RegDoor

RegDoor

by unknown81311 May 09, 2022

Execution USB Rubber Ducky

Create registry string var in the startup registry dir to website with a unique id for identifying.
Admin who never sleeps

Admin who never sleeps

by UberGuidoZ May 09, 2022

Execution USB Rubber Ducky

Adds a local hidden admin user and sets power settings to never sleep.

Admin who never sleeps

Admin who never sleeps

by UberGuidoZ May 09, 2022

Execution OMG

Quick and simple script that adds a local hidden admin user then sets power settings to never sleep.
Ai-Cable

Ai-Cable

by 0iphor13 May 03, 2022

Execution OMG

This payload will greet you, until you kill it! Maybe, if you wait long enough, it will write its own payload. Click run and let it happen, don't move! Might...

FodCableII - UAC Bypass

FodCableII - UAC Bypass

🏆   by 0iphor13 April 08, 2022

Execution OMG

Use your O.MG Cable / Plug to bypass UAC using one of the Fodhelper.exe methods. This POC will get you an elevated powershell instance and won't trigger AV a...
screenGrab

screenGrab

🏆   by drapl0n April 08, 2022

Bash Bunny Execution

screenGrab payload captures snapshots of target's screen periodically and store them into bunny.

imagesOfYore

imagesOfYore

by drapl0n April 08, 2022

Bash Bunny Execution

Taking advantaged of cached images, imagesOfYore is simple payload which exfiltrates every image that target ever had in his disk.
bunnyDOS

bunnyDOS

by drapl0n April 08, 2022

Bash Bunny Execution

bunnyDOS payload intelligently search target's network for open http(configurable for https) ports and executes DOS it.

camPeek

camPeek

by drapl0n April 01, 2022

Bash Bunny Execution

camPeek payload peeks through targets web cam and capture images and stores them in bunny.
DirtyPipe

DirtyPipe

by drapl0n March 23, 2022

Bash Bunny Execution

Exploit for a new Linux vulnerability known as 'Dirty Pipe(CVE-2022-0847)' allows local users to gain root privileges. The vulnerability is tracked as CVE-20...

termBomb

termBomb

by drapl0n March 02, 2022

Execution USB Rubber Ducky

termBomb prompts message "!!!!!!YOU HAVE BEEN HACKED!!!!!!" and executes fork bomb on launching shell/terminal.
PwnKit Vulnerability - Local Privilege Escalation - Compiled

PwnKit Vulnerability - Local Privilege Escalation - Compiled

🏆   by TW-D January 29, 2022

Bash Bunny Execution

This is a version of the PwnKit Vulnerability Local Privilege Escalation containing pre-compiled binaries for x86_64 Linux. If you don't want to use the p...


PwnKit Vulnerability - Local Privilege Escalation

PwnKit Vulnerability - Local Privilege Escalation

🏆   by TW-D January 29, 2022

Bash Bunny Execution

The Qualys Research Team has discovered a memory corruption vulnerability in polkit’s pkexec, a SUID-root program that is installed by default on every ma...

DNS-TXT-Run

DNS-TXT-Run

by @keld_norman January 05, 2022

Execution OMG

Use a DNS TXT record to get the commands you want to execute instead of typing them in An example of how you could use DNS TXT records to get the powershel...

DuckyHelper

DuckyHelper

by 0iphor13 January 05, 2022

Execution USB Rubber Ducky

UAC bypass for privilege escalation (Method FodHelper) AV will notify, but payload will still be executed Payload configured in line 19 & 21 (cmd.exe) : ...
DUCKY_REAPER

DUCKY_REAPER

by JonnyBanana January 05, 2022

Execution USB Rubber Ducky

The script is a One-Liner and call an html page with a css webkit filter attack inside, this webpage crash the system webpage with the exploit here: https://...

Win SSH server

Win SSH server

by Cribbit December 21, 2021

Bash Bunny Execution

Installs and runs a SSH Server on Windows.
PshRevShell

PshRevShell

by cerebro11 September 30, 2021

Execution Key Croc

A fileless PowerShell reverse shell to the KeyCroc. A netcat listener should be ran on the KeyCroc before executing the payload (ex: "nc -nvlp 4444")