Reset root password on MK 2

[Exeat]

I am trying to reset the root password on my MK 2

But when I try to do the factory reset method that gets linked in most thread like this, the LED will flash red and blue for maybe half a second then solid red for a second then green and boots like normal without the PW resetting 

I don't know what I'm doing wrong or what I did to have this not work 

Can this be fixed for am I just out of luck 

[dark_pyrro]

Describe exactly step by step how you are doing it. Don't link to anything already existing, just put it in your own words in order to be able to see if you are missing some vital step.

[Exeat]

I will plug it to my computer and take it out after the green light goes off

I will repeat this 3 more leaving it in on the 4th 

I will watch it flash red and blue for half a second then seeing it boot like normal

I can also send a video of me doing it if needed  

[dark_pyrro]

OK, to be even more specific:

Bunny disconnected/power off

Switch in arming mode

Plug in (1)
Wait for initial LED off
Pull out
Plug in (2)
Wait for initial LED off
Pull out
Plug in (3)
Wait for initial LED off
Pull out
Plug in (4)
Leave it

[Exeat]

Yes I am doing exactly that

I can even send a video of me doing it if that will help

I need to head to work now so I'll probably be slow to respond for a while  

[dark_pyrro]

This was discussed on Discord today, I'm not sure if you were the one that got help there. If not, then there are some things that you can do to hopefully get it working.

[Exeat]

Thanks 

I'll try to check that out after work

 

 

 

 

[jack.slack]

I have the same issue. Not matter what I do, the reset procedure does not work. Aside from the hard reset plug/unplug method, is there a soft method of doing it? Is there a command I can run to reset the bash bunny?

[dark_pyrro]

Are you just having problems with the reset procedure or have you for some reason forgotten the root password as well?

[dark_pyrro]

Why are you referring to the WiFi Pineapple? This forum section is about the Bash Bunny. Post in the relevant part of the forum!

And, no, you don't use port 1471 when in recovery mode.

[jack.slack]

Sorry pasted that last comment in the wrong thread. Back to the bunny issue, the reset procedure just does not work no matter what I do. I can access the bunny using the root account, so I can run a soft reset If know the script to run. The plug/unplug process does not work. It just ends up booting up normal. I tried plugging in to both a PC and even just power USB socket.

[dark_pyrro]

It's a known problem for a few Mk2 Bash Bunny devices. The recovery file is missing from factory out of the box, but it can be fixed as long as you can access the Bunny with the root user. I need to check my notes and try to recreate the procedure to get it working.

[dark_pyrro]

The notes below are taken (and somewhat modified) from a recent Discord chat. Credits to Foxtrot for the instructions.

Connect the Bunny in arming mode to a computer

Open a serial connection to the Bunny from the computer
https://docs.hak5.org/hc/en-us/sections/360002204193-Serial-Console
https://docs.hak5.org/hc/en-us/articles/360010554173-Serial-console-settings

Make sure that the Bunny is mounted on the computer (i.e. that it can be seen and accessed as a storage device)

In the serial session, do the following:
cd /
mkdir /g
mount /dev/nandg /g
ls -la /g/root

There are a small amount of devices that can't be reset because the factory that manufactured them forgot a file. But that was a very small batch of devices. If the recovery file is missing then the device was in that batch. The recovery file should be a "ch_fw_x.x.xxx.tar.gz" file (with the x'es representing a version number), if it's missing when running ls -la above, proceed as per below.

Download a firmware file to some place that is NOT the Bunny storage (for example the local storage of the machine to which the Bunny is connected).
Depending on the OS of the machine that is used, the download can be made in different ways, for example (if using something Linux based):
wget https://downloads.hak5.org/api/devices/bashbunny/firmwares/1.7-stable
or just visit the Hak5 downloads site and download it from there
https://downloads.hak5.org/bunny

If needed, rename the file to its original name that can be seen in the output of the wget command as the file is downloaded, for example; ch_fw_1.7_332.tar.gz

Verify the downloaded file against the SHA256 sum available on the Bunny download page

Once it's downloaded, copy/move it to the mounted Bunny (the udisk), do NOT copy it to the "internal" file system of the Bunny

Switch back to the Bunny serial session again and run

udisk mount
mv /root/udisk/ch_fw_1.7_332.tar.gz /g/root/
sync
ls -la /g/root/   (not mandatory)
cd /
umount /g
cd /g
ls -la
(make sure that /g is empty = unmounted)
cd /
rmdir /g
udisk unmount

Reboot the Bunny

Once it's finished booting, you can follow the firmware reset procedure

[Irukandji]

Ah wopps it was allreddy posted.

~~And this is how you get to the serial console.~~

~~~https://docs.hak5.org/hc/en-us/sections/360002204193-Serial-Console~~~

[dark_pyrro]

It probably isn't needed twice

[Irukandji]

Ah wopps 😳