sqlmap/extra/shutils/recloak.sh

#!/bin/bash

# NOTE: this script is for dev usage after AV something something

DIR=$(cd -P -- "$(dirname -- "${BASH_SOURCE[0]}")" && pwd -P)

cd $DIR/../../data/shell
find -regex ".*backdoor\.[a-z]*_" -type f -exec python ../../extra/cloak/cloak.py -d -i '{}' \;
find -regex ".*stager\.[a-z]*_" -type f -exec python ../../extra/cloak/cloak.py -d -i '{}' \;

cd $DIR/../cloak
sed -i 's/KEY = .*/KEY = b"'`python -c 'import random; import string; print("".join(random.sample(string.ascii_letters + string.digits, 16)))'`'"/g' cloak.py

cd $DIR/../../data/shell
find -regex ".*backdoor\.[a-z]*" -type f -exec python ../../extra/cloak/cloak.py -i '{}' \;
find -regex ".*stager\.[a-z]*" -type f -exec python ../../extra/cloak/cloak.py -i '{}' \;

git clean -f > /dev/null
Adding support for easier 'decloaking' (AV something something) 2020-08-31 12:34:12 +03:00			`#!/bin/bash`

			`# NOTE: this script is for dev usage after AV something something`

			`DIR=$(cd -P -- "$(dirname -- "${BASH_SOURCE[0]}")" && pwd -P)`

			`cd $DIR/../../data/shell`
Minor improvement 2020-08-31 12:55:14 +03:00			`find -regex ".backdoor\.[a-z]_" -type f -exec python ../../extra/cloak/cloak.py -d -i '{}' \;`
			`find -regex ".stager\.[a-z]_" -type f -exec python ../../extra/cloak/cloak.py -d -i '{}' \;`
Adding support for easier 'decloaking' (AV something something) 2020-08-31 12:34:12 +03:00
			`cd $DIR/../cloak`
			sed -i 's/KEY = .*/KEY = b"'`python -c 'import random; import string; print("".join(random.sample(string.ascii_letters + string.digits, 16)))'`'"/g' cloak.py

			`cd $DIR/../../data/shell`
Minor improvement 2020-08-31 12:55:14 +03:00			`find -regex ".backdoor\.[a-z]" -type f -exec python ../../extra/cloak/cloak.py -i '{}' \;`
			`find -regex ".stager\.[a-z]" -type f -exec python ../../extra/cloak/cloak.py -i '{}' \;`

			`git clean -f > /dev/null`