Phantom Reg

pinkman

pinkman

BOSS
Staff member
ADMIN
LEGEND
ULTIMATE
SUPREME
MEMBER
BFD Legacy
Joined
Feb 3, 2025
Messages
2,253
Reaction score
19,019
Deposit
0$
This is a Python-based registry exploit generator designed to inject malicious payloads into the Windows startup process via the registry. It includes base64-encoded PowerShell payloads and optional obfuscation to avoid detection by antivirus software.

PhantomReg allows you to create registry files (.reg) that modify Windows startup to run a malicious PowerShell script. The payload is encoded to avoid detection, and the program offers obfuscation options to make the exploit harder for security tools to detect.

The generated .reg file adds entries to the Windows registry (Shell and Userinit) to run a PowerShell command that executes the payload on system startup. The script can be used for educational purposes or to simulate malicious payloads in a controlled environment.

Features

Base64-Encoded Payload: The PowerShell script is base64-encoded to avoid detection by basic text-based scanners.
Obfuscation: The payload can be obfuscated with random byte insertion, making it harder to detect by antivirus software.
Customizable Filename: Choose a misleading name for the .reg file to make it harder to identify as malicious.
Support for Custom Payloads: You can inject custom binary payloads into the registry file.
OS: Windows
Download:
To view the content, you need to Sign In or Register.
 
pinkman said:
This is a Python-based registry exploit generator designed to inject malicious payloads into the Windows startup process via the registry. It includes base64-encoded PowerShell payloads and optional obfuscation to avoid detection by antivirus software.

PhantomReg allows you to create registry files (.reg) that modify Windows startup to run a malicious PowerShell script. The payload is encoded to avoid detection, and the program offers obfuscation options to make the exploit harder for security tools to detect.

The generated .reg file adds entries to the Windows registry (Shell and Userinit) to run a PowerShell command that executes the payload on system startup. The script can be used for educational purposes or to simulate malicious payloads in a controlled environment.

Features

Base64-Encoded Payload: The PowerShell script is base64-encoded to avoid detection by basic text-based scanners.
Obfuscation: The payload can be obfuscated with random byte insertion, making it harder to detect by antivirus software.
Customizable Filename: Choose a misleading name for the .reg file to make it harder to identify as malicious.
Support for Custom Payloads: You can inject custom binary payloads into the registry file.
OS: Windows
Download: *** Hidden text: cannot be quoted. ***
Click to expand...
!
 
pinkman said:
This is a Python-based registry exploit generator designed to inject malicious payloads into the Windows startup process via the registry. It includes base64-encoded PowerShell payloads and optional obfuscation to avoid detection by antivirus software.

PhantomReg allows you to create registry files (.reg) that modify Windows startup to run a malicious PowerShell script. The payload is encoded to avoid detection, and the program offers obfuscation options to make the exploit harder for security tools to detect.

The generated .reg file adds entries to the Windows registry (Shell and Userinit) to run a PowerShell command that executes the payload on system startup. The script can be used for educational purposes or to simulate malicious payloads in a controlled environment.

Features

Base64-Encoded Payload: The PowerShell script is base64-encoded to avoid detection by basic text-based scanners.
Obfuscation: The payload can be obfuscated with random byte insertion, making it harder to detect by antivirus software.
Customizable Filename: Choose a misleading name for the .reg file to make it harder to identify as malicious.
Support for Custom Payloads: You can inject custom binary payloads into the registry file.
OS: Windows
Download: *** Hidden text: cannot be quoted. ***
Click to expand...
 
You must log in or register to reply here.

Similar threads

pinkman
NEWS It turns out that the windows slow down the plane. In Phantom 3500 engineers went to the end - removed all the portholes in the cabin. All at all
Replies
0
Views
243
pinkman
pinkman
pinkman
Interesting Video Tutorial Rabbit Labs Care Package Unboxing | New Gadgets, IR Blasters, Flipper Mods and Rabbit Phantom!
Replies
1
Views
173
richards7
R
pinkman
Interesting Video Tutorial Flashing Bruce Firmware on the Rabbit Labs Phantom | Step-by-Step Guide + First Impressions
Replies
4
Views
347
monoxide_exe
M
V
Free Cracker Phantom,BTC , SOL,MetaMask, TERAFLASH Crypto
Replies
8
Views
834
florian29
F
marginal
Исходник Phantom aka secret paste
Replies
10
Views
757
Drogg11
D
Top Bottom