PackMyPayload | A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risk

by mgeeky Python Version: Current License: MIT

X-Ray Key Features Code Snippets Community Discussions Vulnerabilities Install Support

kandi X-RAY | PackMyPayload Summary

PackMyPayload is a Python library. PackMyPayload has no bugs, it has no vulnerabilities, it has build file available, it has a Permissive License and it has low support. You can download it from GitHub.

[Jump to supported formats] This tool takes a file or directory on input and embeds them into an output file acting as an archive/container. It can serve purpose for a Proof-of-Concept presenting emerging risk of container file formats with embedded malware, as well as helper for professional Red Team Operators to sharpen their Initial Access maneuvers. Currently Threat Actors are known to smuggle their malware archived in various container file formats, to name a few: - 7zip - zip - ISO - IMG. They do that to get their payloads pass file content scanners, but more importantly to avoid having Mark-Of-The-Web flag on their files. There’re various motives on why adversaries don’t want MOTW on their files: Protected View in Microsoft Office was always among them. Should they provide container file to their victims, a foundation for disabling VBA macros in Internet-originated Office documents might be bypassed.

Support

Quality

Security

License

Reuse

Support

PackMyPayload has a low active ecosystem.

It has 670 star(s) with 117 fork(s). There are 16 watchers for this library.

It had no major release in the last 6 months.

There are 1 open issues and 4 have been closed. On average issues are closed in 2 days. There are no pull requests.

It has a neutral sentiment in the developer community.

The latest version of PackMyPayload is current.

Quality

PackMyPayload has no bugs reported.

Security

PackMyPayload has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.

License

PackMyPayload is licensed under the MIT License. This license is Permissive.

Permissive licenses have the least restrictions, and you can use them in most projects.

Reuse

PackMyPayload releases are not available. You will need to build from source code and install.

Build file is available. You can build the component from source.

Installation instructions, examples and code snippets are available.

Top functions reviewed by kandi - BETA

kandi's functional review helps you automatically verify the functionalities of the libraries and avoid rework.
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of PackMyPayload

Get all kandi verified functions for this library.

PackMyPayload Key Features

No Key Features are available at this moment for PackMyPayload.

PackMyPayload Examples and Code Snippets

No Code Snippets are available at this moment for PackMyPayload.

Community Discussions

No Community Discussions are available at this moment for PackMyPayload.Refer to stack overflow page for discussions.

Community Discussions, Code Snippets contain sources that include Stack Exchange Network

Vulnerabilities

No vulnerabilities reported

Install PackMyPayload

Clone this repository
Install requirements:

Support

This and other projects are outcome of sleepless nights and plenty of hard work. If you like what I do and appreciate that I always give back to the community, [Consider buying me a coffee](https://github.com/sponsors/mgeeky) (or better a beer) just to say thank you! 💪.

Find more information at: