A token logger for discord + steals Brave/Chrome passwords and usernames

Last update: Jul 18, 2021

Overview

Backdoor Machine - ❗ For educational purposes only ❗

A program made in python for stealing passwords and usernames from Google Chrome/Brave and tokenlog the user's discord. It will send a message in a webhook, with all the tokens, login info, ip and so on.

How to use

Download the latest release.

Install the requirements:

pip install requests
pip install pywin32
pip install pycryptodome

Make a webhook in a discord server/guilded.gg server.
Copy the webhook url into webhook.txt
Run the code or something.

Compile for distribution (EXE)

Install pyinstaller:
```
pip install pyinstaller
```
Make a webhook on discord or guilded and copy the url.
Paste the webhook url into webhook.txt
Run the file "build.py"
When its done, go into the "dist" directory and exe should be in there.

Decrypt the user data from the .enc file

You can turn off encryption in main.py by setting encrypt_loginInfo to False in the Config section(not recommended).

Download the login info file from the anonfiles url, and put it in the directory of Backdoor Machine.
Run decrypt.py, and you will get prompted for the path to the file you just downloaded.
Type the name of the file you downloaded(for instance, bravelogin.enc), and press enter.
Then on the next prompt, paste in the decryption key for the file(found in the embed).
It will then output a file with the pure login information from google chrome or brave browser.

Legal disclaimer:

Usage of Backdoor Machine for attacking targets without prior mutual consent is illegal. It's the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.

A message to github

This software is not ment to be used maliciously in any way. I just made this for fun and published it on github so that other people can use the code that I wrote.

You might also like...

A web-app helping to create strong passwords that are easy to remember.

Releases(v1.4.3)

v1.4.3(Jun 22, 2021)
Fixed the ip logger

Using a variable for the webhook url instead of the text file, due to some users having issues with building the exe with the text file

Source code(tar.gz)
Source code(zip)
v1.4.2(May 2, 2021)
Added encryption.py to build.py - Minor Patch

Added encryption.py to build.py

Optimized some imports

Source code(tar.gz)
Source code(zip)
v1.4.1(May 2, 2021)

Now strips the strings on the decryptor
Source code(tar.gz)
Source code(zip)
v1.4(May 1, 2021)

Added option to encrypt the user data to not make the info public (enabled by default) for extra safety this is also good for testing backdoor machine on your personal computer as it does not make your user data public. Read the readme to see how to decrypt the user data
Source code(tar.gz)
Source code(zip)

A token logger for discord + steals Brave/Chrome passwords and usernames

Related tags

Overview

Backdoor Machine - ❗ For educational purposes only ❗

How to use

Compile for distribution (EXE)

Decrypt the user data from the .enc file

Legal disclaimer:

A message to github

You might also like...

A web-app helping to create strong passwords that are easy to remember.

Password Manager is a simple Python project which helps users in managing their passwords in a easier way

Python program that generates secure passwords.

A simple python-function, to gain all wlan passwords from stored wlan-profiles on a computer.

PasswordManager is a command-line program that helps you manage your secret files like passwords

A (completely native) python3 wifi brute-force attack using the 100k most common passwords (2021)

A simple way to store your passwords without requiring third party applications

PwdGen is a Python Tkinter tool for generating secure 16 digit passwords.

A python script to brute-force guess the passwords to Instagram accounts

Releases(v1.4.3)

v1.4.3(Jun 22, 2021)

v1.4.2(May 2, 2021)

v1.4.1(May 2, 2021)

v1.4(May 1, 2021)

Owner

This Repository is an up-to-date version of Harvard nlp's Legacy code and a Refactoring of the jupyter notebook version as a shell script version.

Workshop Material on VM-based Deobfuscation

CVE-2021-45232-RCE-多线程批量漏洞检测

PySharpSphere - Inspired by SharpSphere, just another python version

Searches filesystem for CVE-2021-44228 and CVE-2021-45046 vulnerable instances of log4j library, including embedded (jar/war/zip) packaged ones.

POC for CVE-2022-1388

OSINT Cybersecurity Tools

CVE-2021-43936 is a critical vulnerability (CVSS3 10.0) leading to Remote Code Execution (RCE) in WebHMI Firmware.

Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD).

A powerful password generator utility which utilizes the slot technique to generate strong passwords of required length having combinations of lower and upper characters, digits and symbols.

Password List Creator Simple !

Undetectable Keylogger that reports to Discord

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Burp Suite extension for encoding/decoding EVM calldata

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

将hw时信息收集以及简单的漏洞操作步骤简单化

PKUAutoElective for 2021 spring semester

🔍 IRIS: An open-source intelligence framework