Skip to content
/ CodeCloak Public

Find what part of the pentesting code/binary is being caught by anti viruses.

codecloak.onrender.com

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

drone911/CodeCloak

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

69 Commits
backend
backend
 
 
frontend
frontend
 
 
images
images
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

Code Cloak

Find what part of the pentesting code/binary is being caught by anti viruses.

Why this idea

During my penetration testing class, I discovered that the testing code and binaries I utilized were triggering alerts from Windows Anti-Malware Services. As antivirus programs typically do not specify which parts of the code or binaries are flagged, I inquired with my professor about methods to identify the specific signatures triggering the alerts. His suggestion involved employing a recursive approach to split and search through the code or binary files to pinpoint the flagged sections.

This method is not widely used as YARA rules specify minimum sizes, but it could still give a good starting point.

Screenshots

  1. Landing Page:

Landing Page Desktop View

2. Detections:

Detections Page Desktop View

About

Find what part of the pentesting code/binary is being caught by anti viruses.

codecloak.onrender.com

Topics

cybersecurity malware-detection

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages