790 B
790 B
Title: HashDumpDucky
Author: 0i41E
OS: Windows
Requirements: DuckyScript 3.0
Version: 1.0
‼️ | This is just meant to be a PoC, as this method of Hashdump will result in empty, default hashes on recent versions of Windows.
Instruction:
Bring some time... This payload will run an obfuscated script to dump user hashes and exfiltrate the Administrator hash via Keystroke Reflection Method.
Instruction:
Compile this payload with payloadstudio, place it inside of your Ducky as inject.bin and you are good to go
Exfiltrate the out.txt file and try to crack the hashes.
props to Nikhil Mittal