A script I put together to locate your stolen devices, or your stolen baited devices. This program is meant to locate your devices. Save the execution file on the boot partition of your devices and when someone plugs it into their computer Using a one liner in the run box a script will be downloaded and executed that grabs the Name and email of the associated Microsoft account and the latitude and longitude of where the device was activated. This information is stored in a text document that is then uploaded to your dropbox. Finally the end of the script will delete the run box and powershell history and delete the files in the TMP Folder and Recycle Bin.
Incident Response, or simply IR, is all about managing the aftermath of a security breach. It's all about identifying, minimizing and containing damage as quickly as possible, as well as remediation such that the risk of additional incidents are minimized. A good incident response plan outlines the responsibilities of all parties, in addition to the procedures the organization takes to manage the incident. Having containment payloads developed, tested and at the ready before an incident will save valuable time when needed. See all incident response payloads.
This payload is for OMG — a platform built for covert field-use with features that enhance remote execution, stealth and forensics evasion, all while being able to quickly change your tooling on the fly.
Submit your own payload, or browse more featured OMG Payloads.