RECUB

Introduction

      RECUB (Remote Encrypted Callback Unix Backdoor), is a handy admin tool which can be also used as a backdoor on a linux system. Some of its features make it unique to other backdoors

Features

• 1) Activation through ICMP "ping" echo packet
• 2) No need for server to listen on any port
• 3) Completly invisible from the network (well, thats what I think)
• 4) The activation packet will contain your IP/tcp port and it will be encrypted with blowfish
• 5) The server will recieve the activation packet and decrypt it with the embedded password.
• 6) If it dosent match, the server ignores it.
• 7) If it does match, the server will connect to your IP/PORT with the SSL protocol (using OpenSSL toolkit)
• 8) The SSL server on the client side is setup by the the client program
• 9) The server then checks the identity of the client with a SSL certificate
• 10) And fully encrypted connection is established.
• 11) Also comes with a (simple) process hiding LKM. (see lkm directory).
• 12) A new GTK+ 2 interface to handle RECUB client.

ScreenShots

    (Bigger Version)

Download

     Download Source of RECUB V.1 alpha here (this includes only the command line interface).

     Download Glade Project of RECUB GTK+ interface here.

Authors

      Starch - http://mir-os.sourceforge.net