Ironsquirrel - Encrypted browser exploits delivery for the masses.

Ironsquirrel – Encrypted browser exploits delivery for the masses.

Ironsquirrel project aims at delivering browser exploits to the victim browser in an encrypted fashion. Ellyptic-curve Diffie-Hellman (secp256k1) is used for key agreement and AES is used for encryption.

Ironsquirrel

By delivering the exploit code (and shellcode) to the victim in an encrypted way, the attack can not be replayed. Meanwhile the HTML/JS source is encrypted thus reverse engineering the exploit is significantly harder.

Dependencies:
+ ruby-dev
+ nokogiri and gibberish gems
+ Ebowla https://github.com/Genetic-Malware/Ebowla

Usage:

Source: https://github.com/MRGEffitas