Friday, 24 July 2015

redpill Agent Improved


redpill Hacker has been dominating posts in this spy software blog lately but redpill Agent is far from done. A new version has just been published with a couple of improvements and a new look (see screenshot above).

redpill Hacker can do everything redpill Agent can do and a lot more ... but there are quite a lot of redpill Agent fans that still prefer this legacy system. It might have something to do with the fact that redpill Agent is a bit notorious and has even been blamed by hackermedicine  and some other news blogs for a major attack in India (read article here).

For more information about redpill Agent and other spy software visit http://www.redpill.co.za

Wednesday, 22 July 2015

redpill Hacker price reduced

redpill got a new look:


To celebrate our new look and website, we discounted the redpill Hacker price with 50%!
redpill Hacker is now (for a limited time) available at $ 99.
An upgrade to the latest version (that will also give you a new unique and clean build) has also been reduced to $ 39.


Wednesday, 15 July 2015

Friday, 10 July 2015

Install Spy Software with a Payload Website

redpill Hacker 3.5 is now available. The most significant enhancement is a new powerful tool in the redpill Hacker arsenal (existing hacking tools where also updated and improved).

redpill recently added the 'Password Phishing Website' tool. The very high success rate of this tool convinced redpill to develop a new tool that combine the website creating ability of redpill Hacker with its payloads.

Social Engineering Payload Website

The difference between the Password Phishing Website Tool and the Payload Website Tool is that the password site can only capture a username and password while the payload website will install spy software to monitor the computer.

With the Payload Website you bypass any email problems as no attachments are emailed. You also don't email a link to a payload (install module). Emailing a link is one of the best delivery methods but it still has two problems:

  1. Most computer users know not to click on a link in an email. They where told to go to the website directly and download from there.
  2. Emailing a direct link to your payload can still cause unwanted exposure (Anti-Virus Scans) to your payload. The more your payload is scanned, the more you increase the risk of it becoming known as malware. 

The new tool takes care of these problems and will have a much higher success rate. Lets look at an example of how the Payload Website Tool works:

Step 1 – Choose or Create a Template

We will choose one of the templates that comes with redpill Hacker 3.5 – ZIP4WIN. You can make a few changes to the template or create your own if you want.

Click on the images to enlarge them.

Step 2 – Create the Payload 


We select the template we have chosen. This will populate most of the fields for us. For a Payload Website option you must select 'Program File' as attachment type (remember it will not be emailed).

Step 3 – Create the Website


Select the new 'Social Engineering Website With Paylaod' option in the Social Engineering Toolkit.



You simply enter a description and features that fits in with your con (the social engineering template that you chose) and you click on Create. I don't have a video yet of how this works, but to see how quickly and easily redpill Hacker creates a website see the 'phishing website video'.

Setp 4 – Attack


Go to the new Payload Website Attack option and select your list of targets. They will not get a link to a payload but will simply be told about the new great app with a link to the website.



This new tool allows you to create any 'super application' and website that goes with it in a couple of minutes.

The website will look legit to the target and he will expect the UAC Warning message from Windows as he is installing this great application!

The payload will install the spy program that will return the public IP address of the target, all keys that are typed (key logger) and will take screenshots at the interval you specified.

For more information about redpill Hacker visit http://www.redpill.co.za


Monday, 6 July 2015

redpill Agent vs redpill Hacker




A lot of customers wants to know what is the difference between redpill Agent and redpill Hacker. redpill Hacker is without question a better product as it can do everything that redpill Agent can do and much more. redpill Agent is however still an excellent product and redpill will keep on supporting redpill Agent.

redpill Agent is bit easier to use for the simple reason that there is much less that you can do. redpill Hacker is very user friendly, but will require that you watch the videos, read the articles and spend a little time getting familiar with how it works.

redpill Hacker is definitely for the more serious hacker. 

In short, here are the differences:
  • With redpill Agent you are limited to one email account for receiving data - so you are limited with the number of installs you can do. With redpill Hacker you can add as many email accounts as you want (unlimited installs).
  • redpill Agent can only be linked to a gmail account. That can sometimes be a problem if gmail forces you to change the password. Gmail is also limited to 500 emails per day. redpill Hacker can use gmail but is not limited to gmail. It can use any email service that supports SMTP.
  • redpill Agent uses Ghost Protocol so that your modules are part of a very small batch of users to reduce the risk of detection. redpill Hacker does not use Ghost Protocol as it is not needed - each customer gets a unique build - only you will have that specific version of redpill Hacker.
  • With redpill Agent you can choose from 5 different social engineering install modules and it allows to to specify your own. redpill Hacker on the other hand takes social engineering to a new level with a complete social engineering toolkit. There are a lot more templates to choose from and the templates are more advanced. It has a database, so you can also add as many templates as you want. 
  • Both products will secretly take screenshots and comes with a keylogger. redpill Hacker will also give you the public IP address of the target.
Then, there are features that only redpill Hacker has:
  • redpill Hacker can create phishing websites for you that you can use to retrieve usernames and passwords without needing to install anything on the target computer.These attacks works on all devices and platforms.
  • redpill Hacker has a database where you can save all your targets, email addresses, keep track of installations and much more.
  • redpill Hacker can email the payloads (install modules) for you by creating and sending personalized emails to the targets. It allows you to email a list of targets (any number) with the click of a button.
  • redpill Hacker can do dictionary attacks against email addresses. It comes with a database of 13 200 passwords (high quality commonly use passwords). You can also import more passwords if you want.
To see redpill Hacker in action search for 'redpill Hacker' on youtube and watch the videos.
To purchase redpill Hacker or redpill Agent go to http://www.redpill.co.za

