Skip to content
/ Credential-Capture-Email-Automation Public

Automates the process of capturing screenshots from the Windows Credential Manager and sending them via email using DuckyScript and PowerShell.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

datadotlog/Credential-Capture-Email-Automation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
AnotherWayToSend
AnotherWayToSend
 
 
CSDP - DuckyScript 3.0
CSDP - DuckyScript 3.0
 
 
CaE.ps1
CaE.ps1
 
 
README.md
README.md
 
 

Repository files navigation

Automated Credential Manager Screenshot Capture and Email Sender

This project automates the process of capturing screenshots from the Windows Credential Manager and sending them via email using DuckyScript 3.0 and PowerShell.

Overview

This project provides an automated solution for capturing screenshots from the Windows Credential Manager and securely sending them via email. It combines DuckyScript 3.0 for automation of user actions and PowerShell for handling screenshot captures and email sending. This tool is designed for use in offensive security assessments to demonstrate vulnerabilities in physical access and credential management.

Key Features

  • Automated Screenshot Capture: Uses DuckyScript to open the Windows Credential Manager and execute a PowerShell script.
  • Multiple Screenshots: Captures multiple screenshots of the Credential Manager for thorough documentation.
  • Secure Storage: Stores screenshots in a zip file encrypted with a specified password.
  • Email Delivery: Automatically sends the encrypted zip file to a specified email address using various email services.
  • Cleanup: Deletes all temporary files after the email is sent to avoid detection.

Detailed Workflow

  1. DuckyScript Execution:

    • Opens the Windows Credential Manager.
    • Executes a PowerShell script to handle the rest of the process.

  2. PowerShell Script Execution:

    • Creates a directory to store screenshots.
    • Captures multiple screenshots at defined intervals.
    • Compresses and encrypts the screenshots into a zip file.
    • Sends the encrypted zip file via email to a pre-configured address using one of several supported email services.
    • Cleans up all temporary files and directories to leave no trace.

Requirements

  • A USB Rubber Ducky with DuckyScript 3.0 or a Flipper Zero configured as a BadUSB.
  • PowerShell configured on the target Windows machine.
  • Valid SMTP server credentials or API keys for the selected email service.

Supported Email Services

  • Outlook
  • Outlook REST API
  • Gmail SMTP
  • Thunderbird SMTP
  • Office 365 SMTP
  • Yahoo Mail SMTP
  • SendGrid SMTP
  • Mailgun API
  • Sendinblue API

Security Considerations

  • Permission: Ensure you have authorization to perform security assessments on the target machine.
  • Confidentiality: Handle captured data securely and responsibly.
  • Legality: Use this tool only for ethical hacking and authorized security testing.

About

Automates the process of capturing screenshots from the Windows Credential Manager and sending them via email using DuckyScript and PowerShell.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages