oXis Posted April 28, 2017 Share Posted April 28, 2017 Ding ding, it's payload time This is a two stages payload. First you use the 'injector' that will install a small bash script which is a wrapper for sudo. The script will store the passwords. Second, you use the 'cleaner' to get the passwords back and clean the backdoor. So basically, you get access to a computer running MacOS or Linux (you can config the payload by setting mac=true) and you install the backdoor. A couple of hours/days/weeks later you comme back, grab the passwords and erase traces. Easy Link: https://github.com/oXis/bashbunny-payloads/tree/master/payloads/library/credentials/SudoBackdoor I'll submit a pull request but first I need people to test this on MacOS and Linux. It works on my Linux Mint. Ninja! Link to comment Share on other sites More sharing options...
VincBreaker Posted April 28, 2017 Share Posted April 28, 2017 Great idea, well coded, may become really handy, thank you :) Link to comment Share on other sites More sharing options...
Michael Weinstein Posted September 20, 2017 Share Posted September 20, 2017 This was awesome. Hope you don't mind, I'm using this as a start to get my first bunny payload for snagging SSH credentials. Link to comment Share on other sites More sharing options...
oXis Posted September 20, 2017 Author Share Posted September 20, 2017 Link to comment Share on other sites More sharing options...
TecTom2003 Posted April 3, 2018 Share Posted April 3, 2018 I'm sorry, but what does this do? I don't know much about anything. Link to comment Share on other sites More sharing options...
oXis Posted April 3, 2018 Author Share Posted April 3, 2018 Replace sudo with a little bash script that acts like a wrapper around the real sudo to get sniff the password when the admin is using the sudo command. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.