redcode-labs/SNOWCRASH

Stars
238
Rank 168,576 (Top 4 %)
Language
Go
License
MIT License
Created about 4 years ago
Updated about 2 years ago

redcode-labs/SNOWCRASH

redcode-labs

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A polyglot payload generator

SNOWCRASH

A polyglot payload generator

Introduction

SNOWCRASH creates a script that can be launched on both Linux and Windows machines. Payload selected by the user (in this case combined Bash and Powershell code) is embedded into a single polyglot template, which is platform-agnostic.

There are few payloads available, including command execution, reverse shell establishment, binary execution and some more :>

Basic usage

Install dependencies: ./install.sh
List available payloads: ./snowcrash --list
Generate chosen payload: ./snowcrash --payload memexec --out polyglot_script
Change extension of the polyglot script: mv polyglot_script polyglot_script.ps1
Execute polyglot script on the target machine

Additional notes

Delay before script run and payload execution can be specified as an interval (using --sleep flag) in the form:

x[s|m|h]

where

x = Amount of interval to spend in idle state
s = Seconds
m = Sinutes
h = Hours

After generation, the extension of generated script containing the payload can be set either to .sh or .ps1 (depending on the platform we want to target).

Generated payload can be written directly to STDOUT (instead of writing to a file) using --stdout flag.

Screenshots

License

This software is under MIT License

neurax

A framework for constructing self-spreading binaries

Coldfire

Golang malware development library

Bashark

Bash post exploitation toolkit

easyWSL

Create WSL distros based on Docker Images.

Citadel

Collection of pentesting scripts

Revssl

A script that automates generation of OpenSSL reverse shells

GoSH

Golang reverse/bind shell generator

AirStrike

Automatically grab and crack WPA-2 handshakes with distributed client-server architecture

RedNixOS

NixOS-based 'distro' for cybersecurity enthusiasts

Netenum

A tool to passively discover active hosts on a network

Sammler

A tool to extract useful data from documents

VTSCAN

VirusTotal API script

RedNix

Hackable NixOS container

BMJ

Code snippets for bare-metal malware development

YAS

Yet Another Sniffer for monitoring network traffic

GodSpeed

Fast and intuitive manager for multiple reverse shells

UnChain

A tool to find redirection chains in multiple URLs

meducat

Combinations of default usernames and passwords for the Medusa and Hashcat password cracker

REVENANT

Volatile ELF payloads generator with Metasploit integrations for testing GNU/Linux ecosystems

Solaris

A local LKM rootkit loader/dropper that lists available security mechanisms

Svetovid

A bunch of post exploitation tools + reverse proxy server

pentest-cheatsh-it

Pentesting cheatsheet

RedSand

Windows SandBox environment for cybersecurity enthusiasts

poXSSon

A framework for easy payloads development and deployment, collection of customizable XSS payloads

Penthon

Useful python functions for pentesting, networking, data conversion and automation

POWERPROMPT

A colorful, informative prompt for Zsh

RedHash

Medusa combo files, Hashcat rules and dictionaries, JRT rules

RedMark

Our fork of Iceman's fork for Proxmark III

LLT

Shellcoding scripts and utilities

word-processing-rules

Rules for Hashcat, HCRE and JTR

talks

slides from talks of our members