Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/e3prom/kryptoxin
A security-oriented payload encryption tool written in Python.
https://github.com/e3prom/kryptoxin
aes cryptography encryption encryptor penetration-testing pentesting programming red-team security
Last synced: about 10 hours ago
JSON representation
A security-oriented payload encryption tool written in Python.
- Host: GitHub
- URL: https://github.com/e3prom/kryptoxin
- Owner: e3prom
- License: agpl-3.0
- Created: 2023-02-21T15:33:35.000Z (over 1 year ago)
- Default Branch: master
- Last Pushed: 2024-07-10T00:44:51.000Z (4 months ago)
- Last Synced: 2024-08-18T01:10:57.949Z (3 months ago)
- Topics: aes, cryptography, encryption, encryptor, penetration-testing, pentesting, programming, red-team, security
- Language: Python
- Homepage: https://e3prom.github.io/kryptoxin/
- Size: 777 KB
- Stars: 4
- Watchers: 1
- Forks: 0
- Open Issues: 5
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Support: docs/support.md
Awesome Lists containing this project
README
# Kryptoxin
[](https://github.com/e3prom/Kryptoxin/releases)
[](https://github.com/e3prom/kryptoxin/issues)
[](https://e3prom.github.io/kryptoxin/)
[](https://github.com/e3prom/kryptoxin/actions/workflows/python-unittest.yml)
[](https://raw.githubusercontent.com/e3prom/kryptoxin/master/LICENSE)
- [Kryptoxin](#kryptoxin)
- [Description](#description)
- [Features](#features)
- [Installation](#installation)
- [With pip (latest release)](#with-pip-latest-release)
- [With git (v0.9.9)](#with-git-v099)
- [Usages examples](#usages-examples)
- [Read, encrypt and decrypt, all from stdin](#read-encrypt-and-decrypt-all-from-stdin)
- [Encrypt using AES-128-CFB](#encrypt-using-aes-128-cfb)
- [Uses the PowerShell `load-asm` script template](#uses-the-powershell-load-asm-script-template)
- [Documentation](#documentation)
- [Disclaimer](#disclaimer)
- [License](#license)
## Description
Kryptoxin is a Python tool allowing you to generate encrypted payloads effortlessly. This software is primarily intended for use in the security field for storing encrypted objects on target hosts. It can also be used for concealing scripts and binary objects from scrutiny.
The name `Kryptoxin` comes from the contraction of `Kryptos` (meaning `conceal`, `hidden` or `secret` in Greek) and the word `Toxin` (meaning `poison`). As the name implies, the intended goal of this project is to provide a fast and efficient way of concealing or hiding payloads, thus saving you a lot of time and effort. Most of our templates are "living off the land", using system libraries and encryption routines commonly found in base operating systems installations.
## Features
The below features are supported:
- Provides block-cipher encryption algorithms such as the `Advanced Encryption Standard` or `AES`.
- Implements basic encryption ciphers such as a derivative of the [`Caesar Cipher`](https://en.wikipedia.org/wiki/Caesar_cipher).
- Supports user-specifiable key sizes and block-cipher modes of operations, such as `AES256-CBC`.
- Generate random cryptographic parameters such as `Initialization Vector` and `Salt`.
- Encodes and properly formats variables for fast and streamlined copy/paste operations.
- Handles `Text Files`, `Scripts`, `Portable Executables (PE)`, `Dynamic Link Libraries (DLLs)`, and `shellcodes` objects.
- Generates compact, portable scripts or source codes as outputs for the below programming languages:
- [x] PowerShell
- [x] VBA Macro
- [x] C#
- [ ] C++
- [ ] C
- Implement key derivation functions, such as `PBKDF2`.
- Supports out-of-band key storage, with conditional trigger mechanisms (not yet available).
- Includes scripts and source code templates to be used for security-related tasks and experimentation.
## Installation
### With pip (latest release)
``` sh
pip install kryptoxin
```
### With git (v0.9.9)
``` sh
git clone https://github.com/e3prom/kryptoxin
cd kryptoxin
git checkout tags/0.9.9
sudo make install
```
## Usages examples
### Read, encrypt and decrypt, all from stdin
``` {sh .no-copy}
$ echo -n 'test' | python -m kryptoxin encrypt -k 12345
5bP32GKoJa57IcKL4sWeUQ==
$ echo -n '5bP32GKoJa57IcKL4sWeUQ==' | python -m kryptoxin decrypt -k 12345
test
```
### Encrypt using AES-128-CFB
``` {sh .no-copy}
$ echo -n 'test' | python -m kryptoxin encrypt -k 12345 --alg aes --key_size 128 --mode CFB
E1ZdkFX+N4SjHtcsSi5m2g==
```
### Uses the PowerShell `load-asm` script template
``` {sh .no-copy}
$ python -m kryptoxin encrypt -k 123456 --random-iv --random-salt \
--lang powershell --action load_asm --in TestLibrary.dll \
--type=TestLibraryClass.Class1 --method=run
2023-03-04 17:33:42,287 - INFO - The Initialization Vector (IV) is: c15c8447204e9025a8ef1e4dd2ea80da
2023-03-04 17:33:42,287 - INFO - The PBKDF2 Salt is: 85858c9115145be223d36750464b8026
$base64EncData = "3Ud7pHQPm/qWOjgtuNOXP2WclPMxz6VuhfRTnwNXDyg="
[...]
```
## Documentation
You can directly visit the [online documentation](https://e3prom.github.io/kryptoxin/) or build it locally using the `make docs` command.
## Disclaimer
This program is distributed "AS IS" without any warranty or conditions of any kind. Under no circumstances can the developers, maintainers, or contributors be held responsible for the improper use of this software. Any damages or consequences resulting from the direct or indirect operation of this software cannot be attributed to the above-mentioned individuals or organizations. All opinions and knowledge expressed in the source codes, documentation, templates and examples are provided for educational and demonstration purposes only. By using this software you agree to the terms expressed therein.
## License
Kryptoxin is released under the AGPL-3 license. See [LICENSE](LICENSE) for more detail.