nullsec-spoof 1.0.0

High-performance metadata spoofing toolkit for anti-forensics - Randomize timestamps, MAC addresses, EXIF data, and file attributes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104

<div align="center">

# 🎭 NullSec Spoof

[![Rust](https://img.shields.io/badge/Rust-1.75+-f85149?style=for-the-badge&logo=rust&logoColor=white)](https://www.rust-lang.org/)
[![License](https://img.shields.io/badge/License-GPL--3.0-3fb950?style=for-the-badge)](LICENSE)
[![Version](https://img.shields.io/badge/Version-1.0.0-58a6ff?style=for-the-badge)](https://github.com/bad-antics/nullsec-spoof)

**High-Performance Metadata Spoofing Toolkit**

*Anti-forensics • Privacy • Evasion • Covert Operations*

</div>

---

## 🎯 Features

| Feature | Description |
|---------|-------------|
|**Timestamp Spoofing** | Modify atime, mtime, ctime on files |
| 🔗 **MAC Spoofing** | Randomize or vendor-spoof MAC addresses |
| 📷 **EXIF Stripping** | Remove or randomize image metadata |
| #️⃣ **Hash Modification** | Alter file hashes without visible changes |
| 🖥️ **Hostname Spoofing** | Randomize system hostname |
| 📦 **Batch Processing** | Config-driven bulk operations |

## 🚀 Installation

```bash
# From source
cargo install --path .

# Or build release
cargo build --release
./target/release/nullsec-spoof --help
```

## 📖 Usage

### Timestamp Spoofing
```bash
# Set specific timestamp
nullsec-spoof timestamp -p /path/to/file -t "2023-06-15 14:30:00"

# Random timestamp (30-365 days ago)
nullsec-spoof timestamp -p /path/to/dir -t random -r

# Recursive directory
nullsec-spoof timestamp -p /evidence -t "2022-01-01 00:00:00" -r
```

### MAC Address Spoofing
```bash
# Random MAC
nullsec-spoof mac -i wlan0 -a random

# Vendor-specific (Apple, Samsung, Intel, Cisco)
nullsec-spoof mac -i eth0 -a apple

# Specific MAC
nullsec-spoof mac -i wlan0 -a "00:11:22:33:44:55"
```

### EXIF Metadata
```bash
# Strip all EXIF data
nullsec-spoof exif -p photo.jpg -a strip

# Randomize dates
nullsec-spoof exif -p /photos -a randomize -r

# Process entire directory
nullsec-spoof exif -p /images -a strip -r
```

### Hash Modification
```bash
# Append null bytes to change hash
nullsec-spoof hash -p malware.exe -b 1
```

### Hostname Spoofing
```bash
# Random hostname
nullsec-spoof hostname -n random

# Specific hostname
nullsec-spoof hostname -n "workstation-42"
```

## 🔒 Security Notes

- Requires root for MAC and hostname changes
- Changes persist across sessions for hostname
- Use responsibly for authorized testing only

---

<div align="center">

**[bad-antics](https://github.com/bad-antics)** • Part of [NullSec Linux](https://github.com/bad-antics/nullsec-linux)

</div>