Skip to content

pullchra/AntWare

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
AntWare.ps1
AntWare.ps1
 
 
README.md
README.md
 
 

Repository files navigation

What is it?

AntWare is a project I created to protect browsers from information-stealing malware (grabbers/stealers/rats). It moves the user information to another folder that the user chooses where it will be created and forces the browser to use the new location, making it impossible for malware to find the information from the browsers, as it is no longer in the default location.

I added the discord app option as many users use it and a lot of malware steals the tokens saved inside the discord folders. It is in testing.

PowerShell

Before using the file, I have to warn you of some important points, PowerShell may not want to run this script because of its execution policy, you must use the code below with PowerShell in the administrator so that it lets run the code. After using the code, and the file, you should return the policy to what it was before.

Unrestricted

Set-ExecutionPolicy Unrestricted -Scope CurrentUser

after using AntWare, switch back to RemoteSigned or Restricted.

RemoteSigned or Restricted

RemoteSigned

Set-ExecutionPolicy RemoteSigned -Scope CurrentUser

Restricted ( pattern )

Set-ExecutionPolicy Restricted -Scope LocalMachine

How To Use?

  • This file like many other internet files that are for powershell is detected as virus, so to download it disable your antvirus.
  1. Close your browser and see in your Task Manager if it is not working in the background
  2. Download the PowerShell file
  3. Go into your properties and unlock it if necessary
  4. Create a folder named "Navegator" and save your directory
  5. Open the powershell file and accept that it runs as an administrator
  6. Enter the directory you want the new browser folder to be in
  7. Choose whether you want to reverse the method or use it
  8. Choose the browser you want to protect
  • After doing these steps, check if the folder was created in the chosen location. After that, delete the old default browser folder, which is usually located at %LOCALAPPDATA%.

image

Usually the folder you should delete would be the one with your user's files (User Data), example: Edge and Chrome or the User Data folder itself (the one with many files)

Edge

%LOCALAPPDATA%\Microsoft\Edge\User Data

Chrome

%LOCALAPPDATA%\Google\Chrome\User Data

Brave

%LOCALAPPDATA%\BraveSoftware\Brave-Browser\User Data

Opera

%LOCALAPPDATA%\Opera Software\Opera Stable

Discord ( Test )

%APPDATA%\discord

Credits and Warns

I created this project to help those who suffer from this type of malware. But as it is in testing I am not responsible if there is an error on your computer, this file messes with the folders of your browser. Credits for Pullchra

About

Project aimed at protecting browsers

www.youtube.com/@pullchra

Topics

protection powershell grabber malware rat stealer navegador

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages