SharpShooter Logo

SharpShooter

0
Free
Visit Website

SharpShooter is a payload creation framework for the retrieval and execution of arbitrary CSharp source code. It leverages James Forshaw's DotNetToJavaScript tool to invoke methods from the SharpShooter DotNet serialised object. Payloads can be retrieved using Web or DNS delivery or both; SharpShooter is compatible with the MDSec ActiveBreach PowerDNS project. Alternatively, stageless payloads with embedded shellcode execution can also be generated for the same scripting formats. SharpShooter payloads are RC4 encrypted with a random key to provide some modest anti-virus evasion, and the project includes the capability to integrate sandbox detection and environment keying to assist in evading detection. SharpShooter includes a predefined CSharp template for executing shellcode with staged and staged payloads.

FEATURES

ALTERNATIVES

A strings statistics calculator for YARA rules to aid malware research.

A Python-based tool for detecting XSS vulnerabilities

A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.

A .NET wrapper for libyara that provides a simplified API for developing tools in C# and PowerShell.

Java decompiler for modern Java features up to Java 14.

Python 3 tool for parsing Yara rules with ongoing development.

YaraHunter scans container images, running Docker containers, and filesystems to find indicators of malware.

Automates the process of preparing Android APK files for HTTPS inspection

PINNED