Share
## https://sploitus.com/exploit?id=8B369F6F-62A1-5041-8B7C-6326FEFD01C1
πŸ€ RAT Vulnerabilities πŸ€


  
  


---

## 🚩 Project overview

**RAT Vulnerabilities** is a curated collection of *exploit examples* and *proofs‑of‑concept (PoCs)* inspired by vulnerabilities observed in Remote Administration Tools (RATs).  
This repository is intended for **educational** use only β€” specifically reverse‑engineering, vulnerability research, defensive testing, and exploit‑development learning in controlled environments.

> ⚠️ This repository **does not** promote or support malicious activity. Use responsibly and legally.

---

## ⭐ Supported RATs



| RAT | Directory |
|--------------|--------------|
| **XWorm**    | https://github.com/SwezyDev/RAT-Vulnerabilities/tree/main/XWorm |
| **AsyncRAT** | Soon |




  Do you want me to add more? Contact me on Telegram


---

## πŸ“š What you'll find here

- Carefully documented PoCs and exploit *examples* (sanitized and annotated).  
- Static analysis notes and reversing tips for researchers.  
- Reports and writeups describing observed vulnerability patterns, common pitfalls, and mitigations.

---

## πŸ›‘οΈ Safety & Responsible Use

This project is explicitly for **legitimate security research**:

- Do **not** use contents of this repository to attack systems, exfiltrate data, or harm others.
- Do **not** run the Server (the RAT you want to try it on) on your personal workstation use isolated, disposable environments (e.g., VMs, sandboxes with snapshots) instead.

---

## 🧭 How to use this repo (recommended workflow)

1. **Clone** the repository for local inspection: examine PoC code, read writeups, and study the analysis notes.
2. Use the scripts on your **Own** insulated, disposable environments (e.g., VMs, sandboxes with snapshots) to see how it would look in a real case scenario.

> Suggested tools (for defenders/researchers): Process Hacker, Wireshark, DnSpy, DotPeek

---

## πŸ“ Repository structure 

```/
β”œβ”€ XWorm/ βž” XWorm specific PoCs and writeups
β”‚ β”œβ”€ README.md βž” Show a detailed version of this and description of the Scripts
β”‚ β”œβ”€ create_text.py βž” Create a text on attacker's machine
β”‚ β”œβ”€ flood_errors.py βž” Flood attacker's server with errors
β”‚ β”œβ”€ flood_plugin.py βž” Flood attacker's server with plugins
β”‚ β”œβ”€ flood_user.py βž” Flood attacker's server with users
β”‚ β”œβ”€ information_spoofing.py βž” Send the attacker fake Information
β”‚ β”œβ”€ live_chat.py βž” Talk with the attacker live
β”‚ β”œβ”€ microphone_spoofing.py βž” Play an audio on attacker's machine
β”‚ β”œβ”€ monitor_spoofing.py βž” Show a custom Picture/Video/Gif on attacker's machine
β”‚ β”œβ”€ rce_exploit.py βž” Run remote code execution on attacker's machine
β”‚ β”œβ”€ sniffer.py βž” Sniff request from the attacker's server and decrypt the Payload
β”‚ └─ webcam_spoofing.py # Show a custom Picture/Video/Gif on attacker's machine
β”œβ”€ AsyncRAT/ βž” coming soon
β”œβ”€ LICENSE βž” License file
└─ README.md βž” Read me file
```

---

## 🧩 Contributing

Contributions are welcome from responsible researchers. Please follow these rules:

- Submit only **sanitized** and **working** PoCs. Do **not** upload malware or not working scripts.
- Include a clear writeup: summary, affected software/version (if known), analysis steps, and recommended mitigations.

---

## βš–οΈ License

Distributed under the **MIT License**. See `LICENSE` for more information.

---

## πŸ™Œ Credits & contact

- Maintainer: [@SwezyDev](https://github.com/SwezyDev) β€” reach out via Telegram: [@Swezy](https://t.me/swezy)  
- Inspiration: public security research and community writeups.

---

## πŸ“£ Final note

If you use or share findings from this repository, always prioritize ethics, legality, and minimizing harm. This collection aims to help defenders and researchers better understand RAT threats β€” not to enable abuse.