-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathworkflow.json
More file actions
130 lines (130 loc) · 6.54 KB
/
Copy pathworkflow.json
File metadata and controls
130 lines (130 loc) · 6.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
{
"workflows": {
"spearphish": {
"type": "wizard",
"steps": [
{"title": "Spear-Phishing Attack", "description": "Craft email messages with malicious payloads"},
{"prompt": "attack_type", "component": "radio_group", "options": ["Perform a Mass Email Attack", "Create a FileFormat Payload", "Create a Social-Engineering Template"]},
{"prompt": "lhost", "component": "text", "if": "attack_type == 1 or attack_type == 2"},
{"prompt": "lport", "component": "text", "default": "443", "if": "attack_type == 1 or attack_type == 2"},
{"prompt": "fileformat", "component": "radio_group", "if": "attack_type == 1 or attack_type == 2"},
{"prompt": "confirm", "component": "confirm"}
]
},
"website_attack": {
"type": "wizard",
"steps": [
{"title": "Website Attack Vectors", "description": "Web-based attacks using cloned sites"},
{"prompt": "attack_method", "component": "radio_group", "options_key": "attack_methods"},
{"prompt": "web_source", "component": "radio_group", "options_key": "web_sources"},
{"prompt": "url", "component": "text", "if": "web_source == 2"},
{"prompt": "import_path", "component": "text", "if": "web_source == 3"},
{"prompt": "lhost", "component": "text"},
{"prompt": "lport", "component": "text", "default": "80"},
{"prompt": "ssl", "component": "confirm", "default": false},
{"prompt": "nat", "component": "confirm", "default": false},
{"prompt": "external_ip", "component": "text", "if": "nat == true"},
{"prompt": "confirm", "component": "confirm"}
]
},
"infectious_media": {
"type": "wizard",
"steps": [
{"title": "Infectious Media Generator", "description": "Create USB/CD autorun with malicious payload"},
{"prompt": "media_type", "component": "radio_group", "options": ["File-Format Exploits", "Standard Metasploit Executable"]},
{"prompt": "lhost", "component": "text"},
{"prompt": "lport", "component": "text", "default": "443"},
{"prompt": "confirm", "component": "confirm"}
]
},
"payload_listener": {
"type": "wizard",
"steps": [
{"title": "Create a Payload and Listener", "description": "Generate standalone Metasploit payloads"},
{"prompt": "payload_type", "component": "radio_group", "options_key": "payload_types"},
{"prompt": "meterpreter_payload", "component": "radio_group", "options_key": "meterpreter_payloads"},
{"prompt": "lhost", "component": "text"},
{"prompt": "lport", "component": "text", "default": "443"},
{"prompt": "encoding", "component": "radio_group", "options_key": "encoders"},
{"prompt": "confirm", "component": "confirm"}
]
},
"mass_mailer": {
"type": "wizard",
"steps": [
{"title": "Mass Mailer Attack", "description": "Send bulk emails via SMTP"},
{"prompt": "smtp_server", "component": "text"},
{"prompt": "from_email", "component": "text"},
{"prompt": "to_emails", "component": "text"},
{"prompt": "subject", "component": "text"},
{"prompt": "body", "component": "multiline"},
{"prompt": "email_list_file", "component": "text", "optional": true},
{"prompt": "confirm", "component": "confirm"}
]
},
"teensy": {
"type": "wizard",
"steps": [
{"title": "Arduino-Based Attack Vector", "description": "Program Teensy USB devices for HID attacks"},
{"prompt": "teensy_type", "component": "radio_group", "options_key": "teensy"},
{"prompt": "lhost", "component": "text", "if": "teensy_type in [1,2,3,4,5,6,12,14]"},
{"prompt": "lport", "component": "text", "default": "443", "if": "teensy_type in [1,2,3,4,5,6,12,14]"},
{"prompt": "confirm", "component": "confirm"}
]
},
"wireless": {
"type": "wizard",
"steps": [
{"title": "Wireless Access Point Attack Vector", "description": "Create rogue AP with DNS spoofing"},
{"prompt": "wireless_action", "component": "radio_group", "options": ["Start Access Point", "Stop Access Point"]},
{"prompt": "ssid", "component": "text", "default": "Free WiFi", "if": "wireless_action == 1"},
{"prompt": "channel", "component": "text", "default": "6", "if": "wireless_action == 1"},
{"prompt": "interface", "component": "text", "default": "wlan0", "if": "wireless_action == 1"},
{"prompt": "dhcp_range", "component": "radio_group", "if": "wireless_action == 1"},
{"prompt": "confirm", "component": "confirm"}
]
},
"qrcode": {
"type": "wizard",
"steps": [
{"title": "QRCode Generator", "description": "Generate QR codes with malicious URLs"},
{"prompt": "qr_url", "component": "text"},
{"prompt": "confirm", "component": "confirm"}
]
},
"powershell": {
"type": "wizard",
"steps": [
{"title": "PowerShell Attack Vectors", "description": "Create PowerShell-based attacks"},
{"prompt": "ps_type", "component": "radio_group", "options_key": "powershell"},
{"prompt": "lhost", "component": "text", "if": "ps_type in [1,2,3]"},
{"prompt": "lport", "component": "text", "default": "443", "if": "ps_type in [1,2,3]"},
{"prompt": "confirm", "component": "confirm"}
]
},
"fasttrack_mssql": {
"type": "wizard",
"steps": [
{"title": "Microsoft SQL Bruter", "description": "Brute force MSSQL servers"},
{"prompt": "mssql_mode", "component": "radio_group", "options": ["Scan and Attack MSSQL", "Connect directly to MSSQL"]},
{"prompt": "target_cidr", "component": "text", "if": "mssql_mode == 1"},
{"prompt": "target", "component": "text", "if": "mssql_mode == 2"},
{"prompt": "port", "component": "text", "default": "1433"},
{"prompt": "username", "component": "text", "default": "sa"},
{"prompt": "wordlist", "component": "text", "optional": true, "if": "mssql_mode == 1"},
{"prompt": "password", "component": "password", "if": "mssql_mode == 2"},
{"prompt": "confirm", "component": "confirm"}
]
},
"fasttrack_exploits": {
"type": "wizard",
"steps": [
{"title": "Custom Exploits", "description": "Launch python-based exploits"},
{"prompt": "exploit_type", "component": "radio_group", "options_key": "exploits"},
{"prompt": "target", "component": "text"},
{"prompt": "port", "component": "text", "default": "445"},
{"prompt": "confirm", "component": "confirm"}
]
}
}
}