lawndoc/RanSim lawndoc/RanSim

  • Stars
    star
    191
  • Rank 202,877 (Top 4 %)
  • Language
    PowerShell
  • License
    MIT License
  • Created about 3 years ago
  • Updated almost 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
lawndoc/RanSim
github

lawndoc

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Ransomware simulation script written in PowerShell. Useful for testing your defenses and backups against real ransomware-like activity in a controlled setting.

Logo

Description

RanSim is a ransomware simulation script written in PowerShell. It recurisively encrypts files in the target directory using 256-bit AES encryption. RanSim has no self-spreading capabilities and will only run on the system you execute it on.

You can use RanSim to test your defenses and backups against real ransomware-like activity in a controlled setting. The same script can be used to decrypt the files if needed.

Usage

Encrypt

.\RanSim.ps1 -Mode encrypt

Decrypt

.\RanSim.ps1 -Mode decrypt

Optional Parameters and Defaults

-TargetPath -> C:\RanSim

-Extension -> .encrypted

-Key -> Q5KyUru6wn82hlY9k8xUjJOPIC9da41jgRkpt21jo2L=

Other Global Variables

TargetFiles -> .pdf .xls* .ppt* .doc* .accd* .rtf .txt .csv .jpg .jpeg .png .gif .avi .midi .mov mp3 .mp4 .mpeg .mpeg2 .mpeg3 .mpg .ogg

Credits

The author of the FileCryptography.psm1 is Tyler Siegrist, and he is also credited in the module's docstring.

More Repositories

1

jaws

Jaws is an invisible programming language! Inject invisible code into other languages and files! Created for security research -- see blog post
C
232
star
2

Respotter

Respotter is a Responder honeypot! Catch attackers as soon as they spin up Responder in your environment.
Python
148
star
3

AdvancedHuntingQueries

Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
102
star
4

mediator

An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
Python
95
star
5

foxception

Isolated Firefox browser with pre-configured extensions. Customize with your own extensions as needed.
Dockerfile
21
star
6

github-leak-audit

A GitHub workflow to identify employees that have leaked your organization's code
Python
11
star
7

dual-license-templates

Various commercial license templates for dual-license use.
11
star
8

CAPy

A Certificate Authority microservice that can generate server/client certificates through an API interface
Python
7
star
9

winbin.wtf

WinBin.wtf is a Windows file documentation site to help you understand what various Windows files are, what they should do, and other useful information about them.
Python
5
star
10

lawndoc

3
star
11

pia-socks

Custom container and deployment configuration for a VPN reverse proxy. Eventually I plan to add compatibility with other VPN providers.
Dockerfile
2
star
12

flair

Repository for our Compilers class project.
Python
1
star
13

dotfiles

My Linux configuration files for easy setup
Vim Script
1
star
14

commander

Cross-platform endpoint agent framework with easy capability adding
Python
1
star
15

jailshell

Toy alternative shell mainly for CTF challenges that retains functionality while limiting capability in the event of an adversary gaining shell access. Also includes a honeypot bash emulator.
Python
1
star
16

kali-scripts

My scripts that I've made to do things more easily in Kali Linux
Python
1
star