Foro de elhacker.net

Después de mucho tiempo el proyecto se recobró y se ha lanzado el nuevo sub7, con la interfaz mítica de los clásicos pero con nuevas funciones como poner el no-ip sin tener el cliente, mirarlo por vosotros mismos.


Official Website:
================

The Only Official SubSeven Website - DISCLAIMER - SubSeven.org:
http://subseven.org/ (http://subseven.org/)

Official Forum:
==============

The Only Official SubSeven Website - DISCLAIMER - SubSeven.org:
http://subseven.org/forum (http://subseven.org/forum)

About SubSeven 2.3:
==================

SubSeven 2.3 is a simple, easy to use remote administration tool (RAT) designed to work on all current Windows platforms, both 32bit and 64bit. This tool is aimed at people who want that little bit more power and control over remote computer management. Please use this tool responsibly and read and accept the disclaimer prior to use. If you do not agree with the disclaimer, please do not use the tool. You accept full liability and responsibility for your actions when using SubSeven. Do not use this tool on computers you are not authorized to control.

A full tutorial will be available soon.

Feature Overview:
================

SubSeven.exe (911KB)

Client:

- Transfer View (view upload/download details <-> from host)
- Window View (View active Windows on SubSeven)

Managers:

- File Manager (upload/download/run/delete/play files on host)
- Registry Manager (modify/add/remove registry entries on host)
- Service Manager (refresh services/install services/remove services/remote host management)
- Process Manager (view active/kill active processes to dll level)
- Fun Manager (general office pranks)

Spying:

- Desktop (view and click the remote host desktop)
- Webcam (view the webcam on the remote host)
- Audio (capture mic/line-in input no the remote host)

Network:

- TCP Tunnel (relay remote host ports to local PC)
- Traffic Viewer (lists active network connections on remote host)
- Network Browser (list shares on remote host, allows mapping)

System:

- Remote Shell (view the command prompt on the remote host as if it was local)
- Password (recover lost/forgotten passwords for various browsers, storage, mail clients and instant messengers)
- Installed Apps (list installed applications)
- Server Options (stop/start/remove server on remote host)

Built in Tools:

- Static IP Notification Client (SIN client) (a listening tool that allows your remote hosts to notify you when they are online)
- NO-IP account / IP auto update tool (allows you to enter your NO-IP account information to auto update the website of IP changes)
- Shortcut Panel (allows you to add your favorite utilities as shortcuts
- Hint and Active running status bar (gives you some helpful information)


EditServer.exe (254KB)

Server Status:

- Read (allows you to browse and then read the server settings)
- Server extensions (allows you to check which extension you want the server to use)
- Install directory (allows you where you would like the server to be installed)
- Protect server (allows you to password protect the server)
- Melt server (allows the server to disappear once executed)
- Wait for reboot (waits to execute upon next reboot)
- Run Visible (allows the host computer to know the server is running)
- Server name (what it says)

Fake Messages:

- Enable (actives the fake message option)
- Message icon (allows you to choose your icon for the message)
- Available buttons (select what options the host computer has to press)
- Message title (the title text for the message)
- Message text (the body text of the message)
- Test (allows you to test the message on your PC)

Startup methods:

- Registry Run (installs under registry run key)
- Registry RunServices (installs under registry runservices key)
- Registry RunOnce (installs under registry runonce key)
- ActiveX (installs in the activeX key path)
- Explorer (installs on execution of explorer shell)
- Winlogon (same as above for winlogon)
- Policies (executes upon windows policies startup)
- Key name (keyname for registry entries. For example Remote Host Server)

Notifications:

- S.I.N (specify your local network external IP address here, or for local testing 127.0.0.1)
- CGI/PHP (specify your website address, e.g host.com, generate the script and upload it to your php/cgi host)

Bind Files:

- Select a file to bind to the server. The binded file will execute along with the server - for example you may want to execute tinyvnc for full screen management)

Win Firewall:

- Disable Firewall (turns off the firewall providing UAC is off)
- Disable Win defender (turns off windows defender)
- Disable UAC (turns off UAC upon next reboot)

Exe Icon:

- Load .dll/exe (load up an exe or .dll file to extract icons and use them on your server)
- Browser (browse to .ico files)


Server.exe (58.5KB)

- This is your configured server to deploy on the remote host.


