Share
## https://sploitus.com/exploit?id=8B369F6F-62A1-5041-8B7C-6326FEFD01C1
π RAT Vulnerabilities π
---
## π© Project overview
**RAT Vulnerabilities** is a curated collection of *exploit examples* and *proofsβofβconcept (PoCs)* inspired by vulnerabilities observed in Remote Administration Tools (RATs).
This repository is intended for **educational** use only β specifically reverseβengineering, vulnerability research, defensive testing, and exploitβdevelopment learning in controlled environments.
> β οΈ This repository **does not** promote or support malicious activity. Use responsibly and legally.
---
## β Supported RATs
| RAT | Directory |
|--------------|--------------|
| **XWorm** | https://github.com/SwezyDev/RAT-Vulnerabilities/tree/main/XWorm |
| **AsyncRAT** | Soon |
Do you want me to add more? Contact me on Telegram
---
## π What you'll find here
- Carefully documented PoCs and exploit *examples* (sanitized and annotated).
- Static analysis notes and reversing tips for researchers.
- Reports and writeups describing observed vulnerability patterns, common pitfalls, and mitigations.
---
## π‘οΈ Safety & Responsible Use
This project is explicitly for **legitimate security research**:
- Do **not** use contents of this repository to attack systems, exfiltrate data, or harm others.
- Do **not** run the Server (the RAT you want to try it on) on your personal workstation use isolated, disposable environments (e.g., VMs, sandboxes with snapshots) instead.
---
## π§ How to use this repo (recommended workflow)
1. **Clone** the repository for local inspection: examine PoC code, read writeups, and study the analysis notes.
2. Use the scripts on your **Own** insulated, disposable environments (e.g., VMs, sandboxes with snapshots) to see how it would look in a real case scenario.
> Suggested tools (for defenders/researchers): Process Hacker, Wireshark, DnSpy, DotPeek
---
## π Repository structure
```/
ββ XWorm/ β XWorm specific PoCs and writeups
β ββ README.md β Show a detailed version of this and description of the Scripts
β ββ create_text.py β Create a text on attacker's machine
β ββ flood_errors.py β Flood attacker's server with errors
β ββ flood_plugin.py β Flood attacker's server with plugins
β ββ flood_user.py β Flood attacker's server with users
β ββ information_spoofing.py β Send the attacker fake Information
β ββ live_chat.py β Talk with the attacker live
β ββ microphone_spoofing.py β Play an audio on attacker's machine
β ββ monitor_spoofing.py β Show a custom Picture/Video/Gif on attacker's machine
β ββ rce_exploit.py β Run remote code execution on attacker's machine
β ββ sniffer.py β Sniff request from the attacker's server and decrypt the Payload
β ββ webcam_spoofing.py # Show a custom Picture/Video/Gif on attacker's machine
ββ AsyncRAT/ β coming soon
ββ LICENSE β License file
ββ README.md β Read me file
```
---
## π§© Contributing
Contributions are welcome from responsible researchers. Please follow these rules:
- Submit only **sanitized** and **working** PoCs. Do **not** upload malware or not working scripts.
- Include a clear writeup: summary, affected software/version (if known), analysis steps, and recommended mitigations.
---
## βοΈ License
Distributed under the **MIT License**. See `LICENSE` for more information.
---
## π Credits & contact
- Maintainer: [@SwezyDev](https://github.com/SwezyDev) β reach out via Telegram: [@Swezy](https://t.me/swezy)
- Inspiration: public security research and community writeups.
---
## π£ Final note
If you use or share findings from this repository, always prioritize ethics, legality, and minimizing harm. This collection aims to help defenders and researchers better understand RAT threats β not to enable abuse.