Nick Frichette's repositories
CVE-2019-5736-PoC
PoC for CVE-2019-5736
SneakyEndpoints
Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
aws_stealth_perm_enum
Research on the enumeration of IAM permissions without logging to CloudTrail
aws_api_shapeshifter
A small library to alter AWS API requests; Used for fuzzing research
ssm-agent-research
This is a custom SSM agent which is sorta functional
aws-api-model-converter
Take undocumented APIs in the AWS Console and convert them to usable models for the AWS CLI.
FriendlyExitNode
The source/config of the Friendly Exit Node project.
selfhosted-shodan-gather
Side project to catalog various selfhosted services on the internet using Shodan; Gather metrics on usage over time
enumate_iam_using_bucket_policy
Tool to enumerate IAM Users and Roles by Abusing S3 Bucket Policies
hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
sigv4-signing-examples
Original SIGv4 Signing Examples
appID-2-acctID
Resolve an AWS Amplify App ID to AWS Account ID
GoEncryptTheCloud
Using Go, encrypt files and move them to the cloud (S3)
normalize_aws_api
A quick script to normalize the AWS API into a single json file
plagiarism-examples
This repo contains a list of examples of plagiarism from HackTricks.
amazon-ssm-agent
An agent to enable remote management of your EC2 instances, on-premises servers, or virtual machines (VMs).
amplify-cli
The AWS Amplify CLI is a toolchain for simplifying serverless web and mobile development.
did-it-crash
A small lambda function to see if a website is down
Frichetten
Read Me :)
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
lambda-persistency-poc
PoC for gaining persistency on vulnerable Lambdas
mkdocs-material
Technical documentation that just works
mvp-docker
huh, this looks like of familiar
nsec2023-ctf-aws
Copy of nsec2023-ctf-aws
s3-account-search
S3 Account Search
xzbot
notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)