Cpt.Pickles
-
Posts
34 -
Joined
-
Last visited
Everything posted by Cpt.Pickles
-
Help idiots guide to use Rubberducky code to Basbunny
Cpt.Pickles replied to valentino00776's topic in Bash Bunny
Have you attempted a "helloworld" script to even know if your BB is set up to GermanNoobs point??? That is the first step... -
I only suggested that you SCP information off because it sounds like it has hanged randomly and we want to make sure we can get the file before that happens, granted it might happen when you scp it off.. changing the date can be done by: date -s "2 OCT 2006 18:00:00" Reading dmesg or the log file is for the most part easy, if you need help understanding something as you are looking google is your friend :) as most of it is documented. But let us know what the last couple of lines are for the set date... or if you don't set the date look at the last couple of lines in /var/log/messages right before the lines with all of the [0.000000]
-
dmesg is something that you will need to ssh into the bunny to see... however, if its failing and you cant get into it, you might need to look at the logs located at /var/logs/messages. What I would do to see what is causing the bunny to fail is change the date to today, or something different than what its booted with, to identify different boots. Let if fail boot it back up scp the file off before it fails and read in notepad ++ or other text editor. Lots of steps but should point to what might be causing the issue.
-
Does it happen seconds minutes after you plug it in? Does it happen under load? What are you running when it happens? Need more info to help
-
On switch 2 remove STORAGE, save , and follow the instructions here http://wiki.bashbunny.com/#!./index.md#Sharing_an_Internet_Connection_with_the_Bash_Bunny_from_Windows to remote into it.
-
I should have included this post in my previous as it sounds like you might be having the same issue...
-
i messed up my bash bunny please help recover it
Cpt.Pickles replied to Ron4586's topic in Bash Bunny
If the BB is running properly it will flash blue in switch position 3, not sure if you are asking about after the reinstall process though, that I do not know...never done it. if you can ssh into the device mount the file system, I'm assuming you are saying Windows is saying that its read only. mount -o sync /dev/nandf /root/udisk Do ls -la /root/udisk does it also show that it is read only? ... Just in case you need help reading the output... https://wiki.archlinux.org/index.php/File_permissions_and_attributes Based on my device all files/folders(excluding "..") should have at least the following attributes, -rwxr-xr-x -
For me the BB shows as "USB Serial Device", in Win10. If you remove the BB do those COM ports disappear?
-
Include SERIAL in your attack mode, ssh into the bunny and run the following to monitor temps: while [ true ]; do echo "Zone 0: "`cat /sys/class/thermal/thermal_zone0/temp` echo "Zone 1: "`cat /sys/class/thermal/thermal_zone1/temp` printf "\n" sleep 10s done This will allow you to see if it is an actual overheating issue or if its another issue... Darren posted the following about the temp because many have reported warm/hot devices.
-
If you look at the default payload.txt in the two switches they have STORAGE listed as the ATTACKMODE as well as the Ethernet adapters for win/linuxosx. To test just remove STORAGE from the test payloads :) If you look there has been communication as to why the Ethernet is not working as intended for what sounds like most users... at this time.
-
I would read the following wiki, http://wiki.bashbunny.com/#!index.md, and watch the video Hak5 had prepared... it sounds like some steps are being skipped. Follow the others advice by removing STORAGE from the default switch 2 position in the payload, @Darren Kitchen thoughts on removing this from installs/github due to the worries/confusion. From here you can use the wiki to help you get the bunny online and updated. Next, flip the switch back position 3 take the files in tools_installer and paste it into switch one folder and let it run, note the code will probably find the files in the library folder first. Now your bash bunny should be ready to run the all the other payloads at the time of writing.
-
Nice find, just know that if you are building attacks based off of that you will run into issues when you go to attack. However, they do sell these devices as more than just an attack surface ;)
-
Proper command for ATTACKMODE custom VID and PID
Cpt.Pickles replied to Alex Umrysh's topic in Bash Bunny
Good catch, can confirm this is the case... it also looks like the wiki should remove VIP/PID from the Bunny script portion as supplying something like the following does not work as they are not able to be used alone. LED B ATTACKMODE HID VID_0X03EB PID_0X2015 #Do something #Try to change vid pid. VID_0X045E PID_0X0007 LED G Unless I reading the wiki wrong. -
This should answer some of your issues you are having. At the moment it looks like we are not able to combine RNDIS_ETHERNET with another attack mode. Sounds like you will have to perform each attack mode as needed and switch when you need another attack vector.
-
Windows 7 "was unable to install your CDC Serial"
Cpt.Pickles replied to ChaoticSecurity's topic in Bash Bunny
@moumoutaru Thanks but I am not the one having an issue, ChaoticSecurity is, hope that was all that was needed however. I was also mistaken, I do have two hardware IDs listed. -
Windows 7 "was unable to install your CDC Serial"
Cpt.Pickles replied to ChaoticSecurity's topic in Bash Bunny
I might be reaching the limits of what I can help with, as this might be a Win7 item... But I think Win10 only displays one hardware ID when loading serial, I will double check and report back later. I know this is not the identified issue but have you attempted switch2 or just RNDIS_ETHERNET in the payload? If RNDIS driver loads properly, attempt to ssh via methods described on the wiki for validation. Just trying to narrow down the scope of the issue. I hope someone else with Win7 can identify possible differences in the screenshots you have to a working configuration. -
Windows 7 "was unable to install your CDC Serial"
Cpt.Pickles replied to ChaoticSecurity's topic in Bash Bunny
it looks like its loading the wrong VIP/PID combo... was the switch moved? That is the VID/PID I would expect from Switch position 3 0xF000/0xFF11 <-- is the expected VID/PID combo... -
Windows 7 "was unable to install your CDC Serial"
Cpt.Pickles replied to ChaoticSecurity's topic in Bash Bunny
It almost looks like the same issue with Windows 10 not liking two attackmodes (ATTACKMODE STORAGE RNDIS_ETHERNET). Do you mind changing the payload in switch1 to just ATTACKMODE SERIAL? If the driver loads you can then ssh into the device and make changes by mounting the file path. Also in device manager what is the driver that is attempting to be loaded it should still show I believe. I will not be able to test with you as I do not have a Win7 host but this might confirm my suspicion. -
Bunny chimes but no drive displays in arm mode
Cpt.Pickles replied to My Name Jeff's topic in Bash Bunny
Attempt to SSH into the device, through serial and tweak the payload for switch two for serial and storage(same attackmode as switch 3). If you get in you will have to mount the drive shown in the thread "Install tools" mount -o sync /dev/nandf /root/udisk from here find the the switch folder and change the ATTACKMODE to ATTACKMODE STORAGE SERIAL. If this does not work you can attempt to use switch two(default windows switch) the network portion should fail, but storage should be available... at least mine worked this way in current Win10 builds. It has been identified that ATTACKMODE RNDIS_ETHERNET STORAGE doesn't work in other threads on the BB forum.
