-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
                       SAdoor winserver version 1.1
              By Claes M. Nyberg, <cmn@darklab.org> Dec 2003

	           http://cmn.listprojects.darklab.org/
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Credits
-------

o FX <fx@phenoelit.de>
    For writing cd00r.c (http://www.phenoelit.de/fr/tools.htm), which gave me
    the inspiration to write this, and for giving me feedback on this project.

o Zet <zet@darklab.org>
    For hosting this project at darklab.org.

What is this
------------
SAdoor is a non listening remote shell/execution server.
The program listens for a set of predefined packets in 
order to establish a connection or run a command. 

There is a client available at http://cmn.listprojects.darklab.org, 
(UNIX version only, use 1.1 for this release) that makes the sending 
of the required packets and connection-establishing as transparant 
as possible.

The client also has alot of other features, like listening/connect mode
as well as dumping the required payload (append it to an image, and download
the image to secretly pass the command on to SAdoor) which makes it possible to
generate the required packets in real connections.

Requirements
------------
o WinPcap (http://winpcap.polito.it/) 

Tips
----
You can find a great selection of commandline tools at
http://www.sysinternals.com/, and if you prefer UNIX,
the natively ported GNU tools at 
http://www.weihenstephan.de/~syring/win32/UnxUtils.html
is a 'must-have'.

Bugs
----
When transfering files, make sure that there is no output
from the terminal when you enter the escape prompt (like
a 'ls -alR /' or similar), since that might destroy the 
transfered file.
Unfortunately there is no real terminal/PTY allocated when
connected, but a raw connection, so don't expect to much magic...

Portability
-----------
This version has been tested on Windows XP Pro, 2000 Pro and NT4
Have fun!

CMN
