v3.0.0

RAT King Parser v3.0.0

You may be thinking: Did I completely miss versions 1 and 2?

Well, no - After maintaining this repository as more of an informal work in progress for some time, the RAT King Parser has now gone through a complete rewrite and I've decided to start versioning it formally.

Because it had already been through two iterations of significant refactoring, I've dubbed this first formal release as v3.0.0.

So what's new?!

• A complete refactor of the code to make the tool easier to maintain and improve, as well as remediating several bugs
• RKP can now be installed by pip and run as a utility module
• Additional support has been added for DLL variants of QuasarRAT that were previously not able to be parsed
• The primary configuration parser and several decryptors were rewritten to be more resilient to changes between different payloads of the same family
• Several operations were optimized throughout the codebase

As always, I'm sure there are more improvements to be made: Please continue to submit Issues and feedback here, or get ahold of me on Mastodon or Reddit.

I hope you enjoy!