bg-wa
-
Posts
85 -
Joined
-
Last visited
-
Days Won
5
Everything posted by bg-wa
-
Open/close prompt on most systems through HID https://github.com/bg-wa/bashbunny-payloads/blob/bunny_hid_prompt_helpers/payloads/library/bunny_hid_prompt_helpers.sh
-
Moved to https://github.com/bg-wa/bashbunny-payloads/blob/bunny_debug_helpers/payloads/library/bunny_debug_helpers.sh Added timestamps PR #111
-
** BUNNY DEBUG HELPER ** I've extracted my debug code to a simple helper with an OFF switch. I'll eventually do a separate PR for this, but if anyone needs a simple debug helper it currently lives on my `develop` branch. https://github.com/bg-wa/bashbunny-payloads/blob/develop/payloads/library/bunny_debug_helpers.sh
-
** BUNNY DEBUG HELPER ** I've extracted my debug code to a simple helper with an OFF switch. I'll eventually do a separate PR for this, but if anyone needs a simple debug helper it currently lives on my `develop` branch. https://github.com/bg-wa/bashbunny-payloads/blob/develop/payloads/library/bunny_debug_helpers.sh
-
I think I'm going to fork this into a new helper so this logic can be called from any script instead of having to dedicate a switch to it...
-
I've started to compile a cross-platform cleanup script here: https://github.com/bg-wa/bashbunny-payloads/tree/master/payloads/library/ghost_cleanup It currently works on windows, mac and unity, and uses code from various recent episodes. I'll also be adding code I find in these forums soon. (Unmounting USB Storage, Network Device cleanup, etc.)
-
This payload has been bumped to a working 1.0 release!! https://github.com/bg-wa/bashbunny-payloads As described, it removes input history from Windows, Mac and Linux.
-
Thanks @sWeed I'll roll that into the script this evening.
-
[Payload] Ghost Cleanup https://github.com/bg-wa/bashbunny-payloads/tree/develop/payloads/library/ghost_cleanup The goal of this payload is to provide a universal (WIn/Mac/Lin) HID script to clean up your tracks after an attack. The idea is to have this as a switch 2 payload to easily execute after an attack. Currently, I have code to: Select OS (Defaults to linux, but can be switched manually or with attack 1, by writing an appropriately named file to the BB loot folder) Ducky script from E2124 to open cmd/terminal Clear input history [mac/linux] Clear all bash history (or optioanlly set how many lines to remove from the end of ~./bash_history) [Win] use regedit to remove run commands [Win] Remove extra Ethernet adapters created by BB. (*WIP, looking at different methods) Comments providing guidance on where to insert your custom cleanup code for each platform Please feel free for fork and contribute! ** This script is a Work in Progress, as I'm still waiting on my BashBunny to arrive.
