Save Your Thunderbird Settings via Dropbox #454
Conversation
This payload is designed in order to make Thunderbird configuration extraction immediate so that you can work in speed.
payloads/library/exfiltration/Save_Your_Thunderbird_Settings/payload.txt
Outdated
Show resolved
Hide resolved
payloads/library/exfiltration/Save_Your_Thunderbird_Settings/payload.txt
Outdated
Show resolved
Hide resolved
|
|
||
| This payload is designed in order to make Thunderbird configuration extraction immediate so that you can work in speed. It can be used, for istance, in case you have a lot of devices and want to quickly and manually save every single Thunderbird configuration. | ||
|
|
||
| **Alert!** I have also uploaded my personal Dropbox token, please don't use it because I need it for my own stuff! |
There was a problem hiding this comment.
Please remove any personal tokens.
Remember to use PLACEHOLDERS for configurable portions of your payload - do not share your personal URLs, API keys, Passphrases, etc...
There was a problem hiding this comment.
it's just a prank :-/
| Before running the program, ensure to set the following parameters (*except #DROPBOX_API_CONST that is a constant*) correctly/as you prefer: | ||
|
|
||
| ```plaintext | ||
| DEFINE #ACCESS_TOKEN aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g/dj1Sdlk1cGxvbzFPSQ== |
There was a problem hiding this comment.
Please update this to use a placeholder to prevent confusion. Similar to how it's defined inside your payload.
DEFINE #ACCESS_TOKEN example-access-token
There was a problem hiding this comment.
it's just a prank :-/
There was a problem hiding this comment.
Convert from aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g/dj1Sdlk1cGxvbzFPSQ== via base64 and the result is https://www.youtube.com/watch?v=RvY5ploo1OI.
This video reindexes toward an Italian meme that says "Eh volevi..." so "eh you wanted..." referring to the fact that a person was trying to use a valid token while actually being pranked.
It's so bad to have to explain a joke :(
There was a problem hiding this comment.
I understand, but other might not and that's my concern. Other people might read your readme and see the base64 and assume its your token and use. They might not understand that its a joke. Its unlikely that someone will do this but we can prevent the possibility.
There was a problem hiding this comment.
I think we should be a little more flexible 🤷♂️
This payload is designed in order to make Thunderbird configuration extraction immediate so that you can work in speed.
I don't know if anyone else has uploaded the same thing in the past, so apologies if it already exists.