Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

  • Days Won


Everything posted by TheZeal0t

  1. Hey, @Darren Kitchen, I've been two away from being reviewed for about a year now. Any chance you can take a look? Improved File Extractor It would mean a lot to get included in the official repo... plus, I've added some neat features for exfiltrating configuration files from a Windows system. This is a great feature for penetration testing embedded devices, to help look for plaintext passwords and such. The Zeal0t
  2. Hello, all, Is there a way to type a "CTRL-ALT--DELETE" on the BashBunny? I've tried: QUACK CTRL ALT DEL QUACK CTRL ALT DELETE QUACK CTRL-ALT-DEL I can't tell if I'm using the wrong key series, or if there is some issue with the platform I'm testing against. Any help is appreciated.
  3. Perhaps a simpler way is to just substitute 0's for spaces in the date/time stamp, like so: set dt=%DATE:~6,4%_%DATE:~3,2%_%DATE:~0,2%__%TIME:~0,2%_%TIME:~3,2%_%TIME:~6,2% set dt=%dt: =0% Format date and time in a Windows batch script
  4. I've had two BashBunny payloads fail on me (USB_File_Exfiltration and SmartFileExtract_Exfiltration) when I ran them in the morning, after working on them for a full day trying to get them to work (the night before). Debugging the scripts on Windows, I found out that the date/time stamp formatting for the filename was causing the issue. The hour is left-padded with a space in the AM. I found the following hint for creating Windows Batch Script variables that are properly formatted with the date/time. My modified code to match the format in the payload scripts is below: @echo off for /f "tokens=2 delims==" %%a in ('wmic OS Get localdatetime /value') do set "dt=%%a" set "YY=%dt:~2,2%" & set "YYYY=%dt:~0,4%" & set "MM=%dt:~4,2%" & set "DD=%dt:~6,2%" set "HH=%dt:~8,2%" & set "Min=%dt:~10,2%" & set "Sec=%dt:~12,2%" set "datestamp=%YYYY%%MM%%DD%" & set "timestamp=%HH%%Min%%Sec%" & set "fullstamp=%YYYY%%MM%%DD%_%HH%%Min%%Sec%" echo datestamp: "%datestamp%" echo timestamp: "%timestamp%" echo fullstamp: "%fullstamp%" pause Here is the output: datestamp: "20190809" timestamp: "084546" fullstamp: "20190809_084546" Press any key to continue . . . And here is the link that helped me figure it out: How do I get current datetime on the Windows command line, in a suitable format for using in a filename? I hope this helps someone avoid the struggle I've been having the last two days.
  5. Scared me for a minute... It took about five minutes AFTER THE REBOOT for the firmware to be completely updated. I had the Blue/Red blinking light, too. It might be reassuring to have that information in the documentation on the website.
  6. What precisely do you mean by "user database"? Are you talking about recovering password hashes for users from Windows machines? Linux? Mac OS X? Or from an actual database? To get password hashes for the OS, you have to have Administrator (Windows) or root (Linux / Mac OS X) permissions. Windows password hashes reside in the Security Account Manager file (SAM file... and that is its name), or /etc/shadow on Linux / Mac OS X. Which exploit you will use to get Administrator or root will depend on a huge number of factors, including: How well is the system defended? How strong are the passwords? What services / ports are active and listening? Are any applications running as NT Authority\SYSTEM or root? Is anyone dumb enough to tell you their credentials over the phone, in response to an email, or on a fake credential-harvesting web site?
  7. Even though the single tick appears in the field, if you backspace over it and save, you can get AutoSSH to run. The backtick will appear again when you look at the config, but AutoSSH will work, regardless.
  8. I am having a number of troubles with certain modules. I have gotten autossh to work, but the Meterpreter shells don't, and several others are having problems.
  9. Just backspace over the single tick. It shows up in the display, but you can configure SSH correctly by just removing the single tick. It will reappear when you go back, but SSH will still be working.
  • Create New...