BYOB (Build Your Own Botnet) is an open-source post-exploitation framework designed for students, researchers, and developers to easily implement their own code and add new features. It has a command & control server with an intuitive user-interface, a custom payload generator for multiple platforms, and 12 post-exploitation modules.
Here are some of the advantages of BYOB:
- Platform-independent: BYOB can run on Windows, Linux, and macOS.
- Zero dependencies: BYOB does not require any additional software to be installed.
- Can bypass firewalls: BYOB can use a variety of techniques to bypass firewalls.
Here are some examples of how BYOB can be used:
- Establish persistence on a host machine
- Run a packet sniffer
- Escalate privileges
- Scan the local network for other online devices
- Log the user’s keystrokes
- Take a screenshot of the current user’s desktop
- Read/search/upload emails from the local Outlook client
- List/search/kill/monitor currently running processes on the host
- Check for logged in iCloud account on macOS
- Mine Monero in the background
BYOB is a powerful tool that can be used for a variety of purposes, both good and bad. It is important to use BYOB responsibly and ethically.
Web GUI
A control panel for your C2 server with a point-and-click interface for executing post-exploitation modules. The control panel includes an interactive map of client machines and a dashboard which allows efficient, intuitive administration of client machines.
Payload Generator
The payload generator uses black magic involving Docker containers & Wine servers to compile executable payloads for any platform/architecture you select. These payloads spawn reverse TCP shells with communication over the network encrypted via AES-256 after generating a secure symmetric key using the Diffie-Hellman IKE.
Terminal Emulator
The web app includes an in-browser terminal emulator so you can still have direct shell access even when using the web GUI.