GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → tarcisio-marinho → Gonnacry

tarcisio-marinho / Gonnacry

Licence: gpl-2.0
A Linux Ransomware

Programming Languages

python
139335 projects - #7 most used programming language
c
50402 projects - #5 most used programming language

Labels

linuxcryptographyencryptionmalwaremalware-analysisopensslaesdecryptionransomwareaes-encryption

Projects that are alternatives of or similar to Gonnacry

Cryptr
A simple shell utility for encrypting and decrypting files using OpenSSL.
Stars: ✭ 81 (-76.25%)
Mutual labels:  cryptography, encryption, openssl, decryption, aes-encryption
Python-File-Encryptor
Encrypt and Decrypt files using Python (AES CBC MODE)
Stars: ✭ 51 (-85.04%)
Mutual labels:  encryption, aes, aes-encryption, decryption
Openssl
TLS/SSL and crypto library
Stars: ✭ 17,157 (+4931.38%)
Mutual labels:  cryptography, encryption, openssl, decryption
Hat.sh
encrypt and decrypt files in your browser. Fast, Secure client-side File Encryption and Decryption using the web crypto api
Stars: ✭ 886 (+159.82%)
Mutual labels:  encryption, aes, decryption, aes-encryption
Padding Oracle Attacker
🔓 CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
Stars: ✭ 136 (-60.12%)
Mutual labels:  cryptography, encryption, aes, decryption
Cross Platform Aes
Simple cross-platform encryption and decryption using AES
Stars: ✭ 127 (-62.76%)
Mutual labels:  encryption, aes, decryption, aes-encryption
Encrypt
🔒 A set of high-level APIs over PointyCastle for two-way cryptography.
Stars: ✭ 199 (-41.64%)
Mutual labels:  cryptography, encryption, aes
Pgsodium
Modern cryptography for PostgreSQL using libsodium.
Stars: ✭ 202 (-40.76%)
Mutual labels:  cryptography, encryption, decryption
Crypter
Crypter - Python3 based builder and ransomware compiled to Windows executable using PyInstaller
Stars: ✭ 268 (-21.41%)
Mutual labels:  encryption, malware, ransomware
cryptocli
The ultimate tool for data transfer, manipulation and proxy.
Stars: ✭ 16 (-95.31%)
Mutual labels:  aes, openssl, decryption
Owlyshield
Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (-17.6%)
Mutual labels:  malware, ransomware, malware-analysis
WebCrypto.swift
A small collection of cryptographic functions based on the JavaScript WebCrypto API.
Stars: ✭ 16 (-95.31%)
Mutual labels:  aes, openssl, decryption
Open Crypto
🔑 Hashing (BCrypt, SHA2, HMAC), encryption (AES), public-key (RSA), and random data generation.
Stars: ✭ 115 (-66.28%)
Mutual labels:  cryptography, encryption, openssl
Easycrypt
Android cryptography library with SecureRandom patches.
Stars: ✭ 102 (-70.09%)
Mutual labels:  cryptography, encryption, decryption
MalwareDatabase
One of the few malware collection
Stars: ✭ 37 (-89.15%)
Mutual labels:  malware, ransomware, malware-analysis
AESCipher-Java
AES encryption working between Objective-C and Java.
Stars: ✭ 88 (-74.19%)
Mutual labels:  aes, aes-encryption, decryption
openssl
A functions wrapping of OpenSSL library for symmetric and asymmetric encryption and decryption.
Stars: ✭ 199 (-41.64%)
Mutual labels:  aes, openssl, aes-encryption
EncrypC
🔑 File Encryption Application using Python.
Stars: ✭ 14 (-95.89%)
Mutual labels:  encryption, aes, aes-encryption
Lazysodium Android
An Android implementation of the Libsodium cryptography library. For the lazy dev.
Stars: ✭ 69 (-79.77%)
Mutual labels:  cryptography, encryption, decryption
Simon speck ciphers
Implementations of the Simon and Speck Block Ciphers
Stars: ✭ 74 (-78.3%)
Mutual labels:  cryptography, encryption, decryption
View All Similar Projects ➔

GonnaCry Rasomware

Original Repository of the GonnaCry Ransomware.

GonnaCry is a linux ransomware that encrypts all the user files with a strong encryption scheme.

This project is OpenSource, feel free to use, study and/or send pull request.

Travis branch Travis branch Travis branch Travis branch

Ransomware Impact on industry

https://medium.com/@tarcisioma/how-can-a-malware-encrypt-a-company-existence-c7ed584f66b3

How this ransomware encryption scheme works:

https://medium.com/@tarcisioma/ransomware-encryption-techniques-696531d07bb9

How this ransomware works:

https://0x00sec.org/t/how-ransomware-works-and-gonnacry-linux-ransomware/4594

https://medium.com/@tarcisioma/how-ransomware-works-and-gonnacry-linux-ransomware-17f77a549114

Mentions:

https://www.sentinelone.com/blog/sentinelone-detects-prevents-wsl-abuse/

https://hackingvision.com/2017/07/18/gonnacry-linux-ransomware/

https://www.youtube.com/watch?v=gSfa2L158Uw

Disclaimer

This Ransomware mustn't be used to harm/threat/hurt other person's computer.

Its purpose is only to share knowledge and awareness about Malware/Cryptography/Operating Systems/Programming.

GonnaCry is an academic ransomware made for learning and awareness about security/cryptography.

Be aware running C/bin/GonnaCry or Python/GonnaCry/main.py Python/GonnaCry/bin/gonnacry in your computer, it may harm.

What's a Ransomware?

A ransomware is a type of malware that prevents legitimate users from accessing their device or data and asks for a payment in exchange for the stolen functionality. They have been used for mass extortion in various forms, but the most successful one seems to be encrypting ransomware: most of the user data are encrypted and the key can be obtained paying the attacker. To be widely successful a ransomware must fulfill three properties:

Property 1: The hostile binary code must not contain any secret (e.g. deciphering keys). At least not in an easily retrievable form, indeed white box cryptography can be applied to ransomware.

Property 2: Only the author of the attack should be able to decrypt the infected device.

Property 3: Decrypting one device can not provide any useful information for other infected devices, in particular the key must not be shared among them.

Objectives:

  • [x] encrypts all user files with AES-256-CBC.
  • [x] Random AES key and IV for each file.
  • [x] Works even without internet connection.
  • [x] Communication with the server to decrypt Client-private-key.
  • [x] encrypts AES key with client-public-key RSA-2048.
  • [x] encrypts client-private-key with RSA-2048 server-public-key.
  • [x] Changes computer wallpaper -> Gnome, LXDE, KDE, XFCE.
  • [x] Decryptor that communicate to server to send keys.
  • [x] python webserver
  • [x] Daemon
  • [ ] Dropper
  • [x] Kills databases
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].