A cross-platform Remote Access Trojan (RAT) that uses Telegram as a communication channel to bypass network restrictions.
Cross Platform Telegram based RAT that communicates via telegram to evade network restrictions
TelegramRAT is designed for penetration testers and red teamers to remotely control compromised systems via Telegram, enabling covert command execution and data exfiltration even in restricted network environments. It is useful for scenarios where traditional C2 channels are blocked or monitored, leveraging Telegram's API for stealthy communication.
Users must create and configure a Telegram bot with proper API tokens and chat IDs for operation. This tool relies on Telegram's API and may be subject to Telegram's usage policies and rate limits. It is intended strictly for authorized penetration testing and red teaming; unauthorized use is illegal and unethical.
git clone https://github.com/machine1337/TelegramRAT.git
Create a Telegram bot via @BotFather and obtain the API_TOKEN
Get the chat_id by messaging @chatIDrobot
Insert API_TOKEN and chat_id into client.py at lines 16 and 17
Run python client.py on Windows or python3 client.py on Linux
Interact with the bot by sending commands through TelegramCMD Commands
Execute arbitrary shell commands directly via the Telegram bot
cd ..
Change to the parent directory on the target system
cd foldername
Change to a specified folder on the target system
download filename
Download a file from the target system
screenshot
Capture a screenshot of the target system
info
Retrieve system information from the target
location
Get the geographical location of the target system
get url
Download a file from a specified direct URL to the target