Laika is a simple cross-platform Remote Access Toolkit stack for educational purposes. It allows encrypted communication across a custom binary protocol. The bot client supports both Windows & Linux environments, while the shell & CNC server specifically target Linux environments. Laika is meant to be small and discreet, Laika believes in hiding in plain sight.
Some notable features thus far:
- Lightweight, the bot alone is 183kb (
MinSizeRel) and uses very little resources minimizing Laika's footprint. - Authentication & packet encryption using LibSodium and a predetermined public CNC key. (generated with
bin/genKey) - CNC and Shell configuration through
.inifiles. - Open shells remotely on the victim machine.
- Persistence across reboot: (toggled with
-DLAIKA_PERSISTENCE=On)- Persistence via Cron on Linux-based systems.
- Persistence via Windows Registry.
- Uses obfuscation techniques also seen in the wild (string obfuscation, tiny VMs executing sensitive operations, etc.)
- Simple configuration using CMake:
- Setting keypairs (
-DLAIKA_CNC_IP=? -DLAIKA_CNC_PORT=?, etc.) - Enabling/Disabling Obfuscation (
-DLAIKA_OBFUSCATE=On)- Obfuscation modes
- Setting keypairs (
Please refer to the Wiki for any questions relating to deployment, compilation & setup.
Read CONTRIBUTING.md