{"id":16932040,"url":"https://github.com/cldrn/macphish","last_synced_at":"2025-05-12T04:30:40.501Z","repository":{"id":137136121,"uuid":"82072803","full_name":"cldrn/macphish","owner":"cldrn","description":"Office for Mac Macro Payload Generator","archived":false,"fork":false,"pushed_at":"2017-09-19T16:35:57.000Z","size":748,"stargazers_count":240,"open_issues_count":3,"forks_count":50,"subscribers_count":19,"default_branch":"master","last_synced_at":"2025-04-01T00:09:56.841Z","etag":null,"topics":["applescript","macos","macros","office","osx","phishing"],"latest_commit_sha":null,"homepage":"https://github.com/cldrn/macphish","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cldrn.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-02-15T15:02:53.000Z","updated_at":"2025-03-31T16:44:45.000Z","dependencies_parsed_at":null,"dependency_job_id":"bbdd01fc-7e4b-48db-889e-f901e66f84f5","html_url":"https://github.com/cldrn/macphish","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cldrn%2Fmacphish","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cldrn%2Fmacphish/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cldrn%2Fmacphish/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cldrn%2Fmacphish/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cldrn","download_url":"https://codeload.github.com/cldrn/macphish/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253675072,"owners_count":21945892,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["applescript","macos","macros","office","osx","phishing"],"created_at":"2024-10-13T20:45:25.703Z","updated_at":"2025-05-12T04:30:39.853Z","avatar_url":"https://github.com/cldrn.png","language":"Python","readme":"# macphish\nOffice for Mac Macro Payload Generator\n![macphish](macphish-alpha.png?raw=true \"macphish\")\n\n## Attack vectors\nThere are 4 attack vectors available:\n* beacon\n* creds\n* meterpreter\n* meterpreter-grant\n\nFor the 'creds' method, macphish can generate the Applescript script directly, in case you need to run it from a shell. \n\n### beacon\nOn execution, this payload will signal our listening host and provide basic system information about the victim. The simplest way of generating a beacon payload is:\n```\n$./macphish.py -lh \u003clistening host\u003e \n```\nBy default, it uses curl but other utilities (wget, nslookup) can be used by modifying the command template. \n\n### creds\n```\n$./macphish.py -lh \u003clistening host\u003e -lp \u003clistening port\u003e -a creds\n```\n### meterpreter\nThe simplest way of generating a meterpreter payload is:\n```\n$./macphish.py -lh \u003clistening host\u003e -lp \u003clistening port\u003e -p \u003cpayload\u003e -a meterpreter \n```\n### meterpreter-grant\nThe generate a meterpreter payload that calls GrantAccessToMultipleFiles() first:\n```\n$./macphish.py -lh \u003clistening host\u003e -lp \u003clistening port\u003e -p \u003cpayload\u003e -a meterpreter-grant\n```\n\nFor meterpreter attacks, only python payloads are supported at the moment. \n\n## Usage\nSee https://github.com/cldrn/macphish/wiki/Usage\n\n## PoCs\n* \u003chttps://drive.google.com/open?id=0BzPR8exG0kt6TlY1UWhiemVKRnc\u003e\n* \u003chttps://drive.google.com/open?id=0BzPR8exG0kt6WWUzU0tKUjFhdjg\u003e\n* \u003chttps://drive.google.com/open?id=0BzPR8exG0kt6VzlaWVVJdEtNR0k\u003e\n* \u003chttps://drive.google.com/open?id=0BzPR8exG0kt6SnJwM01KSzAzMjA\u003e\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcldrn%2Fmacphish","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcldrn%2Fmacphish","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcldrn%2Fmacphish/lists"}