AWS RedTeam Kit

Aka - Aws Ransomware Simulation Kit

This repository aims to be a PoC for the research project "Perfecting Ransomware on AWS."

Note

DO NOT ENCRYPT ANY DATA WITH THIS THAT YOU CAN'T AFFORD TO LOSE
This project is licensed under MIT
The Author is not responsible for any data loss occouring due to this project
Docker containers are ephemeral
This project is just a proof-of-concept ransomware simulation toolkit. It is NOT PRODUCTION GRADE.

The tool simulates a ransomware attack on a target by encrypting EBS volumes with the specified key.

Use this tool only if you know exactly what you are doing. It deletes all snapshots in an AWS Region

The tool works in the following manner :

Generate list of all EBS volumes in the region
Take snapshots of all volumes
Wait for snapshots to become Available.
Create new Volumes using the snapshots and specify encryption configuration as the KMS key.
Delete all the snapshots in the AWS Region (Nuke).

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
KeySwitch		KeySwitch
aws-kms-xks-proxy @ 7f53c97		aws-kms-xks-proxy @ 7f53c97
aws-kms-xksproxy-test-client @ 5982a4b		aws-kms-xksproxy-test-client @ 5982a4b
config		config
.gitignore		.gitignore
.gitmodules		.gitmodules
Dockerfile		Dockerfile
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
docker-compose.yml		docker-compose.yml