oXis Posted April 28, 2017 Posted April 28, 2017 Ding ding, it's payload time This is a two stages payload. First you use the 'injector' that will install a small bash script which is a wrapper for sudo. The script will store the passwords. Second, you use the 'cleaner' to get the passwords back and clean the backdoor. So basically, you get access to a computer running MacOS or Linux (you can config the payload by setting mac=true) and you install the backdoor. A couple of hours/days/weeks later you comme back, grab the passwords and erase traces. Easy Link: https://github.com/oXis/bashbunny-payloads/tree/master/payloads/library/credentials/SudoBackdoor I'll submit a pull request but first I need people to test this on MacOS and Linux. It works on my Linux Mint. Ninja!
VincBreaker Posted April 28, 2017 Posted April 28, 2017 Great idea, well coded, may become really handy, thank you :)
Michael Weinstein Posted September 20, 2017 Posted September 20, 2017 This was awesome. Hope you don't mind, I'm using this as a start to get my first bunny payload for snagging SSH credentials.
TecTom2003 Posted April 3, 2018 Posted April 3, 2018 I'm sorry, but what does this do? I don't know much about anything.
oXis Posted April 3, 2018 Author Posted April 3, 2018 Replace sudo with a little bash script that acts like a wrapper around the real sudo to get sniff the password when the admin is using the sudo command.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.