ShadowMeld
ShadowMeld is a stealthy shellcode embedding and carrier loader generator designed for security researchers. This tool allows seamless injection of binary payloads (like shellcode) into common file formats such as PNG and BMP, generating specialized memory loaders for covert execution without file traces.
Key Features:
- Stealthy Embedding: Hide payloads in media files using LSB (Least Significant Bit) steganography.
- Anti-EDR Capabilities: Implement anti-debugging and anti-sandbox techniques to evade detection.
- User-Friendly Interface: GUI for selecting carrier files and shellcode, with options for key generation.
- Cross-Platform Support: Built with Tauri and Rust, ensuring compatibility across different operating systems.
Benefits:
- Enhanced Security Research: A powerful tool for penetration testers and security researchers to test defenses against advanced threats.
- Legal Compliance: Designed for authorized security testing, ensuring users are aware of legal responsibilities.
Highlights:
- Supports various file formats for payload embedding.
- Regular updates and community contributions encouraged under the Apache License 2.0.