Cedric Owens
Cedric Owens
aws-cli-notes
A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Training
C2-JARM
A list of JARM hashes for different ssl implementations used by some C2/red team tools.
C2_Cradle
Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers from a list of options. This is helpful for automating C2 server...
docker-arsenal
Spins up a docker container with several useful tools for offensive security in macOS/cloud environments. Also installs the needed dependencies for each tool/utility during docker setup.
EntitlementCheck
Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binaries with problematic/interesting entitlements. Also checks for...
EvilOSX_MacroGenerator
Python3 script to generate Office macros for the EvilOSX framework. Author: Cedric Owens
JXA-RemoveQuarantine
JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is here: https://lapcatsoftware.com/articles/sandbox-escape.html
JXA-Runner
Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.