Mega Rat Pack Github May 2026

Introduction to Mega Rat Pack on GitHub

• Poison Ivy
• CyberGate
• BlackShades (infamous in FBI crackdowns)

# disguised as a screenshot tool
import socket, subprocess, os
# actual reverse shell payload

For Windows Users

• Enable Controlled Folder Access (part of Windows Defender).
• Block PowerShell and WMI from remote sources via Group Policy.
• Monitor outbound connections using tools like TCPView. RATs usually beacon to an IP address on ports 443, 8080, or 1604.