Pinned Repositories
directInjectorPOC
Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.
NtCreateUserProcess
PPID-Spoofing
POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritting ntdll:LdrInitializeThunk with shellcode.
ProcessDoppelganging
Process doppelganging POC using direct system calls, PPID spoofing and dropbox as an external delivery channel for the payload.
reCAPTCHA-bypass
PoC python selenium script to solve reCAPTCHA challenges using speech recognition.
TransactedSharpMiniDump
Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS using sockets.
PorLaCola25's Repositories
PorLaCola25/TransactedSharpMiniDump
Implementation of b4rtiks's SharpMiniDump using NTFS transactions to avoid writting the minidump to disk and exfiltrating it via HTTPS using sockets.
PorLaCola25/PPID-Spoofing
POC of PPID spoofing using NtCreateUserProcess with syscalls to create a suspended process and performing process injection by overwritting ntdll:LdrInitializeThunk with shellcode.
PorLaCola25/ProcessDoppelganging
Process doppelganging POC using direct system calls, PPID spoofing and dropbox as an external delivery channel for the payload.
PorLaCola25/NtCreateUserProcess
PorLaCola25/reCAPTCHA-bypass
PoC python selenium script to solve reCAPTCHA challenges using speech recognition.
PorLaCola25/directInjectorPOC
Small POC written in C# that performs shellcode injection on x64 processes using direct syscalls as a way to bypass user-land EDR hooks.
PorLaCola25/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PorLaCola25/Sandbox
PorLaCola25/sparty
Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]
PorLaCola25/test
PorLaCola25/vba-tests