High-Performance Metadata Spoofing Toolkit
Anti-forensics β’ Privacy β’ Evasion β’ Covert Operations
| Feature | Description |
|---|---|
| β° Timestamp Spoofing | Modify atime, mtime, ctime on files |
| π MAC Spoofing | Randomize or vendor-spoof MAC addresses |
| π· EXIF Stripping | Remove or randomize image metadata |
| #οΈβ£ Hash Modification | Alter file hashes without visible changes |
| π₯οΈ Hostname Spoofing | Randomize system hostname |
| π¦ Batch Processing | Config-driven bulk operations |
# From source
cargo install --path .
# Or build release
cargo build --release
./target/release/nullsec-spoof --help# Set specific timestamp
nullsec-spoof timestamp -p /path/to/file -t "2023-06-15 14:30:00"
# Random timestamp (30-365 days ago)
nullsec-spoof timestamp -p /path/to/dir -t random -r
# Recursive directory
nullsec-spoof timestamp -p /evidence -t "2022-01-01 00:00:00" -r# Random MAC
nullsec-spoof mac -i wlan0 -a random
# Vendor-specific (Apple, Samsung, Intel, Cisco)
nullsec-spoof mac -i eth0 -a apple
# Specific MAC
nullsec-spoof mac -i wlan0 -a "00:11:22:33:44:55"# Strip all EXIF data
nullsec-spoof exif -p photo.jpg -a strip
# Randomize dates
nullsec-spoof exif -p /photos -a randomize -r
# Process entire directory
nullsec-spoof exif -p /images -a strip -r# Append null bytes to change hash
nullsec-spoof hash -p malware.exe -b 1# Random hostname
nullsec-spoof hostname -n random
# Specific hostname
nullsec-spoof hostname -n "workstation-42"- Requires root for MAC and hostname changes
- Changes persist across sessions for hostname
- Use responsibly for authorized testing only
bad-antics β’ Part of NullSec Linux