Setup
Setup Instructions for Kematian Stealer
If your reading this that means you've most likely chosen to use Kematian Stealer. Thank you.
Setup with prebuilt binaries
THIS IS NOT INTENDED FOR PEOPLE WHO WANT TO BUILD SOURCE BUT YOU SHOULD STILL READ BECAUSE IT HAS THE INSTRUCTIONS ON HOW TO USE THE STEALER
First, go to the releases for the V3 build here. Download the main.exe and run it for the first time. you SHOULD get a screen like as follows
Now, if your on windows 10 this won't look nearly as good due to how the windows 10 terminal works (same with windows 11 if you don't use the external terminal). Once you have this url open your favorite browser on the same pc and go to it (if your using the same terminal as me you can just press ctrl + click). Once on this website you should see an image such as this.
Once your on this screen your basically done. Next I will show you how to build your first payload. First, press on the builder button on the side menu, you should see a page like this.
Once on this page your basically done with the setup. Now, all you have to do is start a TCP tunnel on your favorite tcp forwarding site. For this example I am going to use playit.gg. You can use portmap an rdp or anything else but I prefer playit due to it's ease of use. To start, first thing you need to do is download playit.gg. Once you download it run the setup. After running the setup, open a new terminal (cmd or powershell) and type "playit" or go to the windows search bar and type playit and open it. Once you have your playit tunnel open it will tell you to go to the website to make an account. Once you have an account go to the agents/tunnels section and add a new tcp tunnel like so.
Once you have this press add tunnel and wait for it to create the new tunnel. Once you've done this it should look something like the image bellow.
The domain:PORT at the top is going to be the domain you use to build. At this point you might have to restart the playit app for it to start tunneling. Once you do it should look something like this.
Once you have this the url that has all the arrows pointing to it is forwarding ALL traffic to your localhost url (for me it's 127.0.0.1:44368). The important part for now is the PORT (the numbers after the ":"). Once I have these numbers I am going to go back to the ui and go to the settings tab.
Once I enter my new port (REMEMBER TO ADD YOUR OWN NOT MINE!!!) I am then going to restart the UI COMPLETELY by closing main.exe or main.py if your using source. Once I close it all I'm going to do is restart it. Once I restart it the URL IS NO LONGER THE SAME. Instead of 127.0.0.1:8080 it is now 127.0.0.1:THE_PORT_YOU_COPPIED . After going to this url your done and you can now recieve traffic from kematian!. To finish the build process all I'm going to do is copy the entire link that playit provided. In my case this is "KDOTFRFR.gl.at.ply.gg:44368". Now all I have to do is put this into the TCP TUNNEL URL:PORT and I'm done!
If you enjoyed this tutorial PLEASE leave a star on the github (it's all that motivates me to make new stuff 😭)
Last updated