secretsquirrel

I laugh in the general direction of security products.

Funding Links: https://github.com/sponsors/secretsquirrel

Name: midnite_runr
Kind: user
Followers: 1766
Following: 26
Total stars: 7230
Repositories count: 65
Created at: 2022-11-05T12:31:32.971Z
Updated at: 2025-03-24T20:23:58.752Z
Last synced at: 2025-03-24T20:23:58.752Z

GitHub Sponsors Profile

Hello hackers!
I restarted development of BDF/BDFProxy in July 2020. Now BDF/BDFProxy is in Stable Alpha as of July 30, 2021.
Sponsor me and I will continue to support the new version of The Backdoor Factory and BDFProxy (which is now one tool), write new tools, and publish research to my sponsors.
Current tools and Research:

BDF-ng with new file infection methods!
Updated SigThief!
Thunderbird Extension Loading 🤫
EncryptAgit - open source!

Future Tools & Research:

More file infection methods
An updated Environmental Keying Framework like Ebowla
TinCanTelephone - a method to use existing wifi APs as repeaters.
and more..

BDF Roadmap:
Legend:
Y == Yes, Implemented
N == No
X == Feature Conflict
RM = Roadmap
TBD = To be determined.
There are additional features such as patchlets, and future improvements such as test cases with redistributable binaries and patching research not included here.
Windows
PE Files

Item
hook entry
Text Loader
control Flow Guard (CFG) Hooking
Import Address Table (IAT) Payloads
Custom Encoder
DLL Export Hooking
TLS Injection
off-entry hooking

x86
Y
TBD
RM
Y
RM
RM
RM
RM

x64
Y
Y
Y
Y
Y
Y
RM
RM

Aarch64 (arm)
RM
RM
RM
RM
RM
RM
RM
RM

hook entry
Y
Y
Y
Y
N
X
X
X

Text Loader
X
Y
Y
Y
Y
Y
X
X

DLL Export Hooking
X
Y
Y
Y
Y
Y
X
X

TLS Injection
X
X
TBD
RM
RM
X
RM
X

Off-entry hooking
X
X
X
RM
RM
N
X
RM

MacOS

Item
pre text infection
hook entry
off-entry point hooking
Dylib export hooking
Custom Encoder

x86_64
Y
RM
RM
Y
TBD

aarch64
Y
RM
RM
Y
TBD