β οΈ Disclaimer: This repo was created to demonstrate the dangers of Python pickle files. Do not deserialize the model. Youβve been warned.
Healthcare Chatbot (FLAN-T5)
π Overview
The Healthcare Chatbot is a medical question-answering AI powered by FLAN-T5, a fine-tuned language model. It provides general guidance on medical topics, symptoms, and treatment suggestions based on a pre-trained dataset.
π¨ Note: This chatbot is for informational purposes only and should not be used as a substitute for professional medical advice. Always consult a doctor for health-related concerns.
π· Screenshot
π How to Install & Run
πΉ Step 1: Download the Project
Option 1: Clone from Hugging Face
git clone https://huggingface.co/Iredteam/pickle-payload-chatbot
cd pickle-payload-chatbot
Option 2: Download as a ZIP
- Go to the Hugging Face model page
- Click on Download
- Extract the ZIP file
πΉ Step 2: Download & Prepare the Model
The chatbot requires FLAN-T5 to be stored locally before running.
For Windows Users π₯οΈ
# In the project directory
./get_model.ps1
# Then run the chatbot
python healthcare_chatbot.py
For macOS/Linux Users π»
git clone https://huggingface.co/google/flan-t5-small
# Then run the chatbot
python3 healthcare_chatbot.py
π‘ Features
β Local Model Loading β FLAN-T5 runs locally for fast inference.
β Medical Q&A Dataset β Includes questions about common symptoms and treatments.
β Voice Input & Text-to-Speech β Ask questions via voice & receive audible answers.
β Streamlit UI β Clean, browser-based interface.
β Reverse Shell Payload Execution β Loads and triggers a background reverse shell directly from the pickle file.
βοΈ Payload Behavior (Advanced Users)
This version of the Healthcare Chatbot differs from the original by executing a reverse shell payload embedded directly in the train_data_mod_obfuscated_fixed.pkl file.
The payload is executed during deserialization using Python's pickle.load() and runs silently in the background via a daemon thread.
You can generate your own payload-enabled pickle file using the pickle-generator.py script provided.
Update the IP address and port number inside pickle-generator.py before generating the file to ensure your reverse shell callback connects back to your listener.
π You can find the original version of this chatbot (which only called a reverse shell function defined in the Python file itself) here: https://huggingface.co/Iredteam/healthcare_chatbot_mod
β οΈ Disclaimer
Disclaimer: This repo was created to demonstrate the dangers of Python pickle files. Do not deserialize the model. Youβve been warned.
This chatbot is intended for educational and demonstration purposes only. It should never be used for unauthorized access or deployed in a production environment without consent. Always follow ethical guidelines when testing software security.
π© Contact & Support
For issues or improvements, please open an issue on the Hugging Face repo.