If you are planning on plugging it in and unplugging it repeatedly you have to take in the time costs of it rebooting repeatedly for the off load and the upload.
I think that bringing a USB slitter and a 64GB USB would be more covert and faster.
Ooo. could you hide the bash bunny in a un-powered USB hub? That would make it more covert, and give you more storage for larger involuntary backups. (My next protect)
It would also be nice if you could hook it up the BB to the internet of the host computer so you could drop the files that way. but I do suppose if you are already grabbing files you can have the host computer send the files for you.
If speed of the exploit isn't that critical you could start with the RNDIS to SCP setup to make shure it works. Then you can use nmap -O to see if it can get it.
But if it is logged in then you could try sequentially trying to write a file to the BB with some ducky script and witch ever way writes the file then you have your OS.
