hak5
/
omg-payloads
mirror of https://github.com/hak5/omg-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
omg-payloads/payloads/library/exfiltration/ExfiltrateProcessInfo_Windows
History
aleff-github 320ac03f56 Update 2023-06-25 00:39:41 +02:00
..
ExfiltrateProcessInfo.ps1 script 2023-06-12 12:05:46 +02:00
README.md Update 2023-06-25 00:39:41 +02:00
payload.txt Exfiltrate Process Info 2023-06-12 12:04:54 +02:00

README.md

Exfiltrate Process Info - Windows

A script used to exfiltrate process info.

Category: Exfiltration

Description

A script used to exfiltrate process info.

This function uploads the content of a file called "tasklist_output.txt" to Dropbox using Dropbox API.

Firstly, a temporary file is created using the New-TemporaryFile cmdlet of PowerShell.

Then, the tasklist /v command is used to get the running processes output on the computer.

The output is then written to the temporary file using the Out-File cmdlet.

The Dropbox API endpoint for uploading a file is set, and the API parameters such as the destination path of the file on Dropbox and access credentials are specified.

Finally, the Invoke-RestMethod cmdlet of PowerShell is used to send an HTTP POST request to the Dropbox API and upload the file.

Getting Started

Dependencies

  • An internet connection
  • Windows 10,11

Executing program

  • Plug in your device

Settings

  • Dropbox Webhook

Credits

Aleff :octocat:


Github
Linkedin