Pinned Repositories
AES-PowerShellCode
Standalone version of my AES Powershell payload for Cobalt Strike.
bof-exec
Tool That Loads and Executes a Beacon Object File With Arguments
DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
hunter
(l)user hunter using WinAPI calls only
PowerShell-AD-Recon
PowerShell Scripts I find useful
TechByTom's Repositories
TechByTom/bof-exec
Tool That Loads and Executes a Beacon Object File With Arguments
TechByTom/DCOMUploadExec
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
TechByTom/Aider_O-COST
TechByTom/blog.techbytom.com
My Blog
TechByTom/bof-launcher
Beacon Object File (BOF) launcher - library for executing BOF files in C/C++/Zig applications
TechByTom/C2concealer
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
TechByTom/chlonium
The 'h' is silent
TechByTom/Cognitohunter
A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter specializes in dissecting AWS Cognito implementations and performing advanced credential-to-session conversions.
TechByTom/COMRunner
A simple COM server which provides a component to run shellcode
TechByTom/crowdstrike_falcon-ipaddresses
A project to maintain the list of CrowdStrike Falcon IP addressing for use in dynamic objects/lists on firewalls
TechByTom/CursedChrome
Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.
TechByTom/CVE-2020-1350
PoC Checking script
TechByTom/esxi-unlocker
VMware ESXi macOS
TechByTom/EvtMute
Apply a filter to the events being reported by windows event logging
TechByTom/Fork-n-Run
TechByTom/GhostLoader
GhostLoader - AppDomainManager - Injection - 攻壳机动队
TechByTom/gosecretsdist
TechByTom/jscythe
Abuse the node.js inspector mechanism in order to force any node.js/electron/v8 based process to execute arbitrary javascript code.
TechByTom/LsassSilentProcessExit
Command line interface to dump LSASS memory to disk via SilentProcessExit
TechByTom/NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
TechByTom/OffensiveDLR
Toolbox containing research notes & PoC code for weaponizing .NET's DLR
TechByTom/Oppose-COST
Oppose Closed OSTs
TechByTom/Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
TechByTom/research
TechByTom/satellite
easy-to-use payload hosting
TechByTom/Scripts
Small scripts that make life better
TechByTom/TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
TechByTom/tokensmith
TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of the box with many popular Azure post exploitation tools.
TechByTom/UrbanBishopLocal
TechByTom/vortex
VPN Overall Reconnaissance, Testing, Enumeration and eXploitation