Skip to content

Files

Latest commit

Apr 4, 2025
42aa2c4 · Apr 4, 2025

History

History
This branch is 17 commits behind Whitecat18/Rust-for-Malware-Development:main.

GitHub_API

README.md

GitHub API Data Exfiltration PoC

This Proof of Concept (PoC) demonstrates how data can be collected from a system and exfiltrated using the GitHub API. The code simulates a data stealer by gathering system information (e.g., hostname, OS version, network details) and sending it as a comment to a GitHub issue or as a file in a repository using legitimate API calls.

PoC

Download GitHub Stealer: Download

How It Works

  1. Collects system information using Windows API calls.
  2. Formats the data into a JSON payload.
  3. Uses the GitHub API (with a valid token) to post the data as an issue comment or repository file.

How to make it work !

  • Create Token from settings -> https://github.com/settings/tokens

  • Create a issue on any repo need

  • Note down the issue number

  • Do the changes here ! code block

  • To build:

    cargo build --release
    

    File can be found at : GITHUB_API/target/release/GITHUB_API.exe

Credits / Reference

@5mukx