Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/LuxNoBulIshit/Smug_Fu3k

Last synced: 21 days ago
JSON representation

Host: GitHub
URL: https://github.com/LuxNoBulIshit/Smug_Fu3k
Owner: LuxNoBulIshit
Created: 2022-03-30T12:25:51.000Z (over 2 years ago)
Default Branch: master
Last Pushed: 2022-04-01T15:37:24.000Z (over 2 years ago)
Last Synced: 2024-08-05T17:27:10.204Z (4 months ago)
Language: C++
Size: 23.4 KB
Stars: 51
Watchers: 1
Forks: 9
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - LuxNoBulIshit/Smug_Fu3k - (C++)

README

# Smug_Fuck - Bring Your Own File and create your own Dropper.

File Smuggling HTML Smuggling techniques sidestep traditional network security solutions such as email scanners, proxies and sandboxes by using the features of HTML5 and Javascript.
This is done by generating the malicious HTML code within the browser on the target device which is already inside the security perimeter of the network.
![image](https://user-images.githubusercontent.com/51244609/161296127-9f95d581-0cb6-4c8a-933b-0a0fb69110c9.png)

![ezgif com-gif-maker (2)](https://user-images.githubusercontent.com/51244609/160845750-a525bcbe-c3ea-4ac9-bd1d-bd0924bfe3d5.gif)

There is two option for smuggling:

1) Base64
2) Bytes_array

there is one obsfucation method:

1)Url Decode (Utf-8).

On_The_Road_Map:

1) Add more Obfuscation technique (Speicaly Javascript obfuscation).
2) Add more Html Events and triggers to avoid sandbox detection such as (Onclick, Onmouseover, Onscroll, etc..).