Wednesday, 1 July 2015

redpill Hacker - Getting Started

There is a lot that redpill Hacker can do - too much to explain in one article. For this article, I will focus on getting started - the very basics. We will send one payload to one target.

You will not need to do all the steps for every attack you do, but you will need to set a couple of things up before you start using the system.

Step 1: Add an Email Account

You will need to add at least one email account. From the Menu click on Resources > Email Accounts.


Email accounts will be used to send payloads to targets but also be used by the payload to send you data.

You can add any number of email accounts that you want to use. You can use any email service that supports SMTP. Free email services like gmail and yahoo will work, but will have some limitations and problems. These services are very strict with the type of attachments they allow and will also limit you with the number of emails that can be sent in a day.



When adding your email account note the following:
  1. Use load default if you are using gmail or yahoo. If you want to add your own default server (if you will add a couple of emails from that server) you can add it under Resources > SMTP Servers.
  2. The username is usually the full email address.
  3. If you are not using one of the default ones, you can get the Server, Port and SSL settings from your email service provider.
  4. Before you add the email,  click on test to make sure you added it correctly. You will receive a test email message.
  5. As mentioned, you can add as many emails as you want that you can use to send data or send email messages.

Step 2: Create a Payload
PAYLOAD: Payload in computing is the cargo of a data transmission. In computer security, payload refers to the part of malware which performs a malicious action.
In previous versions (and redpill Agent) payloads where called 'Install Modules'. The payload is the install program that will install the spy program on the target computer. A payload is disguised as another program that will give the target the idea that something else is being done while it secrtly installs the spy program.

From the Menu go to 'Social Engineering Payloads' > 'Social Engineering Payloads' and click on 'New Payload'.


  1. The Description will only be visible to you. You can use any descriptive name so that it will make is easy to later choose the correct payload (you can create as many as you want).
  2. The Social Engineering Template will populate the next 3 fields for you. There are several to choose from and you can also add more or edit the existing ones to work better for you.
  3. The Program Name, First and Second message will be set according to the Social Engineering Template that you selected, but you can change it here if you want.
  4. This account will be used to send the data. It will not be visible on the target computer.
  5. There are several attachment types to choose from. You need to keep in mind that different email services allows different types of attachments (sending and receiving). For this example we will use a ZIP File (you need to have WINRAR installed on your computer as redpill Hacker will use WINRAR to create the zip file).
  6. You select the payload filename (it is a good idea to make it similar to the program name) and where it should be saved on your computer. Be default it will use the redpill Hacker payload folder but you can also save it somewhere else.
  7. The email address where you want to receive the data .... it can be, but don't need to be, the same as number 4.
When you click on 'Create Payload' the payload will be created. You can use this payload at any time and as many times as you want. redpill Hacker can send the payload for you, but if you want to email the payload yourself, you can just open 'Social Engineering Payloads' again.


A list of all your payloads will be displayed. Select a payload to see information about the payload. To use it directly (if you don't want redpill Hacker to send it for you), simply click on 'Open Payload Location'. It will open a folder where the payload is saved.

Step 3: Add a Target

As mentioned in the previous section, you can email the payload directly, then you don't need to continue with these steps. If you want redpill Hacker to email the target, you need to add at least one target. The target is the person or computer you want to monitor.

From the Menu, select Targets > Add / Manage Targets.

Simply type in the target name (the name will be used in the email), the target email address and select any status. Click on 'Add' and then Close.

Step 4: Attack the Target

Now you are ready to do the attack. From the menu, select 'Social Engineering Payloads' > 'Social Engineering Attack'.


  1. Select the target you want to attack. You can also choose to attack a list of targets.
  2. Select the Social Engineering Template that redpill Hacker should use. To see what is in the template, you can go to Resources and Tools > Social Engineering Templates.
  3. Select the payload that you just created.
  4. Choose the email account that redpill Hacker should use to send the email. It does not need to be (but can be) the same account that the payload will use to send the data or where you will receive the data.
  5. Click on 'Attack Selected Target'. If you want to attack all the targets in the list, you can use the 'Attack All' button.
redpill Hacker will now send a personalized email to the target using the template you selected and attach the payload you selected. When the target runs the payload, you will start to receive data in the email account you specified.

There are a lot more you can do with redpill Hacker. Click on the 'redpill Hacker' topic in this blog to read more articles or watch videos about more advanced features and tips. 
To purchase redpill Hacker, go to http://www.redpill.co.za