PrivateAlps.net - Offshore Cloud Services | VPS/RDP/VPN - Dedicated Servers - Webhosting - TOR Services - Auto Deploy
Garry's Mod

[Python] Add-on backdoor scanner by Stakonum

Submitted by Stakonum, , Thread ID: 171486

Thread Closed
11-05-2020, 09:32 PM
This post was last modified: 24-05-2020, 05:17 PM by Stakonum
#1
pyBackdoorScanner
coded by me, in python
scans lua files for suspicious code
it's not 100% accurate, like all antiviruses. there WILL be false positives.
features
  • scan entire directories at once!
  • encryption detection
  • suspicious filename detection (ie npc_help.lua and stuff)
  • malicious leaker detection (detects if file is credited to a leaker who usually backdoors stuff)
  • simple use, just run it and it scans
  • compact, single file to run
  • color coding for easy spotting
  • web connection detection
  • easy to add to the detection lists
(it lets you know, via printing, when it detects any of this)

usage
simply put the .py file in the directory you want to scan and run it
(double-click it or run via cmd (python backScanner.py))
it will go through every directory and .lua file inside the directory.
this means you can very easily scan entire folders of add-ons.

requirements
  • python 3
  • colorama (run pip install colorama)

picture

[Image: dzSHOvX.png]
download
Content locked
This content has been locked. Please login or register in order to unlock it.
you can literally see the source code so dont tell me there's anything malicous
If anyone has any questions, suggestions, or concerns, let me know please!
I'm aware that the code can be much nicer, but I was focusing on making this a single module to run. It's also blazing fast, so I see no need to multithread.
5
godx, KanameS, miguelo, Papich, Venipa

RE: [Python] Add-on backdoor scanner by Stakonum

OP
This post was last modified: 24-05-2020, 05:51 AM by Stakonum
#2
Sorry for the bump, I've fixed an issue that broke the scanner when it encountered non-unicode text. Apparently, it's edgy to randomly include Cyrillic in your add-on.
The file now reads in ascii encoding and ignores errors.

RE: [Python] Add-on backdoor scanner by Stakonum

#3
Is it for scanning malware lua ? Because I'm going to make a darkrp server and it could be nice :D

RE: [Python] Add-on backdoor scanner by Stakonum

OP
This post was last modified: 24-05-2020, 05:18 PM by Stakonum
#4
24-05-2020, 04:51 PM
AreaZi Wrote: Is it for scanning malware lua ? Because I'm going to make a darkrp server and it could be nice :D
Yes, it will scan lua files, but there is no certain way to know if code is a backdoor or not, so you will need to manually review the console output.

EDIT: to everyone else, i have once again updated the module. i found out that i was using the wrong denotation for comments!! simple brain fart.
the code is supposed to ignore commented out lines because parsing them is useless. it didn't do it previously cause i was looking for "//" and not "--", which is lua's comment denotation. fixed!

RE: [Python] Add-on backdoor scanner by Stakonum

#5
Garry's Mod is a physics sandbox. Not a sandbox for backdoor server ! Refresh my brain...
Error 404
>Lock brain.exe
>delete brain.exe
- Are you sure ?
>Yes
- Deleting..
-Human is dead Smile

RE: [Python] Add-on backdoor scanner by Stakonum

This post was last modified: 02-06-2020, 12:44 AM by godx
#6
Will definitly check this out, thanks for the script.

It works, nice job dude, used it on a few backdoored scripts detects in milliseconds.

RE: [Python] Add-on backdoor scanner by Stakonum

#7
very cool of you to make this. worked pretty well on a placebo script

RE: [Python] Add-on backdoor scanner by Stakonum

#8
11-05-2020, 09:32 PM
Stakonum Wrote:
download
Content has been stripped. Go to the quoted post to view the content.
you can literally see the source code so dont tell me there's anything malicous
If anyone has any questions, suggestions, or concerns, let me know please!
I'm aware that the code can be much nicer, but I was focusing on making this a single module to run. It's also blazing fast, so I see no need to multithread.
Hello! maybe im just retarded, but i am having problems with installing colorama. could you please pass me the link?
[Image: tenor.gif]

RE: [Python] Add-on backdoor scanner by Stakonum

#9
03-06-2020, 01:19 PM
miguelo Wrote: Hello! maybe im just retarded, but i am having problems with installing colorama. could you please pass me the link?

you have to install python with pip installed ("it's installed by default but you can only install python too") and on a cmd write: 'pip install colorama'

RE: [Python] Add-on backdoor scanner by Stakonum

This post was last modified: 03-06-2020, 02:14 PM by miguelo
#10
>>> pip install colorama
File "<stdin>", line 1
pip install colorama
^
SyntaxError: invalid syntax
That's what I get when I run the command in python. in cmd it just says that the command doesn't exist.


If someone could make a video, I would appreciate it a lot. I'm not that good with English and sometimes I don't understand what you guys say
[Image: tenor.gif]

Users browsing this thread: 13 Guest(s)