[addtool] LOLSpoof #1739
Description
Link to the tool: https://... (minimum 1 required):
[link] https://github.com/itaymigdal/LOLSpoof [/link]
List of tags separated by comma: tag1,tag2,tag3... (required):
[tags] spoofing, post-exploitation, windows [/tags]
Short description of the tool (required, maximum 100 characters):
[short_descr] An interactive shell to spoof some LOLBins command line [/short_descr]
A bigger description (optional, but nice to have):
[long_descr] A an interactive shell program that automatically spoof the command line arguments of the spawned process. Just call your incriminate-looking command line LOLBin (e.g. powershell -w hidden -enc ZwBlAHQALQBwAHIAbwBjAGUA....) and LOLSpoof will ensure that the process creation telemetry appears legitimate and clear.
[/long_descr]
A link or an attached image (minimum 1 required):
[image]
[/image]