your problem including your current setup and any related debug files.


[BONUS TORRENT]
If you happen to be lazy, noobish, or in a crazy situation that prevents you from using USG properly, I've built a virtual machine using Sun VirtualBox (download) designed specifically for usage with CryptMaker. It comes with the following installed: Windows XP Professional, AutoIt3, Visual Basic 6, and all other requirements to use CryptMaker. Just download the .torrent from the link below, download the files with your preferred torrent application, then import the files into Sun VirtualBox and you'll be good to go!
NOTE: To save me the headache of updating the virtual machine any time I update code, CryptMaker has not been included in the virtual machine. You will need to download it separately and copy it over yourself. Hopefully this will get you familiar with the folder sharing option which you'll later use to copy your stubs back to your main PC.
(Torrent Link)
Remember, seeding is sharing, and sharing is awesome.


Well, here's hoping you enjoy!

-GigaWatt.




Share your views...

0 Respones to "[TuT] USG 0.X + NoVirusThanks scan automation [CryptMaker v1.0.5] [April 14]"

Post a Comment

 

Members

Join Us At Facebook

Enter your email address:

Delivered by FeedBurner

© 2011 Ksecurity-team All Rights Reserved Hackguide4u Theme by Adnan Anjum Learn Hacking Online hackguide4u.blogspot.com