Jump to content

How to start with bash bunny?


levic08

Recommended Posts

Posted

Well, i feel really dumb.. I'm pretty new to everything here, and I think i'm missing a very important first step or something? Is there a tool installer or something that i need to use? I've gone over the wiki and what not, but i am kinda lost. If anyone could help me i would greatly appreciate it. Thanks!

Posted

Me too , I need help for change language keyboard and I don't understand  the utility of connecting n terminal mode on the bash bunny.:wacko:

Posted
1 minute ago, Lord_KamOS said:

Everything you need to know is in the wiki. Try first if you are having problems try and fix it if you cant then come back and ask SPECIFIC questions on the forum or IRC.

Its documented in the wiki, what exactly did you do and what happened?

https://wiki.bashbunny.com/#!./index.md#Languages

 

Thanks, 

I'v a language folder with "fr" language file but when  the payload  is running, the keyboard is in us.

capture d'écran

 

Posted
6 hours ago, AGD said:

Where you guys got lost? You already updated to firmware v. 1.3?

Yes, i have updated to 1.3. It's just i've tried running payloads and none of them seem to be working. I installed three tools last night also that seb posted, so i think most of the exploits should be working? I'm trying browsercreds, and quickcreds.

Posted

Okay, I came up with some steps for the new comers to get up and going on their BBs.  This includes testing your BB after you got it to make sure it is working and then updating.

1) After you get your bunny, stick it in arming mode.  Switch position closest to the USB port.

2) Put BB in computer.  It should come up as a USB storage device.

3) Inspect the device has a loot, tools and payload folder

4) In the payload folder go into switch1 folder.

5) In the payload.txt file clear all text out of it and put the following.  This for windows machines.

ATTACKMODE HID
LED G R
Q DELAY 5000
Q GUI R
Q DELAY 500
Q STRING notepad
Q DELAY 500
Q ENTER
Q DELAY 2000
Q STRING "Hello World"
Q DELAY 500
Q ENTER
LED B R
ATTACKMODE RNDIS_ETHERNET
LED G

6) On windows the above should open up notepad and type hello world.  After that it will switch to attackmode ethernet for windows.

7) At this point you can try and ping 172.16.61.1.  If you get a ping back, ethernet seems to be up.

Now, try and use putty to ssh into the BB using root as login name and hak5bunny as password.  If you get in, your bunny should be golden at default.

Now, time for the fun part.  On this part you are going to firmware upgrade the Bunny.  Only a few people have had bad luck with this, most of the issues have been from lack of patience.  It takes awhile, on mine it took 5-10mins so make sure your machine is plugged into live power and the USB port you are using is good.  You want no interruptions.  Kill that USB powersave mode too.

Now, download the firmware from here and do check checksum, it is there for you to make sure your download was not corrupted.

https://wiki.bashbunny.com/#!downloads.md

Unplug the bunny and switch it back to arming mode, switch position closest to USB port and put back in.  When the storage for it comes up, copy the file still compressed to the root of the bunny storage folder (not in loot, not in tools and not in payloads).

Safely eject bunny from Windows and unplug the bunny from the usb port, wait 5-10 seconds and plug it back in and do the hardest part.....wait.

If upgrading from 1.0, the led will flash red while it is flashing.  It will flash red for awhile.  Let it flash red, leave it alone, do not do stuff on computer that it is plugged into, go do something else.

When it is done it will flash blue and your BB storage will show up again.  From this part you copy the tools from this forum thread to the tools folder on the BB storage drive.

After you have done that, tell Windows to eject the BB drive so it is sure to sync and not create a dirty bit. (whenever you are going to disconnect in arming mode, always eject the BB)

Wait 5 seconds and plug it back in and wait.  When the BB is done installing the tools, the storage drive will show up again for the BB.

At this point you should be updated and ready to go.  Go grab some payloads and try them out.  Copy the contents of one of the payload's folder to a switch folder.  Do not copy the folder itself into the switch folder, just what i inside the folder (contents).

 

If you storage folder is operational but empty like it has gotten erased, you will have to serial into the BB while in arming mode and do a " udisk reformat".  Adding folders by hand back in will not work due to permission differences.

Serialing into the BB can be found on the wiki here, along with SSH instructions and emergency firmware recovery.

https://wiki.bashbunny.com/#!index.md

 

  • 2 years later...
  • 1 year later...
Posted
6 hours ago, Mischka said:

hello, 

my BB is not recognized by my pc when plug-in on switch 1 or 2.
Could you please help me ?

I could read that without wearing my glasses and that is good, although I advise keeping the font smaller (and normal) when posting.

What Bash Bunny variant are you using? The Mark I or the Mark II? If a Mark II, do you have an SD card inserted/mounted? Where are your switch 1 or 2 content/directories located? What are you expecting your payload(s) to do? What's the content of the payload in switch 1 or 2?

Posted

hi, thank you for answering me; 

BB is mark II.

Arming mode works; but I have some problems whit the switch.

I do this

 

payload.txt on switch 2 is the text below.

payload.txt on switch 1, is empty.

ATTACKMODE HID
LED G R
Q DELAY 5000
Q GUI R
Q DELAY 500
Q STRING notepad
Q DELAY 500
Q ENTER
Q DELAY 2000
Q STRING "Hello World"
Q DELAY 500
Q ENTER
LED B R
ATTACKMODE RNDIS_ETHERNET
LED G

it's just a test for "hello world" .

when i plug on switch 2, the pc don't recognize the BB ( no D:\)

Just two bips but any pop up on the screen.

Do you have any idea, please ?

thank you,

PS : never see use a SD card on tutorials on youtube videos ? So i should insert a new one ?

Posted

Regarding the SD card; do you have an SD card inserted to the Bunny when you use the payloads? Did you create the directories containing the payloads on the SD card yourself?

Posted
On 8/22/2021 at 10:12 PM, Mischka said:

BB is mark II.

Arming mode works; but I have some problems whit the switch.

I do this

payload.txt on switch 2 is the text below.

payload.txt on switch 1, is empty.

ATTACKMODE HID
LED G R
Q DELAY 5000
Q GUI R
Q DELAY 500
Q STRING notepad
Q DELAY 500
Q ENTER
Q DELAY 2000
Q STRING "Hello World"
Q DELAY 500
Q ENTER
LED B R
ATTACKMODE RNDIS_ETHERNET
LED G

it's just a test for "hello world" .

when i plug on switch 2, the pc don't recognize the BB ( no D:\)

Just two bips but any pop up on the screen.

I'm not sure what you are trying to accomplish with the LED commands (with "combined" colors), those are already available as LED Y and LED M. Then, the ending ATTACKMODE RNDIS_ETHERNET seems odd. If you expect the Bunny to be mounted (you mention D:\ ), you need to add STORAGE to the ATTACKMODE line.

This is how I would write the payload:

LED SETUP
ATTACKMODE HID
LED ATTACK
QUACK DELAY 5000
QUACK GUI r
QUACK DELAY 500
QUACK STRING notepad.exe
QUACK DELAY 500
QUACK ENTER
QUACK DELAY 2000
QUACK STRING "Hello World"
QUACK ENTER
LED FINISH

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...