damnCoffee
damnCoffee is a simple post-exploitation loader designed to bypass antivirus and endpoint detection and response (EDR) systems. It allows users to execute shellcode embedded in a PNG image, making it a useful tool for penetration testers and security researchers.
Key Features:
- Bypass AV/EDR: Effectively bypasses common antivirus and EDR solutions.
- Easy to Use: Simple instructions for embedding shellcode into PNG files.
- Open Source: The tool is open-source, allowing for community contributions and transparency.
Benefits:
- Enhanced Security Testing: Provides a method for testing the effectiveness of security measures in place.
- Customizable: Users can modify the code to suit their specific needs, including adapting for 32-bit shellcode.
Highlights:
- Tested with 360 security software, with user feedback encouraged for bug reporting and improvements.