D00MFist

Pinned Repositories

Custom_URL_Scheme
Tool to create a template to abuse Custom URL Schemes
Language:JavaScript7 4 03
Dylib-Hijack-Scanner
JavaScript for Automation (JXA) version of Patrick Wardle's tool that searches applications for dylib hijacking opportunities
Language:JavaScript20 4 06
Go4aRun
Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
Language:Go227 6 223
InjectCheck
Language:Swift6 4 05
InSync
Finder Plugin Persistence
Language:Objective-C9 3 02
LaunchAgentPersistence
Persistence using Launch Agents for OSX in JXA
Language:JavaScript5 2 02
Mystikal
macOS Initial Access Payload Generator
Language:Python286 9 438
PersistentJXA
Collection of macOS persistence methods and miscellaneous tools in JXA
Language:JavaScript261 15 027
security
Notes and Commands for CTFs
Language:CSS16 2 06

D00MFist's Repositories

D00MFist/Mystikal
macOS Initial Access Payload Generator
Language:Python286 9 438
D00MFist/PersistentJXA
Collection of macOS persistence methods and miscellaneous tools in JXA
Language:JavaScript261 15 027
D00MFist/Go4aRun
Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process
Language:Go227 6 223
D00MFist/Dylib-Hijack-Scanner
JavaScript for Automation (JXA) version of Patrick Wardle's tool that searches applications for dylib hijacking opportunities
Language:JavaScript20 4 06
D00MFist/security
Notes and Commands for CTFs
Language:CSS16 2 06
D00MFist/InSync
Finder Plugin Persistence
Language:Objective-C9 3 02
D00MFist/Custom_URL_Scheme
Tool to create a template to abuse Custom URL Schemes
Language:JavaScript7 4 03
D00MFist/InjectCheck
Language:Swift6 4 05
D00MFist/LaunchAgentPersistence
Persistence using Launch Agents for OSX in JXA
Language:JavaScript5 2 02
D00MFist/CVE-2019-8656
CVE-2019-8656 GateKeeper Bypass
Language:Shell2 2 01
D00MFist/docker-elk
The Elastic stack (ELK) powered by Docker and Compose.
Language:Shell2 2 03
D00MFist/apfell
JavaScript for Automation (JXA) macOS agent
Language:Python1 1 0
D00MFist/FuzzyThread
Playing with Sharpsploit Injection
Language:C#1 2 02
D00MFist/HELK
The Hunting ELK
Language:Jupyter Notebook1 1 0
D00MFist/MacOSX-SDKs
A collection of SDK folders
Language:Roff1 1 0
D00MFist/Mythic
A collaborative, multi-platform, red teaming framework
Language:Python1 1 02
D00MFist/thanatos
Mythic C2 agent targeting Linux and Windows hosts written in Rust
Language:Rust1 0 0
D00MFist/ChromeCookieDecryptor
Decrypt cookie values in Chrome Sqlite DB on Mac OX S, use Openssl
Language:C++0 0
D00MFist/ChromeKatz
Dump cookies and credentials directly from Chrome/Edge process memory
D00MFist/dynamichttp
Language:Python1 01
D00MFist/electroniz3r
Take over macOS Electron apps' TCC permissions
Language:Swift0 0
D00MFist/HealthInspector
JXA situational awareness helper by simply reading specific files on a filesystem
Language:JavaScript1 01
D00MFist/hermes
Swift 5 macOS agent
Language:Swift0 0
D00MFist/LOOBins
Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in macOS binaries and how they can be used by threat actors for malicious purposes.
Language:Python0 0
D00MFist/macos-loginitems
A library to parse macOS LoginItems
Language:Rust0 0
D00MFist/Misc-Powershell-Scripts
Random Tools
Language:PowerShell1 01
D00MFist/poseidon
Language:Go1 0
D00MFist/presentations
SpecterOps Presentations
1 01
D00MFist/PVPSound
PVPSound
Language:Lua2 0
D00MFist/WebView2-Cookie-Stealer
Language:C++0 0