TARIQ

Tariq is Cyber 5W Adversary Simulation System which aims to simulate the behavior of various threat actors based on their real TTPs. The idea is to create playbooks for threat actors where organizations can use to test if their security posture is good enough for this type of threat actor. In other words, test defenses based on simulations, rather than fall a victim to a true threat actor.

About Tariq

Tariq is an Adversary Simulation System that can be used to simulate threat actors.

Tariq is brought to you by Cyber 5W

Info

# Communication Module
  • HTTP
  • DNS
  • TCP
# Crypto Module (Channel Encryption)
  • AES 256
  • AES 192
  • AES 128
  • Hybrid RSA + AES - (Very soon)
# C2 Profiles
Tariq uses C2 profiles to automate some of the agent behaviour. The features below are currently available
  • Sleep Time (DNS and HTTP only)
  • Add customizable HTTP headers for both server and client
  • Custom IP address, Port number, Type of Listener, and Type of Payload
# Plugins
Tariq uses a plugin-engine system. The plugins below are currently available
  1. Core Plugin
  2. PowerShell Plugin
  3. Seek & Delete Plugin
  4. Ransomware Plugin
    • Memory Based
    • Encrypt/Decrypt Files and Directories
    • Wipe from Memory
    • Upload Custom Wallpapers
    • Custom File Extension
    • Different Encryption Methods
    • More coming soon...
  5. Injection Plugin
    • Thread Hijacking
    • APC Queue Code Injection
    • CreateRemoteThread Injection
    • DLL Injection
    • .NET Injection
    • Process Hollowing
    • Running Native DLL
    • Windows Hooks DLL Injection
    • Reflective DLL Injection
    • Shellcode Reflective DLL Injection (sRDI)
  6. SharPersist Plugin
  7. Seatbelt Plugin
  8. More Plugins coming soon...

We have posted a few videos of TARIQ's capabilities which can be found: here.

Website still under construction!

Simulation Services

Please contact us for details about our adversary simulation services.

Contact Us

Why

Why doing adversary simulations are important and how do they help you find gaps and secure your environment. Please contact us for more information about our adversary simulation services.

Simulations

Contact

For more information about TARIQ, please contact us.

info@advemu.com