combatwombat27 Posted June 1, 2017 Share Posted June 1, 2017 (edited) Hey all! Inspired by Darren's recent blog post, I wanted to put together a version of the duckyscript SMB hash grab that didn't require an external networked SMB server setup. I know there are other ways of grabbing the hash given you have both HID and STORAGE access if you want, but it was a lot of fun to put together at the very least. Pull Request to Bash Bunny Github Repo Download Github SMBHashGrab Please reach out to me with any bugs or suggestions. * Author: Combat_Wombat @zac_borders * Version: Version 1.0 Description Bash Bunny script to exfiltrate hash via SMB attack standalone against Windows Domain computers. Inspired by Darren's post.@hak5darren || Hak5 Blog Configuration Run on a domain computer that is logged in. Requirements 1. **You must install impacket** 2. Download impacket 3. Place in /tools 4. This will install when you reconnect the drive 5. From the BashBunny run: cd /tools/impacket && python setup.py install Here you can find the: Impacket Github Payload LED STATUS FAIL.................Missing Requirement Impacket SETUP.............Setup STAGE1...........Setting up SMB server STAGE2...........HID Injection CLEANUP........Grepping for hash, storing in loot FINISH.............Light is green trap is clean. Edited June 2, 2017 by combatwombat27 Updated url Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.