aaron-kidwell/goLoL — reverse-engineered prompt

Build me a small Windows command line security scanner in Go for authorized lab use. I want it to check the current machine and show which living off the land Windows binaries are actually present and usable from my current privilege level.

It should fetch the latest LOLBAS catalog online each time, resolve common Windows paths like Windows, Program Files, user profile, and WindowsApps, then print useful results with the binary path, use case, example command, privilege tier, and MITRE ATT&CK ID with a readable name. It should detect whether I’m a normal user, local admin, or SYSTEM, and only show techniques that match that level.

Add flags so I can search one binary by name, sort by binary, privilege, or ATT&CK technique, and switch to plain ASCII output for unstable shells. Also add a driver scan mode that hashes local .sys files and checks them against the live LOLDrivers catalog.

Keep it lightweight, clear, and easy to build into a single exe.