Michael Eder's repositories
fragtunnel
Fragtunnel is a proof-of-concept (PoC) TCP tunnel tool that you can use to tunnel your application's traffic and bypass next-generation firewalls en route to the target.
titanldr-ng
A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
ApiHashing
Replacing GetModuleHandle & GetProcAddress as a God
certwatcher
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates.
CLRInjector
A PoC .NET-specific process injection tool
coffee
A COFF loader made in Rust
dcomhijack
Lateral Movement Using DCOM and DLL Hijacking
DInvoke
Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
DInvoke_rs
Dynamically invoke arbitrary unmanaged code.
edermi.github.io
source code of my homepage
frontcheck
Checks if you can domain front a site
go-secdump
Tool to remotely dump secrets from the Windows registry
kiosk.vsim.xyz
Source for kiosk.vsim.xyz -- tooling for browser-based, Kiosk mode testing.
mjet
MOGWAI LABS JMX exploitation toolkit
nmap_reduce_rescan
Creates consolidated scan statements for single hosts from a nmap.xml file
Pack-Zack
A tag-based manager for packing lists
pamspy
Credentials Dumper for Linux using eBPF
PowerHub
A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
RecycledGate
Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
shad0w
A post exploitation framework designed to operate covertly on heavily monitored enviroments
Shelter
ROP-based sleep obfuscation to evade memory scanners
Spoofing-Gate
(Hellsgate|Halosgate|Tartarosgate)+Spoofing-Gate. Ensures that all systemcalls go through ntdll.dll