Cedric Owens

A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Training

cedowens

A list of JARM hashes for different ssl implementations used by some C2/red team tools.

cedowens

Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers from a list of options. This is helpful for automating C2 server...

cedowens

Spins up a docker container with several useful tools for offensive security in macOS/cloud environments. Also installs the needed dependencies for each tool/utility during docker setup.

cedowens

Scripts (python3 and Swift) for macOS to recursively check /Applications and also check /usr/local/bin, /usr/bin, and /usr/sbin for binaries with problematic/interesting entitlements. Also checks for...

cedowens

Python3 script to generate Office macros for the EvilOSX framework. Author: Cedric Owens

cedowens

python3 scripts to help with aws triage needs

cedowens

Swift code to programmatically perform dylib injection

cedowens

JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is here: https://lapcatsoftware.com/articles/sandbox-escape.html

cedowens

Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.

cedowens