Windows Firewall
I'm trying to finish coding my first trojan(c++) and I have one thing left to do, turn off the windows firewall and virus scanner. But I can't find any tutorials, code example etc. So I'm hoping someone would be kind enough to direct me to a useful resource, or anything that will help me. Thanks in advance.
, A~hack
No, I think he means turn it off with his program. So he can get access to it. I think one thing you could do is allow access to whatever port you want access to. You might be able to do it by editing the windows registry. Look into that, and if you want some code examples, hit me up in a pm I could help you out.
Well, luckily I had a IRC log of one of KillerGuppy101's IRC lessons, so I'll post the part of the log that shows you how to disable the windows firewall. It is done through cmd, but its probably not too hard to do it via C++, so here is the log:
Jan 06 16:36:04 <killerguppy> i will only cover the firewall part today Jan 06 16:36:09 <killerguppy> but look into its other areas Jan 06 16:36:16 <killerguppy> netsh is a VERY powerful command Jan 06 16:36:44 <killerguppy> so go ahead and start up the net shell with "netsh" in the dos prompt Jan 06 16:37:03 <killerguppy> everyone in there? Jan 06 16:37:08 <only_Samurai> mhmm Jan 06 16:37:09 <crash_007> yup Jan 06 16:37:14 <killerguppy> hit ? and you see a big ol' list of commands Jan 06 16:37:31 <killerguppy> type "firewall" to use the netsh firewall shell Jan 06 16:38:05 <Zekasu> Simply "wow" at netsh, and Microsoft. Simply wow. Jan 06 16:38:15 <killerguppy> hit ? again and you see an even BIGGER list of commands Jan 06 16:38:16 <Frag_Wurm> netsh firewall set <dir to netcat> Jan 06 16:38:30 <killerguppy> the same commands again, plus a new section for firewall commands Jan 06 16:38:59 <killerguppy> type "add ?" to see the description of the firewall add command Jan 06 16:39:16 <killerguppy> you see it has inherited a command from netsh, but also has 2 new commands for firewall Jan 06 16:39:45 <killerguppy> from here, we can add our netcat backdoor to the approved programs list, and the port we use to the approved ports list and BAM! Jan 06 16:39:51 <killerguppy> no more popup for the user to click :P Jan 06 16:41:00 <killerguppy> we can also view all the firewall config by using "show" Jan 06 16:41:22 <killerguppy> we can see a list of allowed programs, configuration info, icmp settings, logging, etc etc Jan 06 16:41:30 <killerguppy> like i said, netsh is VERY powerful Jan 06 16:41:41 <killerguppy> i almost creamed my pants when i found out about it :D Jan 06 16:41:46 <Conundrum> :O