From 4f3c8d5e5504755830d621d4c80849fda95510b4 Mon Sep 17 00:00:00 2001 From: TheDragonkeeper Date: Tue, 7 Nov 2017 23:23:44 +0000 Subject: [PATCH] Updated to run from /usr/bin --- .../exfiltration/Email-Sender/README.md | 24 ++++++++++++++++++- 1 file changed, 23 insertions(+), 1 deletion(-) diff --git a/payloads/library/exfiltration/Email-Sender/README.md b/payloads/library/exfiltration/Email-Sender/README.md index 4f62cc3..e3b598b 100644 --- a/payloads/library/exfiltration/Email-Sender/README.md +++ b/payloads/library/exfiltration/Email-Sender/README.md @@ -3,7 +3,7 @@ | **Title** | Email-Sender | | **Description** | Sends emails / has html and file support / it can be used with bash and python . | **Author** | TheDragonkeeper | -| **Version** | 1.0 | +| **Version** | 1.1 | | **Category** | Exfiltration | | **Target** | Any | @@ -11,3 +11,25 @@ |:----------|:-----------------:|:----------------------------| | SUCCESS: | Blink Green | Payload ended complete | | SETUP: | Blink Yellow | Payload is waiting on network | + +| Command | Arguments | +:----------|:-----------------| +| SENDMAIL | $FROM $RCPT "$SUBJECT" "$BODY" $SERVER $USER $PASS "$FILE" | + + +Running the payload will install the command to /usr/bin +this will allow you to use the command SENDMAIL to send an email using your bash payload +the default arguments are as follows. + + + +| $1 | $2 | $3 | $4 | $5 | $6 | $7 | $8 +|:----------|:----------|:-----------------|:----------|:----------|:-----------------|:----------|:-----------------:| +| $FROM |$RCPT |"$SUBJECT"| "$BODY"| $SERVER | $USER | $PASS |"$FILE" | + + +if you wish to hard code one of these values you can simply edit the SENDMAIL file and then drop the numbers down a value; +i.e if you change $1 to 'thisismyemail@somedomain.net' then $2 now needs to be $1 + +The other option is to edit the python file 'sendemail.py' and change the corresponding sys.argv[1] in the same way. +but then you need to make sure you also edit the SENDMAIL to only send the amount of arguments needed.