Pinned Repositories
chomp-scan
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
COM-Hijacking
An example of COM hijacking using a proxy DLL.
hacker-checklist
Hacking with the power of checklists.
htbenum
A Linux enumeration script for Hack The Box
netntlm
A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP
RubeusToCcache
A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket
SeasideBishop
A C port of b33f's UrbanBishop
SleepyCrypt
A shellcode function to encrypt a running process image when sleeping.
SyscallPOC
Shellcode injection POC using syscalls.
TokenStealingDriver
SolomonSklash's Repositories
SolomonSklash/COMThanasia
A set of programs for analyzing common vulnerabilities in COM
SolomonSklash/Cookie-Graber-BOF
C or BOF file to extract WebKit master key to decrypt user cookie
SolomonSklash/Hunt-Weird-ImageLoads
Small tool to play with IOCs caused by Imageload events
SolomonSklash/log.c
A simple logging library implemented in C99
SolomonSklash/No-Consolation
A BOF that runs unmanaged PEs inline
SolomonSklash/titanldr-ng
A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
SolomonSklash/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
SolomonSklash/blacklotus
A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
SolomonSklash/BlackLotus2
BlackLotus UEFI Windows Bootkit
SolomonSklash/BootExecuteEDR
SolomonSklash/Caro-Kann
Encrypted shellcode Injection to avoid Kernel triggered memory scans
SolomonSklash/DLHell
Local & remote Windows DLL Proxying
SolomonSklash/EtwTi-FluctuationMonitor
Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections
SolomonSklash/JonMon
SolomonSklash/Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
SolomonSklash/LdrLibraryEx
A small x64 library to load dll's into memory.
SolomonSklash/LdrLockLiberator
For when DLLMain is the only way
SolomonSklash/linWinPwn
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks
SolomonSklash/LoudSunRun
Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
SolomonSklash/msvc-wine
Scripts for setting up and running MSVC in Wine on Linux
SolomonSklash/MultiDump
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
SolomonSklash/perfect-loader
Load a dynamic library from memory by modifying the native Windows loader
SolomonSklash/Periscope
Fully Integrated Adversarial Operations Toolkit (C2, stagers, agents, ephemeral infrastructure, phishing engine, and automation)
SolomonSklash/phnt-single-header
Single header version of System Informer's phnt library.
SolomonSklash/POSTDump
SolomonSklash/PPLFault
SolomonSklash/RtlClone
SolomonSklash/SAFACon-Vienna
SolomonSklash/superlooper
An open source programmable looping pedal based off of the BYOC super8 pedal.
SolomonSklash/SymProcAddress
Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)