BetterBackdoor - A backdoor with a multitude of features

Dec 24, 2019

Typically, backdoor utilities such as NetCat have 2 main functions: to pipe remote input into cmd or bash and output the response. This is useful, but it is also limited. BetterBackdoor overcomes these limitations by including the ability to inject keystrokes, get screenshots, transfer files, and many other tasks.


BetterBackdoor can create and control a backdoor.

This created backdoor can:

  • Run Command Prompt commands
  • Run PowerShell scripts
  • Run DuckyScripts to inject keystrokes
  • Exfiltrate files based on extension
  • Exfiltrate Microsoft Edge and WiFi passwords
  • Send and receive files to and from victim's computer
  • Start a KeyLogger
  • Get a screenshot of victim's computer
  • Get text copied to victim's clipboard
  • Get contents from a victim's file (cat)

This backdoor uses a client and server socket connection to communicate. The attacker starts a server and the victim connects to this server as a client. Once a connection is established, commands can be sent to the client in order to control the backdoor.

To create the backdoor, BetterBackdoor:

  • Creates 'run.jar', the backdoor jar file, and copied it to directory 'backdoor'.
  • Appends a text file containing the server's IPv4 address to 'run.jar'.
  • If desired, copies a....

Notify of

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Inline Feedbacks
View all comments
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023