aeondave/cloakify
offensive-tools/data-exfiltration/cloakify/SKILL.md
Exfiltrate data by encoding it as innocuous-looking strings (tweets, chess moves, cat names). Use when needing to bypass DLP tools by disguising exfiltrated data as benign traffic or files.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill cloakifyInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 31, 2026, 9:08 PM66.4s1 file scanned
SKILL.md
- name:
- cloakify
- description:
- Exfiltrate data by encoding it as innocuous-looking strings (tweets, chess moves, cat names). Use when needing to bypass DLP tools by disguising exfiltrated data as benign traffic or files.
- license:
- MIT
- compatibility:
- Python 2/3; Linux/macOS; github.com/TryCatchHCF/Cloakify
- author:
- AeonDave
- version:
- 1.0
Cloakify
Data exfiltration via steganographic encoding — disguise payloads as benign content.
Quick Start
git clone https://github.com/TryCatchHCF/Cloakify
cd Cloakify
# Encode file into disguised output
python cloakify.py payload.zip ciphers/desserts.ciph > exfil.txt
# Decode on attacker side
python decloakify.py exfil.txt ciphers/desserts.ciph > payload.zip
Core Usage
| Command | Purpose |
|---------|---------|
| cloakify.py <file> <cipher> | Encode payload with cipher |
| decloakify.py <file> <cipher> | Decode back to original |
| listCiphers.py | Show available ciphers |
| addNoise.py | Add noise lines to output |
| removeNoise.py | Strip noise before decoding |
Available Ciphers (examples)
desserts · movies1984 · chessOpenings · twitterFavoriteEmoji · ATampTAreaCodes · geo_lattitude
Common Workflows
Exfil over DNS (combine with dnscat):
# 1. Encode
python cloakify.py secrets.txt ciphers/desserts.ciph > encoded.txt
# 2. Paste each line as DNS query hostname
# 3. Decode on C2
python decloakify.py captured.txt ciphers/desserts.ciph
Add noise to evade pattern matching:
python cloakify.py payload.zip ciphers/movies1984.ciph | python addNoise.py 10 > noisy.txt
python removeNoise.py noisy.txt 10 | python decloakify.py /dev/stdin ciphers/movies1984.ciph
Resources
| File | When to load |
|------|--------------|
| references/ | Cipher creation guide |
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026