Credits:
=======

mobman: creator
fc: coder
Read101: coder
SubZ: feature advisor
cosmic: beta tester / tutorial
publicENEMY: website / forums / icons
x_h0rr0r_x: forum management

Enjoy this release!

cya

fc / read101 / subz

--------------------------------------------------

Se puede bajar desde:
Aquí (http://sites.google.com/site/subsevenlegends/Home/SubSeven_2.3.rar?attredirects=0&d=1)

O desde la página web oficial con previo registro.

  Te van a eliminar el ultimo link por no subir codigo fuente  :rolleyes: de todas maneras gracias estaba buscando estos links ......  :P que tiempos aquellos XD   ;D

Ya está, sorry esque me tenia que ir rápido por unos asuntos personales y no me fijé, y la verdad esque yo soy de la nueva generación y sólo vi el anterior a este pero me pareció un hecho (más como noticia que como el programita que ahora lo detectan todos los antivirus xd) bastante importante ^^

Att.
La Muerte Blanca

alguien sabe por que razon aunque saque la opcion Visible Server igual aparece la ventanita??
Grax

Legendario, todavia recuerdo usarlo en sexto de primaria jajaja. Cabe aclarar que ya voy a la uni..

Saludos, Haxple

 :silbar: :silbar: :silbar: ,,que boliyas,,y no lo se usar


File Info

Report date: 2010-03-18 03:50:31 (GMT 1)
File name: Server.exe
File size: 59904 bytes
MD5 Hash: c292a8f3cde09b8e7b51e05ebfb59b1d
SHA1 Hash: 435e0a4c4a61942d4a0f011ada8917a2923ce54a
Detection rate: 9 on 21 (43%)
Status: INFECTED

Detections

a-squared - Trojan.Win32.Vilsel!IK
Avast - Win32:Malware-gen
AVG - -
Avira AntiVir - BDS/Backdoor.Gen
BitDefender - -
ClamAV - -
Comodo - Heur.Packed.Unknown
Dr.Web - -
Ewido - -
F-PROT6 - W32/Bloop.A.gen!Eldorado
G-Data - -
Ikarus T3 - -
Kaspersky - Trojan.Win32.Vilsel.wbq
McAfee - -
NOD32 - Win32/Prosti.C
Panda - Suspicious file
Solo - -
TrendMicro - -
VBA32 - Backdoor.XiaoBird.18
VirusBuster - -
Zoner - -

Scan report generated by
NoVirusThanks.org (http://novirusthanks.org)

omg slap.
que quieres ?? si es un troyanin -.- ¬¬

  Pues tiene una rata de deteccion aceptable mirando esos positivos seguro el server esta comprimido con upx algunos d esos positivos me rebotan cuando paso servers por upx ....  :silbar:

Está el cliente(sub7).exe, el edit server.exe y el server.exe.
Lo logico esque con el edit server configures el server y luego lo pongas [más o menos]indetectable y lo envies al ftp o lo que quieras, pero si lo analizas tal cual pues normal que te lo detecte todo...
Puto panda xD --> Panda - Suspicious file

pues lo pongo en un PDF de la uni y lo intercambio por el limpio y listo , domine el mundo xD

Ten cuidado con:
(un alumno de informática de la uni): Ostia mira que me he encontrado un troyano.
------
Fecha de creación.
Usuario que lo creó.
Te informas de quien estubo en ese pc esa hora y listo.
De todos modos eso se puede cambiar con programas, solo un consejo de que siempre vas dejando huellas aunque no lo sepas.

sub7 aix... q tiempos aquellos...
q bueno q hayan proyectos q revivan después del tiempo...  ;-)