🙄
p1k4chu@p1k4chu-host
  • About Me
  • Tools
    • Defensive Tools
      • H0neyTr4p
    • Offensive Tools
      • Ransomware Simulator - PyRan
  • Security Research
    • AI Security Research
      • Attacking using (and defending against) Input manipulation attacks against AI
      • (Ab)using AI to attack M365 and other services to conduct plethora of attacks
    • Cloud Security Research
      • Azure Storage Account Security - Attack & Defend: Part 1
      • Attack and Defend Azure Serial Console - Part 1
      • Azure Serial Console Attack and Defense - Part 2
    • Adversarial Tradecraft Research & Detection
      • RDP Exfil - The technique that works almost every time
      • Smishing Traid targets India with large scale "India Post" themed iMessage phish texts
      • Quick Assist: Friend or Foe? How adversaries can exploit this tool and how can you defend?
      • EDR Silencer - Embracing the Silence
      • Dissecting & Detecting Lsass Shtinkering
      • Detecting malicious OOB: Part -1: Hunting for OOB server - Interact.sh
      • Abusing Windows VPN for EXFIL
      • Analyzing Nobelium's HTML Dropper - EnvyScout
    • Web & Mobile App Sec
      • [CVE-2015-2300] ENL-Newsletter CSRF Full Disclosure
      • Yandex Mobile App vulnerable to Insecure Data storage
      • Bug on paypal worth 1000$
      • Session fixation bug on coinbase.
      • CyanogenMod (In)Secure Folder Lock !
  • Security Talk
    • Review of CRTP - Pentester Academy
    • Review of Hacking and Securing Kubernetes
Powered by GitBook
On this page
  • USAGE
  • FAQ
  • Q. How do I run/execute it on my Windows machine?
  • Q. My AV/EDR did not detect the execution. What should I do?
  • Q. My AV/EDR detected the execution. Does it mean I'm safe?
  • TO-DO
  • DISCLAIMER

Was this helpful?

  1. Tools
  2. Offensive Tools

Ransomware Simulator - PyRan

A simple ransomware simulator.

View PyRan on Github.

.______   ____    ____      .______          ___      .__   __. 
|   _  \  \   \  /   /      |   _  \        /   \     |  \ |  | 
|  |_)  |  \   \/   / ______|  |_)  |      /  ^  \    |   \|  |
|   ___/    \_    _/ |______|      /      /  /_\  \   |  . `  | 
|  |          |  |          |  |\  \----./  _____  \  |  |\   | 
| _|          |__|          | _| `._____/__/     \__\ |__| \__|

PY-RAN is a ransomware simulator, built to assist Red/Blue teams test their defenses.

USAGE

usage: py-ran.exe [-h] [--dir DIR] [--mode MODE] [--password PASSWORD]

optional arguments:
  -h, --help           show this help message and exit
  --dir DIR            Location of the Folder you want to simulate
  --mode MODE          Accepts encrypt or decrypt arguments.
  --password PASSWORD  Password to use for encryption/decryption.

FAQ

Q. How do I run/execute it on my Windows machine?

A. Download the latest release: Py-Ran Releases; PASSWORD for the ZIP is pyran

Q. My AV/EDR did not detect the execution. What should I do?

A. It means your environment is not ready to stop the tiny-est (not sure if that's a word, lol) ransomware threats. You have a lot of work to do. (First setup a backup mechanism!)

Q. My AV/EDR detected the execution. Does it mean I'm safe?

A. Not really. Py-Ran is a very simple ransomware simulator. Watch this space for more details on possible precautions and steps against ransomwares.

TO-DO

  • Add some randomness and Configuration wizard.

  • Beat EDRs at their own game!

  • Write some references about precautions to be taken to avoid ransomware attacks

DISCLAIMER

I'm not responsible for any mischief done using this tool. This tool is built purely for EDUCATIONAL Purposes.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

PreviousOffensive ToolsNextAI Security Research

Last updated 1 year ago

Was this helpful?