Bashfuscator is a modular and extendable Bash obfuscation framework written in Python 3. It provides numerous different ways of making Bash one-liners or scripts much more difficult to understand. It accomplishes this by generating convulutaed, randomized Bash code that at runtime evaluates to the original input and executes it. Bashfuscator makes generating highly obfuscated Bash commands and scripts easy, both from the command line and as a Python library.

The purpose of this project to give Red Team the ability to bypass static detections on a Linux system, and the knowledge and tools to write better Bash obfuscation techniques.

This framework was also developed with Blue Team in mind. With this framework, Blue Team can easily generate thousands of unique obfuscated scripts or commands to help create and test detections of Bash obfuscation.

Supported file format:

Object Linking and Embedding Compound Files - (Microsoft Office 97-2003 DOC, XLS, PPT and any embedded into Microsoft Office files objects)

Office Open XML Files - (Microsoft Office 2007+ DOCX, PPTX (Partial Support))

Rich Text Format - (.RTF)

Shell Link Binary File Format - (.LNK)

Files in the abovementioned formats can be submitted compressed in the following archive types:

ZIP - (.ZIP) Password ' infected' is supported.

GZIP - (.GZ)

Manalyzer is a free service which performs static analysis on PE executables to detect undesirable behavior. Try it online, or check out the underlying software on GitHub!

https://www.justice.gov/opa/pr/three-members-notorious-international-cybercrime-group-fin7-custody-role-attacking-over-100