Rootstealer is an example of new attack using X11. This tool is used to detect when linux users open terminal with root and inject command with X11 lib.
# apt-get install libX11-dev libxtst-dev
# cd rootstealer/sendkeys;
Edit file rootstealer/cmd.cfg and write your command to inject.
You can take that following:
# make; cd .. #to back to path rootstealer/
# pip install gi
or
# pip install girRun the python script to spy all windows gui and search window with “root@” string in title.
$ python rootstealer.py &
$ sudo apt-get install libwnck-dev
$ gcc -o rootstealer rootstealer.c `pkg-config --cflags --libs libwnck-1.0` -DWNCK_I_KNOW_THIS_IS_UNSTABLE -DWNCK_COMPILATION
$ ./rootstealer &Also Read XAttacker – Website Vulnerability Scanner & Auto Exploiter Tool
We are not responsible for the evil use of that tool. Use that for a good purpose.
What is a Software Supply Chain Attack? A software supply chain attack occurs when a…
When people ask how UDP works, the simplest answer is this: UDP sends data quickly…
Endpoint Detection and Response (EDR) solutions have become a cornerstone of modern cybersecurity, designed to…
A large-scale malware campaign leveraging AI-assisted development techniques has been uncovered, revealing how attackers are…
How Does a Firewall Work Step by Step? What Is a Firewall and How Does…
People trying to securely connect to work are being tricked into doing the exact opposite.…