• XSS.stack #1 – первый литературный журнал от юзеров форума

Malware Anti Forensic

Отслеживать
Night_Watch3r

Night_Watch3r

floppy-диск
Пользователь
Регистрация
20.12.2022
Сообщения
3
Реакции
6
The tool which I found by mistake on github which now i use to evade forensics for my malware code. Inspired by NSA's Marble Framework the Nexfuse Framework is also an anti-forensics tool to translates the comments for your malware source code, It is an open source framework available on github:

.

[ FEATURES ]
  • It is build in python with.
  • user-friendly UI.
  • multiple language selection.
  • multiple programming language support.
  • Open source.

nexfuse.png
 
ZAGREB2030 сказал(а):
прикольно выглядит код на инглише, а коменты на русском ) - это не будет фунтпринтом сорцев
да, но в репозитории написано, что он все еще находится в разработке. Я думаю, они обновят код. (Будем надеяться на дальнейшее развитие)
 
god osiris сказал(а):
?? "anti forensic" but he tool is just a translator?
When ever Digital forensics finds any piece of malware/code they decrypt/decompile the code to check the code patterns, comments, variable, etc to check the origin of the malware. So NSA made marble framework so that they can mislead the forensics from the origin of code. Well the Marble framework was more than just translating the comments, But im sure that Nexfuse will get update in future too as they have said in their repo.
 
Night_Watch3r сказал(а):
When ever Digital forensics finds any piece of malware/code they decrypt/decompile the code to check the code patterns, comments, variable, etc to check the origin of the malware. So NSA made marble framework so that they can mislead the forensics from the origin of code. Well the Marble framework was more than just translating the comments, But im sure that Nexfuse will get update in future too as they have said in their repo.
Yeah, that was I was wondering, mislead the origin of code.
 
admin


Напишите ответ...
  • Вставить:
Прикрепить файлы
Верх