Terminology

  • Host - The target machine
  • Client - The operator’s machine
  • Relay - A third server which aids in establishing a direct connection between the host and client.
  • RAT - The software, in general context
  • sysRAT - The software, in context of its use as a Remote Administration Tool software
  • malRAT - The software, in context of its use as a Remote Access Trojan malware

Project Plan

  • Do research

  • Write communication protocol

    • Password authentication
    • Commands
    • Data payloads
    • Keep Alive
    • Hello

  • Write server

    • Listen to connections
    • Display streaming
    • Keyboard & Mouse Emulation

  • Write client

    • Connect to server address
    • Issue commands to server

  • Additional

    • Client GUI
    • Write relay
    • Listen for client connection
      • Connect to relay and try password
      • If authentication success, exchange server and client details
    • Keystroke Logging
    • Webcam Capture
    • Connection security (in the communication protocol)
    • Cross-platform
    • Virus behaviour