SubRosa is basic tool written in python that helps automate some of tasks during the process of backdooring PE files. The following are list of the current and future features:
- Check/Disable ASLR
- Search for exsisting code caves
- Add new section
- Split file to smaller chuncks for further analysis
- Add AV sandbox evasion template (heuristic analysis)
- Add custom encoder template to bypass AV signature-based detection
As you can see in the following demo options are pretty self explanatory.
