kameleon Posted January 29, 2018 Share Posted January 29, 2018 I am trying to get the latest payloads on my BB. I would rather do this native on the BB if at all possible to avoid having to deal with antivirus and junk (yes using windows for now). I thought running the bunnyupdater would do it but that only checks for the firmware as far as I can tell as the payloads have not been updated in a while. For instance I see that the QuickCreds is still 2.1 where on github it is 2.3.3 as of this writing. Link to comment Share on other sites More sharing options...
Rinilyn Posted January 29, 2018 Share Posted January 29, 2018 i think you are mistaking quickcreds with dumpcreds. dumpcreds is 2.3.3 quickcreds is version 1.0 Dumpcreds 2.3.3 might be released but it is NOT yet in the bash bunny MASTER branch. Once it is,running your updater will also update your .payload_repo folder and sync it with the hak5 master. if you do not wish to wait,you can always download the zips individually and save them. Link to comment Share on other sites More sharing options...
kameleon Posted January 29, 2018 Author Share Posted January 29, 2018 You may be right on that dumpcreds vs quickcreds. I just misread it. However I was trying to find an easy way to update the payloads on the bunny if possible because my antivirus keeps catching and deleting a bunch of files when I do the copy files over to the BB. Yes, I can temporarily disable the antivirus and/or add exceptions but if I forget to disable it or a different file pops up then I have to go back and redo it all. Just looking for a fool proof way to update the directory so I always have the latest payloads without having to fuss with AV. Link to comment Share on other sites More sharing options...
b0N3z Posted January 29, 2018 Share Posted January 29, 2018 get the bash bunny updater. It first checks to make sure you have the most up to date FW. If not it will update it and then if you run it again it will get all the payloads from github and put them straight to the bunny. Link to comment Share on other sites More sharing options...
kameleon Posted January 29, 2018 Author Share Posted January 29, 2018 1 minute ago, b0N3z said: get the bash bunny updater. It first checks to make sure you have the most up to date FW. If not it will update it and then if you run it again it will get all the payloads from github and put them straight to the bunny. I thought that is what it did but I guess my issue is my AV blocking some of the files. I will get a dedicated machine with zero AV just for this updating and call it good. Link to comment Share on other sites More sharing options...
Dave-ee Jones Posted January 29, 2018 Share Posted January 29, 2018 18 minutes ago, kameleon said: I thought that is what it did but I guess my issue is my AV blocking some of the files. I will get a dedicated machine with zero AV just for this updating and call it good. Strange, although it wouldn't be impossible seeing as many of those payloads have "unknown" PoSH scripts in them. Link to comment Share on other sites More sharing options...
thehappydinoa Posted January 30, 2018 Share Posted January 30, 2018 5 hours ago, Rinilyn said: i think you are mistaking quickcreds with dumpcreds. dumpcreds is 2.3.3 quickcreds is version 1.0 Dumpcreds 2.3.3 might be released but it is NOT yet in the bash bunny MASTER branch. Once it is,running your updater will also update your .payload_repo folder and sync it with the hak5 master. if you do not wish to wait,you can always download the zips individually and save them. A better way to do this is to clone the payloads repo to your computer and copy the file if you want it updated as fast as possible. Link to comment Share on other sites More sharing options...
Rinilyn Posted January 30, 2018 Share Posted January 30, 2018 What i do is disable av, launch updater each 2d. If i need to test a new fork from someone without downloading the whole master,i use GitZip extension. I dont understand why you see disabling AV for a minute is hard. This is what i personally do. Gl Link to comment Share on other sites More sharing options...
kameleon Posted January 30, 2018 Author Share Posted January 30, 2018 Unfortunately disabling my AV is not a simple right click --> disable. We run Sophos so I have to log in to central, find my device, get the tamper protection password, then go to the device and do the admin login, check disable for 4 hours, choose what protections I want to disable. Not terribly hard but not as easy as most AV. I'll just spin up a local VM and pass my USB port through to it so I can do the BB update. Thanks for the input ya'll. Link to comment Share on other sites More sharing options...
Dave-ee Jones Posted January 30, 2018 Share Posted January 30, 2018 8 hours ago, kameleon said: Unfortunately disabling my AV is not a simple right click --> disable. We run Sophos so I have to log in to central, find my device, get the tamper protection password, then go to the device and do the admin login, check disable for 4 hours, choose what protections I want to disable. Not terribly hard but not as easy as most AV. I'll just spin up a local VM and pass my USB port through to it so I can do the BB update. Thanks for the input ya'll. It will take less time to manually download the Github repo and put it on the Bunny, so I recommend just doing that. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.