Each of us at school had a favorite subject. Someone dragged from physics, someone from biology, someone was most pleased with physical education – because of the opportunity to spy on the change in the women's locker room. Now for those who like to spy on something, the expanse has come thanks to the software, with which you can get access to a variety of information. One such software called Quasar RAT recently fell into my tenacious paws.
Since our magazine is called "Hacker", I am sure it is possible not to explain to the readers once again what RAT is. This particular tool is written for Windows, but the main thing is that it is freeware and open source, which definitely adds to its advantages over other similar software. You can download Quasar RAT from project pages on github…
The program is written in C # and is positioned by its developers as "an easy and convenient tool for remote administration, technical support and employee monitoring." Quasar RAT has a client-server architecture, traditional for Remote Assistance Tool, and, despite its compactness, has a rather rich arsenal of features, including:
- remote desktop connection;
- remote shell and launch of executable files on command;
- remote registry editing;
- launching file manager, task manager and boot manager;
- remote execution of shutdown and reboot commands;
- keylogging (with Unicode support);
- interception of passwords in browsers, FTP-clients and other programs;
- launching Reverse Proxy (SOCKS5).
Despite the presence of Quasar RAT in free access and a certain popularity in narrow circles of connoisseurs of beauty (judging by the number of forks and the activity of the community), the software is documented, I would say, modestly. On the other hand, it is quite easy to use, and even an inexperienced user can figure it out. It just so happened that I suddenly needed a utility for remote control of one of the computers in my LAN. On the advice of my colleagues, I chose Quasar RAT as a tool. And since I had to deal with this program, it would be a sin not to share my impressions of its use with you. Let's go!
Installation and configuration
The program is delivered in the form of an archive, inside which all the files necessary for its operation are located. Before unpacking the contents, you should disable antiviruses, otherwise they will happily delete the executable and the .bat file from the Quasar distribution kit. Also, to get started, you need install .NET Framework 4.5.2 or a later version if it is not already installed on your system.
In order not to get confused, let's immediately define that in Quasar terminology a machine is called a server where data is transferred from user computers, and a client is a PC that you are monitoring. The client is identified by the tag that you specify in the settings. It can be arbitrary. After installation on a remote machine, the client works autonomously, trying to connect to the server at specified intervals, either by IP address (IPv4 and IPv6 supported) or by DNS name. The general algorithm of actions is as follows: you need to start the server, specify the necessary settings, build the client application and upload it to the remote machine. It's simple.
Configuring the server
After starting the program
Quasar. we will be prompted to create a certificate with which a secure connection will be established between the server and the client. If Quasar has already been used on your computer, you can import the existing certificate, otherwise the program will create a file
quasar., which is better to immediately hide in a secluded place. If you have to reinstall Quasar, without it it will be impossible to connect to other machines running RAT, which threatens to lose all clients.
Click the Create button and then Save. Now feel free to launch
Quasar. and click Settings at the top of the window. By default, Quasar uses TCP port 4782 for communication, but you can choose any other free port instead by specifying it in the Port to listen on field. Then you will need to open this port in the firewall by configuring the appropriate rule.