Pinned Repositories
aws_api_shapeshifter
A small library to alter AWS API requests; Used for fuzzing research
aws_stealth_perm_enum
Research on the enumeration of IAM permissions without logging to CloudTrail
CVE-2019-5736-PoC
PoC for CVE-2019-5736
CVE-2020-11108-PoC
PoCs for CVE-2020-11108; an RCE and priv esc in Pi-hole
gitlab-runner-research
Research on abusing GitLab Runners
SneakyEndpoints
Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
Specter
Specter is a prototype cryptocurrency developed to help people learn about Blockchain Technology.
ssm-agent-research
This is a custom SSM agent which is sorta functional
tools
A collection of pen-testing/hacking scripts. Various uses.
hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Frichetten's Repositories
Frichetten/CVE-2019-5736-PoC
PoC for CVE-2019-5736
Frichetten/SneakyEndpoints
Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
Frichetten/aws_stealth_perm_enum
Research on the enumeration of IAM permissions without logging to CloudTrail
Frichetten/aws_api_shapeshifter
A small library to alter AWS API requests; Used for fuzzing research
Frichetten/ssm-agent-research
This is a custom SSM agent which is sorta functional
Frichetten/aws-api-model-converter
Take undocumented APIs in the AWS Console and convert them to usable models for the AWS CLI.
Frichetten/FriendlyExitNode
The source/config of the Friendly Exit Node project.
Frichetten/selfhosted-shodan-gather
Side project to catalog various selfhosted services on the internet using Shodan; Gather metrics on usage over time
Frichetten/enumate_iam_using_bucket_policy
Tool to enumerate IAM Users and Roles by Abusing S3 Bucket Policies
Frichetten/hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Frichetten/crs
Random tools to make research/testing easier
Frichetten/sigv4-signing-examples
Original SIGv4 Signing Examples
Frichetten/appID-2-acctID
Resolve an AWS Amplify App ID to AWS Account ID
Frichetten/open-cvdb
An open project to list all publicly known cloud vulnerabilities and CSP security issues
Frichetten/easyBEATS
Beats for Raspberry Pi / ARM
Frichetten/GoEncryptTheCloud
Using Go, encrypt files and move them to the cloud (S3)
Frichetten/normalize_aws_api
A quick script to normalize the AWS API into a single json file
Frichetten/plagiarism-examples
This repo contains a list of examples of plagiarism from HackTricks.
Frichetten/amazon-ssm-agent
An agent to enable remote management of your EC2 instances, on-premises servers, or virtual machines (VMs).
Frichetten/amplify-cli
The AWS Amplify CLI is a toolchain for simplifying serverless web and mobile development.
Frichetten/did-it-crash
A small lambda function to see if a website is down
Frichetten/Frichetten
Read Me :)
Frichetten/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Frichetten/lambda-persistency-poc
PoC for gaining persistency on vulnerable Lambdas
Frichetten/mkdocs-material
Technical documentation that just works
Frichetten/mvp-docker
huh, this looks like of familiar
Frichetten/nsec2023-ctf-aws
Copy of nsec2023-ctf-aws
Frichetten/s3-account-search
S3 Account Search
Frichetten/threads-lists
Frichetten/xzbot
notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)