From 02b03353a27612dc12541a387b59c25ae5737c56 Mon Sep 17 00:00:00 2001 From: Aleff Date: Mon, 12 Jun 2023 11:00:17 +0200 Subject: [PATCH 1/3] Stop A Single Process In Windows --- .../payload.txt | 62 +++++++++++++++++++ 1 file changed, 62 insertions(+) create mode 100644 payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt diff --git a/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt b/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt new file mode 100644 index 0000000..a02f2cd --- /dev/null +++ b/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt @@ -0,0 +1,62 @@ +REM ##################################################### +REM # | +REM # Title : Stop A Single Process In Windows | +REM # Author : Aleff | +REM # Version : 1.0 | +REM # Category : Execution | +REM # Target : Windows 10/11 | +REM # | +REM ##################################################### + + +REM Requirements: +REM - Nothing + + +REM Write the name of the process that you want to stop +DEFINE PROCESS_NAME example + + +REM Open Task Manager +GUI +DELAY 1000 +STRING Task Manager +ENTER +DELAY 1000 + +REM Goto search bar +TAB +DELAY 500 +TAB +DELAY 500 +TAB +DELAY 500 +TAB +DELAY 500 + +REM Write the process name +STRING PROCESS_NAME +DELAY 500 +ENTER +DELAY 500 +TAB +DELAY 500 +TAB +DELAY 500 +TAB +DELAY 500 +TAB +DELAY 500 + +REM Open the menu and close it ending the task +SHIFT F10 +DELAY 500 +DOWN_ARROW +DELAY 500 +DOWN_ARROW +DELAY 500 +ENTER +DELAY 2000 + +REM Close the task manager +ALT F4 From f6fb33e74c4b611884bfe2196afa378c8dd0934c Mon Sep 17 00:00:00 2001 From: aleff-github Date: Mon, 12 Jun 2023 11:01:17 +0200 Subject: [PATCH 2/3] Create README.md --- .../README.md | 21 +++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md diff --git a/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md b/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md new file mode 100644 index 0000000..b514ca0 --- /dev/null +++ b/payloads/library/execution/Stop_A_Single_Process_In_Windows/README.md @@ -0,0 +1,21 @@ +# Stop A Single Process In Windows + +This script can be used to quickly stop an active process on a windows machine. + +**Category**: Execution + +## Description + +This script can be used to quickly stop an active process on a windows machine. + +This script open the Task Manager app, then go to search bar, then write the process name that want to be stopped, open the right click mouse menu and click the end task option, then close the task manager app. + +## Dependencies + +* Nothing + +## Settings + +- Write the name of the process that you want to stop + + `DEFINE PROCESS_NAME example` From 94f2067034b4d7f0d30a5900b7b1c36f2d661344 Mon Sep 17 00:00:00 2001 From: Kalani Helekunihi <324833+kalanihelekunihi@users.noreply.github.com> Date: Mon, 12 Jun 2023 15:35:26 -0400 Subject: [PATCH 3/3] Update payload.txt --- .../payload.txt | 36 ++++--------------- 1 file changed, 6 insertions(+), 30 deletions(-) diff --git a/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt b/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt index a02f2cd..5469a3a 100644 --- a/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt +++ b/payloads/library/execution/Stop_A_Single_Process_In_Windows/payload.txt @@ -16,45 +16,21 @@ REM - Nothing REM Write the name of the process that you want to stop DEFINE PROCESS_NAME example - +DEFAULT_DELAY 500 REM Open Task Manager GUI -DELAY 1000 -STRING Task Manager -ENTER -DELAY 1000 +STRINGLN Task Manager REM Goto search bar -TAB -DELAY 500 -TAB -DELAY 500 -TAB -DELAY 500 -TAB -DELAY 500 +REPEAT 4 TAB REM Write the process name -STRING PROCESS_NAME -DELAY 500 -ENTER -DELAY 500 -TAB -DELAY 500 -TAB -DELAY 500 -TAB -DELAY 500 -TAB -DELAY 500 +STRINGLN PROCESS_NAME +REPEAT 4 TAB REM Open the menu and close it ending the task SHIFT F10 -DELAY 500 -DOWN_ARROW -DELAY 500 -DOWN_ARROW -DELAY 500 +REPEAT 2 DOWNARROW ENTER DELAY 2000