edermi

skweez

Fast website scraper and wordlist generator

gophish_mods

Open-Source Phishing Toolkit

noWatch

Implant drop-in for EDR testing

titanldr-ng

A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.

AceLdr

Cobalt Strike UDRL for memory scanner evasion.

AlternativeShellcodeExec

Alternative Shellcode Execution Via Callbacks

amber

Reflective PE packer.

ApiHashing

Replacing GetModuleHandle & GetProcAddress as a God

certwatcher

CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates.

CLRInjector

A PoC .NET-specific process injection tool

coffee

A COFF loader made in Rust

dcomhijack

Lateral Movement Using DCOM and DLL Hijacking

DInjector

DInvoke

Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.

DInvoke_rs

Dynamically invoke arbitrary unmanaged code.

edermi

edermi.github.io

source code of my homepage

frontcheck

Checks if you can domain front a site

go-secdump

Tool to remotely dump secrets from the Windows registry

kiosk.vsim.xyz

Source for kiosk.vsim.xyz -- tooling for browser-based, Kiosk mode testing.

nmap_reduce_rescan

Creates consolidated scan statements for single hosts from a nmap.xml file

Pack-Zack

A tag-based manager for packing lists

pamspy

Credentials Dumper for Linux using eBPF

PowerHub

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

RecycledGate

Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll

roxo-hugo

shad0w

A post exploitation framework designed to operate covertly on heavily monitored enviroments

Shelter

ROP-based sleep obfuscation to evade memory scanners

shrimpet

Spoofing-Gate

(Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll