can't hide udp port??

Question

can't hide udp port??

koushui opened this issue 5 years ago · comments

Thanks to the author,Good job,very cool~!
but,can't hide udp port??
i try "/reptile/reptile_cmd conn hide" hiden a udp listen，only hide TCP PORT,hide udp not work!

By the way, if can increase access to SSH, SSHD password keylogger features, the same with command line switch, then a more perfect~!

Hork · Answer 1 · Wed Jan 30 2019 22:56:24 GMT+0800 (China Standard Time)

I'm not clear with the first question. I don't think the feature you mentioned is necessary. SSHD sniffering may increase the possibility which the rootkit would be discovered by the admin. There are many approaches to do that.

Ighor Augusto · Answer 2 · Fri Feb 01 2019 22:39:36 GMT+0800 (China Standard Time)

Thanks your words man.

So, about the udp connection hiding, I will consider add this feature in next commits. About SSH keylogger, I am not sure yet, even cause you can do some strace and get the clean text password (and hide the strace process with reptile).

Ighor Augusto · Answer 3 · Fri Feb 01 2019 23:24:48 GMT+0800 (China Standard Time)

I just added UDP hiding feature on this commit 165b539.

so, check it out!

koushui · Answer 4 · Mon Feb 25 2019 23:44:31 GMT+0800 (China Standard Time)

3X ，Test is OK~!