• Stars
    star
    206
  • Rank 190,504 (Top 4 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created over 4 years ago
  • Updated almost 4 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

DropEngine provides a malleable framework for creating shellcode runners, allowing operators to choose from a selection of components and combine them to create highly sophisticated payloads within seconds.

DropEngine

by @s0lst1c3

Current release: v0.1.0-alpha

Supports Python 3.7+.

Overview

Defense Evasion techniques tend to have a short shelf-life, and this is especially true for techniques used during initial access. Because of this, initial access payloads are often prepared on a per-engagement basis, which can be time-consuming when payloads are created entirely by hand. DropEngine addresses this problem by providing a malleable framework for creating shellcode runners, allowing operators to choose from a selection of components and combine them to create highly sophisticated payloads within seconds.

Available payload components include crypters, execution and injection mechanisms, as well as environmental and remote keying functions. Also included are pre-execution modules such as sandbox checks and AMSI bypasses. Although these pre-packaged example modules may prove useful, DropEngine's true strength is in its ability to improve operational efficiency by providing a high degree of payload standardization while simultaneously allowing operators to control just about every aspect of the payload's signature and behavior.

Disclaimer

DropEngine (the "Software") and associated documentation is provided β€œAS IS”. The Developer makes no other warranties, express or implied, and hereby disclaims all implied warranties, including any warranty of merchantability and warranty of fitness for a particular purpose. Any actions or activities related to the use of the Software are the sole responsibility of the end user. The Developer will not be held responsible in the event that any criminal charges are brought against any individuals using or misusing the Software. It is up to the end user to use the Software in an authorized manner and to ensure that their use complies with all applicable laws and regulations.

Documentation

All documentation is available on the project's Wiki, which can be found here: https://github.com/s0lst1c3/dropengine/wiki

Contributing

Contributions are encouraged and more than welcome. Guidelines for creating pull requests and reporting issues can be found in CONTRIBUTING.md.

Versioning

We use SemVer for versioning. For the versions available, see https://github.com/s0lst1c3/dropengine/tags.

License

This project is licensed under the GNU Public License 3.0 - see the LICENSE.md file for details.

Acknowledgments

This tool either builds upon, is inspired by, or directly incorporates nearly ten years of prior research and development from the following awesome people:

This list will likely grow as additional functionality is added to the project.

For a complete description of what each of these people has contributed to the current payload development landscape and this tool, please see:

More Repositories

1

eaphammer

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
C
2,006
star
2

silentbridge

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.
C
218
star
3

sentrygun

Rogue AP killer
Python
87
star
4

evil_twin

Python script for peforming basic Evil Twin attacks on open wifi networks. Written for my tutorial on the subject.
Python
37
star
5

grey_harvest

Scrapes the web for reliable http or https proxies and prints them to stdout. Can also be used as a python library to easily generate reliable proxies for use within Python applications.
Python
34
star
6

SharpFinder

C#
30
star
7

awae

Python
16
star
8

sentrygun-server

Python
14
star
9

rudydos

RUDY DOS attack script
Python
13
star
10

keyboardsnitch

Python
12
star
11

s0lst1c3.github.io

CSS
11
star
12

hostapd-eaphammer

[DEPRECATED UNTIL FURTHER NOTICE... use hostapd from s0lst1c3/eaphammer repo] Hostapd 2.6 patched with a trimmed version of hostapd-wpe for use in eaphammer
C
6
star
13

custom-ssh-backdoor

Custom ssh backdoor, coded in python using Paramiko
Python
5
star
14

allthecookies

Shell
5
star
15

osx_mic_record

Small command-line utility for recording audio using the builtin MacOS webcam mic.
Objective-C
4
star
16

bind_cannon

Asynchronous SSH bruteforcer written in Python 2.7 with parallel processing.
Python
3
star
17

hello.asm

Hello world in x86 nasm
Assembly
3
star
18

GhostalService

A mass emailer with 'from' header spoofing. Python 3.4.
Python
3
star
19

zot.li

Python
3
star
20

administration

Shell
2
star
21

mongodumper

Python
2
star
22

awae-ad-setup-scripts

PowerShell
2
star
23

txlab-ssh-callhome-scripts

Python
2
star
24

RomanNumerals

Simple javascript app that uses a stack based algorithm to convert roman numerals to base-10 ints.
JavaScript
2
star
25

owe-lab

Python
2
star
26

hostap-owe

C
1
star
27

RawBytes

Simple mutable raw byte array written in C
C++
1
star
28

proxychains_autoconf

Automagically generate a reliable proxylist for your proxychains.conf file
1
star
29

gamewarden

Python
1
star
30

dotify

Shell
1
star
31

benfords-law

Fraud detection script in homage of the methods used by the IRS
Python
1
star
32

stdez

Library for things I find myself doing a lot
C
1
star
33

arpsiege

Python
1
star
34

keylogger

Python
1
star
35

smf-gremlin

SMF password cracker
Python
1
star