Skip to content

redcode-labs/Coldfire

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

116 Commits
.github/workflows
.github/workflows
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
cmd.go
cmd.go
 
 
cmd_linux.go
cmd_linux.go
 
 
cmd_windows.go
cmd_windows.go
 
 
coldfire.go
coldfire.go
 
 
coldfire.png
coldfire.png
 
 
coldfire_linux.go
coldfire_linux.go
 
 
coldfire_windows.go
coldfire_windows.go
 
 
crypto.go
crypto.go
 
 
data_manipulation.go
data_manipulation.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
io.go
io.go
 
 
low.go
low.go
 
 
net.go
net.go
 
 
net_linux.go
net_linux.go
 
 
net_windows.go
net_windows.go
 
 
ngrok.go
ngrok.go
 
 
os.go
os.go
 
 
os_linux.go
os_linux.go
 
 
os_test.go
os_test.go
 
 
os_windows.go
os_windows.go
 
 
random.go
random.go
 
 
sandbox.go
sandbox.go
 
 
sandbox_linux.go
sandbox_linux.go
 
 
sandbox_windows.go
sandbox_windows.go
 
 
wrappers.go
wrappers.go
 
 

Repository files navigation

ColdFire II


Golang malware development framework

Table of Contents

Introduction

ColdFire II provides various methods useful for malware and security infra development in Golang.

Most functions are compatible with both Linux and Windows operating systems.

Installation

go get github.com/redcode-labs/Coldfire

Docs

Coming soon

Types of functions included (for maldev)

  • Logging
  • Auxiliary
  • Reconnaissance
  • Evasion
  • Administration
  • Sandbox detection
  • Disruptive
  • Low-level

Types of functions included (for infra)

  • Network manipulations
  • Cryptography
  • IO with specialized readers
  • Tunneling
  • Target processing

Requirements

"github.com/google/gopacket"
"github.com/google/gopacket/layers"
"github.com/google/gopacket/pcap"
"github.com/robfig/cron"
"github.com/anvie/port-scanner"
"github.com/matishsiao/goInfo"
"github.com/fatih/color"
"github.com/minio/minio/pkg/disk"
"github.com/dustin/go-humanize"
"github.com/mitchellh/go-ps"
"github.com/GeertJohan/yubigo"
"github.com/go-sql-driver/mysql"
"github.com/ztrue/tracerr"
"github.com/yalue/elf_reader"

Disclaimer

Developers are not responsible for any misuse regarding this tool. Use it only against systems that you are permitted to attack.

License

This software is under MIT license

About

Golang malware development library

Topics

golang malware golang-library malware-research malware-development

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

934 stars

Watchers

27 watching

Forks

142 forks
Report repository

Releases

No releases published

Contributors 14

Languages