Safe-Haven

Safe-Haven
Download Copy
Title: Safe-Haven
Author: I am Jakoby

A script used to open an elevated powershell console and created a folder ignored by the AntiVirus. This is a UAC bypass payload that will open an elevated powershell console. Next a Directory called "safe" will be generated in your Documents Directory. The "safe" directory will be added to the Window's Defender Exclusion list. The AntiVirus will ignore all files downloaded to or ran from here.

Execution is the method of either remotely or locally running code — malicious or otherwise — on a target computer. Execution is typically coupled with other techniques to carry out more complex tasks, like performing reconnaissance, exfiltration or credential harvesting. Execution may be ephemeral, or coupled with persistence techniques used to maintain remote access or continued code execution. See all execution payloads.

This payload is for the USB Rubber Ducky — a "flash drive" that types keystroke injection payloads into unsuspecting computers at incredible speeds. It's no wonder this little quacker has made appearances on Mr. Robot, FBI, Blacklist, National Geography and more!

Submit your own payload, or browse more featured USB Rubber Ducky Payloads.

 

 

Related Payloads

Send Messages In Discord Channel-Server
Send Messages In Discord Channel-Server
This script can be used to send messages in a specific channel of a Discord text server. Open the GUI interface and tro
Read More
Tree Structure Of The Operating System
Tree Structure Of The Operating System
This script allows the exfiltration of the structure of the files contained in a machine, through the use of the tree co
Read More
MacDocsExfill
MacDocsExfill
Exfilter all the images from the principal folders on unlocked MacOS targets. Stashes them in /loot/MacDocsExfill
Read More