From b6ab3cc61fd39c25f11f2f8db62c8e9300276084 Mon Sep 17 00:00:00 2001 From: Martin Sundhaug Date: Fri, 27 Oct 2017 03:49:49 +0200 Subject: [PATCH] Added metadata to existing payloads (#1) --- payloads/library/dnsspoof/payload.sh | 13 ++++++++++--- payloads/library/openvpn/payload.sh | 9 ++++++++- payloads/library/tcpdump/payload.sh | 13 ++++++++++++- payloads/switch1/payload.sh | 8 ++++++++ payloads/switch2/payload.sh | 8 ++++++++ payloads/switch3/payload.sh | 8 ++++++++ 6 files changed, 54 insertions(+), 5 deletions(-) diff --git a/payloads/library/dnsspoof/payload.sh b/payloads/library/dnsspoof/payload.sh index ca88fbe..b83951a 100755 --- a/payloads/library/dnsspoof/payload.sh +++ b/payloads/library/dnsspoof/payload.sh @@ -1,5 +1,12 @@ #!/bin/bash -# DNSSpoof payload +# +# Title: DNSSpoof +# Description: Forge replies to arbitrary DNS queries using DNSMasq +# Author: Hak5 +# Version: 1.0 +# Category: interception +# Target: Any +# Net Mode: NAT function setup() { @@ -14,7 +21,7 @@ function setup() { cp $(dirname ${BASH_SOURCE[0]})/spoofhost /tmp/dnsmasq.address &> /dev/null # Restart dnsmasq with the new configuration - /etc/init.d/dnsmasq restart + /etc/init.d/dnsmasq restart } function run() { @@ -22,7 +29,7 @@ function run() { LED ATTACK # Redirect all DNS traffic to ourselves - iptables -A PREROUTING -t nat -i eth0 -p udp --dport 53 -j REDIRECT --to-port 53 + iptables -A PREROUTING -t nat -i eth0 -p udp --dport 53 -j REDIRECT --to-port 53 } setup diff --git a/payloads/library/openvpn/payload.sh b/payloads/library/openvpn/payload.sh index 2e271eb..37bf7b3 100755 --- a/payloads/library/openvpn/payload.sh +++ b/payloads/library/openvpn/payload.sh @@ -1,5 +1,12 @@ #!/bin/bash -# OpenVPN payload +# +# Title: OpenVPN +# Description: Create a connection to a VPN-connection to an OpenVPN-server. Optionally: Send traffic from the clients through said tunnel. +# Author: Hak5 +# Version: 1.0 +# Category: remote-access +# Target: Any +# Net Mode: BRIDGE, VPN # Set to 1 to allow clients to use the VPN FOR_CLIENTS=0 diff --git a/payloads/library/tcpdump/payload.sh b/payloads/library/tcpdump/payload.sh index bc6f130..3dce864 100755 --- a/payloads/library/tcpdump/payload.sh +++ b/payloads/library/tcpdump/payload.sh @@ -1,5 +1,16 @@ #!/bin/bash -# TCPDump payload v1.0 +# +# Title: TCPDump +# Description: Dumps networking-data to USB storage. Completes on button-press or storage full. +# Author: Hak5 +# Version: 1.0 +# Category: sniffing +# Target: Any +# Net Mode: TRANSPARENT + +# LEDs +# SUCCESS: Dump complete +# FAIL: No USB storage found function monitor_space() { while true diff --git a/payloads/switch1/payload.sh b/payloads/switch1/payload.sh index 730b83f..25da1c3 100755 --- a/payloads/switch1/payload.sh +++ b/payloads/switch1/payload.sh @@ -1,4 +1,12 @@ #!/bin/bash +# +# Title: Default Payload +# Description: Sets the NETMODE to NAT, then sets the LED to ATTACK +# Author: Hak5 +# Version: 1.0 +# Category: default +# Target: Any +# Net Mode: NAT NETMODE NAT LED ATTACK diff --git a/payloads/switch2/payload.sh b/payloads/switch2/payload.sh index 730b83f..25da1c3 100755 --- a/payloads/switch2/payload.sh +++ b/payloads/switch2/payload.sh @@ -1,4 +1,12 @@ #!/bin/bash +# +# Title: Default Payload +# Description: Sets the NETMODE to NAT, then sets the LED to ATTACK +# Author: Hak5 +# Version: 1.0 +# Category: default +# Target: Any +# Net Mode: NAT NETMODE NAT LED ATTACK diff --git a/payloads/switch3/payload.sh b/payloads/switch3/payload.sh index 730b83f..25da1c3 100755 --- a/payloads/switch3/payload.sh +++ b/payloads/switch3/payload.sh @@ -1,4 +1,12 @@ #!/bin/bash +# +# Title: Default Payload +# Description: Sets the NETMODE to NAT, then sets the LED to ATTACK +# Author: Hak5 +# Version: 1.0 +# Category: default +# Target: Any +# Net Mode: NAT NETMODE NAT LED ATTACK