🛋️Welcome

NullFang

NullFang is a stealth-optimized SMB reconnaissance tool built in Go for offensive security operations. It delivers:

• High-speed pattern matching (regex, binary carving, leet-speak detection) across: ✓ Office documents (OLE/XML structures) ✓ Configuration files (JSON/YAML/ENV) ✓ Database exports (SQL, NoSQL dumps) ✓ Compressed archives (ZIP, RAR embedded objects)

• Operational security by design: ▶ No-copy mode avoids file I/O operations, evading EDR file handles and USN journal logging ▶ In-memory analysis minimizes disk/network artifacts ▶ Controlled execution timing to blend with normal SMB traffic

• Red Team-specific advantages: ✓ Maps User→Host→File→Privilege relationships ✓ Identifies lateral movement paths via credential/configuration patterns ✓ Generates forensic noise assessments pre-operation