SRG

CMD-SHIFT-F toggles the toolbar in a maximized Chrome window? CTRL-CMD-F toggles full screen. I think you've just got the wrong key combo.

Just to confirm, could you ensure you're loading an HTTP page and not HTTPS? When I tested and was most frustrated, I realized I was clicking on favorites links, all of which were HTTPS. In the payload, only port 80 is being redirected to the captive portal. For the final question, that's all about how you plan to do your pentesting. Most of the payloads are meant to be quick ways of performing "unexpected backups" or injecting keystrokes to configure a computer, then make a quick exit with the BashBunny. This one would likely be more useful for while you're nearby. Maybe get the captive portal running while you're in a meeting with someone to capture creds, then once captured, grab the BashBunny and exit.

When you say "position 1" are you meaning the position closest to the computer? If so, that's arming mode. It's not supposed to execute any code.

There's three positions. The one closest to the computer is "arming" mode. It doesn't do anything but it does allow you to copy your payload to the other two switch positions. Position 1 is the farthest away from the computer and Position 2 is in the middle. They actually do the stuff in the payload.txt file in their respective directories.

Try pulling the payloads again from Github. There's be a bunch of updates. Make sure your bunny_helpers.sh file on the BashBunny is updated.

Items such cleaning the MRU list in Windows is such a common act, would it be good to add to a common library so it's not duplicated across payloads? There could be several common functions that are frequently used that could be called easily. win_ClearMRU() would be a simple call. payloads\library\common\*.sh Just source all sh files in that folder since Bash functions don't really add much overhead. Maybe have them included manually if you're concerned about expanding the namespace too much. Just a suggestion.

I can see AV apps or anti-malware apps monitoring for a USB device named BashBunny. Would it make sense to have a configuration option to change the device label and have that device name as part of bunny_helpers.sh?

autorun.inf is less successful than it was when it first came out. The best way is to use the BashBunny to inject keystrokes to run an executable.

Note that this is configured to only http. If your home page is https, it won't be automagically redirected as is. Try a direct http link to see if it is perhaps being redirected now. It wasn't working for me yesterday but today's pull seems to be working. I can't say for certain that I tried http yesterday unsuccessfully but can say that the current version is working fine for me.

Hi. I'm experiencing the same thing. It's just the PineAP module that's doing it. In looking at the file system, the settings are actually being saved. It's the reading back that isn't working. I tick the checkboxes and the files show the values changed but on reload, they're not read back properly. It's on my to-do list to investigate further but thought I'd share that in case anyone has suggestions.

SublimeText has ShellScriptImproved as a package that is easily installed to give Bash shell script syntax highlighting. Love SublimeText. :)

I agree with OS first. I'd be disappointed to look through type to find something I really wanted only to discover it wasn't applicable to my target OS.

Easiest way both for maintenance as well as for actual use is to put your script as is into a file. Say ducky.txt. Then do: QUACK ducky.txt Otherwise, if you want it inline, just put QUACK in front of each line.

I use a small "MiFi" device from FreedomPop. Device is cheap, then you can either go with the free service for 500MB/month or you can upgrade to something higher. One benefit is that you can connect several devices including the Pineapple and your laptop. http://www.freedompop.com The batteries on these things last a long, long time. I actually have two, one for just this and one for my own personal use. If you wanted to use my referral to give me bonus megs: http://fpop.co/eDcM or use the link above to not give me a referral.

That gave me a blank file. I think it's time for a reflash. I'll report back.