HackGit

23 Aug 2023 14:16

​​Augustus

A Golang loader that execute the shellcode utilizing the process hollowing technique with anti-sandbox and anti-analysis measures. The shellcode is encrypted with the Triple DES (3DES) encryption algorithm. Full EDR bypass with any C2 Framework. Tested with Cobalt Strike against MDE EDR.

• 3DES Encryption
• Sandbox Evasion
• Analysis Evasion
• Process Hollowing

https://github.com/TunnelGRE/Augustus

#infosec #pentesting #redteam