GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → KooroshRZ → Evader

KooroshRZ / Evader

Licence: other
Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)

Programming Languages

C++
36643 projects - #6 most used programming language
c
50402 projects - #5 most used programming language

Labels

packerevasioncrypterantivirus-evasion

Projects that are alternatives of or similar to Evader

Xeexe Topantivirusevasion
Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable
Stars: ✭ 387 (+350%)
Mutual labels:  evasion, antivirus-evasion
MsfMania
Python AV Evasion Tools
Stars: ✭ 388 (+351.16%)
Mutual labels:  evasion, antivirus-evasion
Hacktheworld
An Python Script For Generating Payloads that Bypasses All Antivirus so far .
Stars: ✭ 527 (+512.79%)
Mutual labels:  evasion, antivirus-evasion
DNSWho
transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV
Stars: ✭ 47 (-45.35%)
Mutual labels:  evasion, antivirus-evasion
unprotect
Unprotect is a python tool for parsing PE malware and extract evasion techniques.
Stars: ✭ 75 (-12.79%)
Mutual labels:  packer, evasion
packer-windows
Windows Templates for Packer: Windows 11, Windows 10, Windows Server 2022, 2019, 2016, also with Docker
Stars: ✭ 1,116 (+1197.67%)
Mutual labels:  packer
JustEvadeBro
JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
Stars: ✭ 63 (-26.74%)
Mutual labels:  evasion
WeDefend
⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-73.26%)
Mutual labels:  crypter
proxmox-ve
Proxmox VE Vagrant Base Box
Stars: ✭ 70 (-18.6%)
Mutual labels:  packer
pkenv
Packer version manager
Stars: ✭ 50 (-41.86%)
Mutual labels:  packer
packer-FreeBSD
Build a FreeBSD VM for Vagrant using packer
Stars: ✭ 23 (-73.26%)
Mutual labels:  packer
docker-files
Teracy docker-files project to build common Docker images
Stars: ✭ 87 (+1.16%)
Mutual labels:  packer
local-hashicorp-stack
Local Hashicorp Stack for DevOps Development without Hypervisor or Cloud
Stars: ✭ 23 (-73.26%)
Mutual labels:  packer
kubash
Kubash - the K8$ shell for your kube clusters
Stars: ✭ 20 (-76.74%)
Mutual labels:  packer
DreamProtectorFree
Simple protector to show how to run a payload without dropping it using RunPE Technique
Stars: ✭ 32 (-62.79%)
Mutual labels:  crypter
opnsense-starterkit
Try opnsense, build opnsense images or start development
Stars: ✭ 18 (-79.07%)
Mutual labels:  packer
dockpack
This project uses ansible, packer and vagrant to create an agile lab.
Stars: ✭ 13 (-84.88%)
Mutual labels:  packer
packer-kali linux
This is a repository that will be used to help create a process of a new kali vagrant box for hashicorp each week.
Stars: ✭ 36 (-58.14%)
Mutual labels:  packer
icp-ce-on-linux-containers
Multi node IBM Cloud Private Community Edition 3.2.x w/ Kubernetes 1.13.5 in a Box. Terraform, Packer and BASH based Infrastructure as Code script sets up a multi node LXD cluster, installs ICP-CE and clis on a metal or VM Ubuntu 18.04 host.
Stars: ✭ 52 (-39.53%)
Mutual labels:  packer
packer-vagrant-builder
Build Solaris,CentOS or Ubuntu Vagrant box with puppet rpm's
Stars: ✭ 49 (-43.02%)
Mutual labels:  packer
View All Similar Projects ➔

Evader

========

It's an exe packer (and a crypter) which will encrypt your PE exe input file and add it as resource to the end of the output new exe file The encryption key size and complexity can be given as input

Usage of packer (Encryption)

packer.exe <input-path> <output-path> <key-size> <start-ascii> <end-ascii>

The complexity of encryption key will be determined by and

for example this command will lead to keys from AAAA to ZZZZ

packer.exe <input-path> <output-path> 4 65 90

The Decryption part

Decryption isn't like other packers stub and it's based on bruteforcing and examining each character to retrieve the encryption key! why!?

And after retrieving key the encrypted payload will be decrypted and will be run directly inside memory and in form of char[] whcih is contained each byte of the main PE file!

Credits

https://www.codeproject.com/Articles/5035/How-to-Write-a-Simple-Packer-Unpacker-with-a-Self https://www.youtube.com/watch?v=bQWRW0VUXR4

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].