Search the Community
Showing results for tags 'attackmode'.
I want the Bash Bunny to work reasonably well with Windows but not have the same identifiers it comes with. Can Hak5 recommend an alternative VID/PID or SN to use in an attack that disguises the Bash Bunny in a cromulent manner? I like the OS determination method represented in the WIN93 prank and other payloads. However, in a windows computer already set up with the Bash Bunny for Ethernet sharing, this does not work well. I also imagine it might not work well in a computer that is actually using the embiggened blue vendor products that you are spoofing instead of the Bash Bunny.
Testing the BashBunny for use on a physical pentest/red team engagement but noticing a huge problem with using this device for a real world assessment. Mainly, on a Windows 7 x64 desktop, the initial driver install process took over 2 minutes to install. After initial drivers are installed, my payload initializes and finishes within 10 seconds which is great if only I didn't have to install the drivers first... What makes this issue even worse is that the BashBunny doesn't wait until the drivers have been installed before executing the payload which means you need to unplug/re-plug the de