- Joined
- Dec 3, 2020
- Messages
- 1,678
Graffiti is a tool to generate obfuscated oneliners to aid in penetration testing situations. Graffiti accepts the following languages for encoding:
Features
Graffiti comes complete with a database that will insert each encoded payload into it, in order to allow end users to view already created payloads for future use. The payloads can be encoded using the following techniques:
On any Linux, Mac, or Windows system, Graffiti should work out of the box without the need to install any external packages. If you would like to install Graffiti as an executable onto your system (you must be running either Linux or Mac for it to work successfully), all you have to do is the following:
- Python
- Perl
- Batch
- Powershell
- PHP
- Bash
Features
Graffiti comes complete with a database that will insert each encoded payload into it, in order to allow end users to view already created payloads for future use. The payloads can be encoded using the following techniques:
- Xor
- Base64
- Hex
- ROT13
- Raw
- Terminal drop in access, with the ability to run external commands
- Ability to create your own payload JSON files
- Ability to view cached payloads inside of the database
- Ability to run the database in memory for quick deletion
- Terminal history and saving of terminal history
- Auto tab completion inside of terminal
- Ability to securely wipe the history files and database file
- Multiple encoding techniques as mentioned above
On any Linux, Mac, or Windows system, Graffiti should work out of the box without the need to install any external packages. If you would like to install Graffiti as an executable onto your system (you must be running either Linux or Mac for it to work successfully), all you have to do is the following: