Ransomware Recovery

Ransomware Recovery

Ransomware can be a real threat that enables cyber extortion for financial gain. There is no such direct way to have to protect against a ransomware attack on your network. The best way to protect your system is to have real ransomware to test your defenses. We have introduced ransomware simulator that does encryption of information on the network but has an off switch in a way that is under your command and also enables you to decrypt the data as well.

PowerShell Encrypter/Decrypter

The tool is developed and works using windows PoweShell Encrypter /Decrypter. If you want to learn more about what poweshell is then here is the link.

We have developed two PowerShell scripts that work as ransomware simulator. The one script encrypts the data while the other one decrypts the data using a public/private key pair. The tool is a simulator that tests your system’s defense against actual ransomware. The decrypter is intended to ensure that your files are not destroyed permanently.

Card image cap

WARNING: This tool encrypts files. Please use responsibly. If you are unfamiliar with PowerShell DO NOT use this tool.

  • In descending order, the network drives are enumerated and sorted.
  • The drive with the lowest letter will be attacked. It enables you to control what shares are affected. we use drive letter Z as our attack drive for the convenience of the testing environment.
  • Folders are not included. Only the files that have been discovered are included.
  • Each discovered file is encrypted with the public key that renders the file in unreadable format.
  • The scripts stop after all files are encrypted.

open_in_new learn more

Free Ransomware Decryptors Collection 2019

Though ransomware attacks can be crippling and can happen to you or anyone else. If your ransomeware hits you, do not pay the ransom. In order to start recovery, use ransomware decrypters, backups, and other related tools and steps are given:

We have developed two PowerShell scripts that work as ransomware simulator. The one script encrypts the data while the other one decrypts the data using a public/private key pair. The tool is a simulator that tests your system’s defense against actual ransomware. The decrypter is intended to ensure that your files are not destroyed permanently.

  • Download our ransomware response kit.
  • Utilize the free ransomware decrypter tools listed below
  • Try to restore from a backup
  • Protect yourself from future attacks with CryptoStopper™
  • The scripts stop after all files are encrypted.

CBL Data Recovery has created the largest collection sets of available ransomware decrypters and decryption tools available. These available tools will help you open files without paying the ransom. The list is regularly updated so even if the tools are not available now might be available in future.

If you have any concerns about these resources or have been subjected to an attack, please feel free to contact us and we will figure out what to do next.