Jump to content
Hak5 Forums


Active Members
  • Content count

  • Joined

  • Last visited

  • Days Won


About MB60893

  • Rank
    Student; Software Specialist

Profile Information

  • Gender
  • Location
  • Interests
    Software; Hardware; Old Computers; Artificial Intelligence; Operating System Internals; System Architecture; Digital Equipment Corporation;

Recent Profile Visitors

2,209 profile views
  1. Make sure to enable network sharing to the Bash Bunny. This needs to be done on Windows otherwise the payload won't give anything in the loot folder.
  2. MB60893

    Ability question

    The idea is that a locked PC can't have data exfiltrated from it, without having some method of transmitting/receiving data from behind the scenes (see Mubix example for snagging creds from a locked machine.) For a reverse-shell to be started, you need to actually be able to copy the file to the computer and execute it, meaning that you would have to have access to the machine through a graphical user interface of command line to copy the file and execute it. The best way of knowing whether the Bash Bunny can do something is to look at other people's examples, or try things out on a computer beforehand by typing everything on the keyboard yourself. This will give you an indication as to what is possible, and what is not.
  3. MB60893

    Bare Metal Programming

    @e-Euler A question I have frequently asked! It depends on what you want to do. For example, the USB Rubber Ducky is based off an Arduino Teensy platform, which is typically programmed in C. If you're interested in making hardware, check out Arduino type solutions and PICAXE microcontroller chips. If you want to go a step up from here, you could check out Field Programmable Gate Arrays (FPGAs.) Think of these like "liquid" hardware, in the sense that you program them using Verilog or VHDL, and the physical gates on the chip become a piece of hardware you create. It's kind of difficult to explain, but Ben Heck had a great example on his show where he turned an FPGA into a GameBoy, not by actually simulating a GameBoy's software like an emulator does, but actually by making the FPGA work physically like the electronics of the GameBoy of old. I wouldn't blame you if FPGA's are too complicated though... Personally, I would recommend using an Arduino for custom-hardware solutions as they are quick to use, and easily scalable to meet your needs. If you need a more powerful base, I'd recommend looking at using a Raspberry Pi and the GPIO pins on board, which can be used just like the pins on an Arduino. Additionally, I have done numerous projects with a library for C called "WiringPi", which gives you the ability to use Arduino commands in your C code for the GPIO pins! If that is still too complicated, Python also has some easy GPIO examples for the Raspberry Pi, although you will substantially compromise performance of the solution for easy coding in return. I hope this helps! If you have any other queries, feel free to write them below or DM me. ^_^ -MB60893.
  4. MB60893

    Does keystroke injection work on iPhone?

    I don't know about opening apps and stuff, but on the logitech ultrathin portable keyboard cover for iPad, you could move around the screen using the "command" and "left"/"right" arrows on the keyboard. Something like "command+3" or "Function+3" (don't include the +) opens the search feature, and I think you can open apps that way.
  5. MB60893

    Does keystroke injection work on iPhone?

    I do not off the top of my head. I know that such commands are possible with a bluetooth keyboard (such as the Logitech bluetooth keyboards for iPad, which you can press combinations of buttons for using the "command" key and letters on the keyboard, which would work I assume by using the "GUI" button syntax for the USB rubber ducky/Bash Bunny.)
  6. MB60893

    Does keystroke injection work on iPhone?

    You would need a lightning adapter for most modern iPhones, the only caveat being that any accessory plugged into an iOS device prompts whether or not you wish to "Trust" the device that is connected to your phone. Permitting you know the passcode and are able to press "Trust", go for it. ^_^
  7. MB60893

    Bash Bunny failure

    Try it on a different computer. Also, be wary that the Bash Bunny does require 5V at something like 1.2A (I think...) so make sure that its getting enough juice, otherwise it may not be turning on properly. If that still doesn't work, hit up the HakShop... I'm sure they'll be happy to help you. ^_^
  8. MB60893

    tools not installed on BB

    Try changing the switch position from arming mode to another switch position. The tools are located under the /opt/tools directory on the bash bunny if memory serves... try checking there. Also, check that there isn't already a /tools directory.
  9. MB60893

    Wait for exe to finish

    Actually, upon further testing it appears that the mount_udisk function can simply be run to allow the BashBunny access to the disk. Any changes Windows or another operating system make to the storage part of the BashBunny are instantaneously able to be accessed under the udisk directory on the BashBunny. However, I haven't had success creating files with the BashBunny for the Windows OS to see. Despite this, that should solve your problem of being unable to access it without removing the drive. 🙂
  10. MB60893

    Wait for exe to finish

    So I tried just using the mount script below to synchronise directories and that worked well. See if you can get away using just that, or if need be use the unmount as well... function mount_udisk() { mkdir -p /root/udisk mount -o sync /dev/nandf /root/udisk } function unmount_udisk() { sync umount /dev/nandf } * These were in the bunny_framework script on the Bash Bunny. You may be able to call them this way, but just be careful when you do. I don't know the consequences of doing this, especially if you still have it mounted when you pull the USB... Make sure you unmount the disk before flashing the LED.
  11. MB60893

    Wait for exe to finish

    Considering the BB syncs the loot folder after ejecting, there must be a way to force it to sync... Similarly to my previous idea of having a file created for the BB to poll, I would suggest refreshing the LOOT directory on the BB side manually in the script (I'm not sure if there is an easy way to do this without unmounting the directory...?) essentially polling it until it finds the file... Hopefully that would work.
  12. MB60893

    Wait for exe to finish

    I'd append a line to the powershell script that creates a file on the Bash Bunny in a given folder. When LaZagne has finished executing, the powershell command would simply execute that line, creating a file on the Bash Bunny. Now, on the Bunny, you could modify the existing batch script to loop every 200ms or something to see if the file has been created. If it has, you can delete the file, and the LED could blink green. Voila! A hacked machine. ^_^
  13. MB60893

    Problem with long strings

    I don't believe the rate of typing characters can be changed directly... I don't know the process of doing it on the BashBunny, but you may need to avoid using the USB Rubber Ducky commands and create your own code that allows the BashBunny to act as a HID and type with the delays. Else get the duckyscript to type each character individually (horrible, but doable in the article I linked to in my previous post.)
  14. MB60893

    Problem with long strings

    Also, see this forum post for more information:
  15. MB60893

    Problem with long strings

    See DEFAULT_DELAY on the DuckyScript Github Page: https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Duckyscript Not sure if this has been implemented entirely with the BashBunny, but I see no reason for it not to have been.