firedrill
firedrill is an open-source malware simulation harness. Test your security controls effectiveness against malicious behaviours.
RepositoryMalware simulation harness. Build native binaries for Windows, Linux and Mac simulating malicious behaviours. Test the effectiveness of your endpoint security controls against malware.
Checkout the first release of the ransomware simulation! It is a windows/amd64 binary which simulates runtime ransomware behaviour such as encrypting files (none of yours! only tests files), changing wallpapers and drops ransom notes. You can try it out and check out the code.
We'll be pushing more simulations by tomorrow, better README, blog post and a video!
Setting up a ransomware simulation, work in progress! Malware behaviours being built: - [ ] Encrypting files on the filesystem (safely, in a simulated manner!). - [ ] Setting the wallpaper through the registry. - [x] Dropping a ransom note on your desktop.
We'll be done with the ransomware soon. If you are running Windows, we'll have a release on our GitHub repo where you can get the simulation binary and try it on your system (no need to worry, the simulation will be safe and non-destructive!).
Added an explainer image!
Project created by Aarush Ahuja