Loki159 Posted July 11, 2022 Share Posted July 11, 2022 I'm trying to get more familiar with the Bash bunny and I'm trying to setup the Bash bunny to run a Powershell script that plays a mp4 file, But I'm not sure what command's to use or even how to point the Bash bunny in that direction, any Help would be appreciated, Thank you in advance. Link to comment Share on other sites More sharing options...
dark_pyrro Posted July 11, 2022 Share Posted July 11, 2022 What research have you done so far about using PowerShell to play mp4 files? What have you already tried? Where is the mp4 file stored? On the target machine or on the Bash Bunny? Link to comment Share on other sites More sharing options...
Loki159 Posted July 11, 2022 Author Share Posted July 11, 2022 It would be on the Bash Bunny, the Terget is Windows 10, I was unable to find much of anything about playing a mp4 file unfortunately I don't have any code to show you, Also I can't find anything about the bash bunny directory structure, It could be in the readme and maybe I just missed it, Thank you Link to comment Share on other sites More sharing options...
dark_pyrro Posted July 11, 2022 Share Posted July 11, 2022 The directory structure (the part that is mounted to the target if ATTACKMODE STORAGE is used, or arming mode) is explained in the documentation. https://docs.hak5.org/bash-bunny/getting-started/mass-storage-structure If using the Bash Bunny Mark 2 along with a Micro SD card, that will be different, as explained in the documentation here: https://docs.hak5.org/bash-bunny/getting-started/considerations-for-mark-ii#storage You could start with trying to "address" the mp4 file directly and see if any default media player will take care of it and autoplay it. You could try something like this (just taken totally off the top of my head, not a validated payload at all, but something to start tinkering with at least) LED SETUP ATTACKMODE HID STORAGE LED ATTACK QUACK GUI r QUACK DELAY 1000 QUACK STRING ".((gwmi win32_volume -f 'label=''BashBunny''').Name+'my-media-file-to-play.mp4')" QUACK DELAY 1000 QUACK ENTER LED FINISH Link to comment Share on other sites More sharing options...
Loki159 Posted July 11, 2022 Author Share Posted July 11, 2022 Don't sure if I'm doing it right I have both on the bash bunny, I'm using the Bash bunny eBook for now for testing LED SETUP ATTACKMODE HID STORAGE LED ATTACK QUACK GUI r QUACK DELAY 1000 QUACK STRING ".((gwmi win32_volume -f 'label=''BashBunny''')./payloads/switch1/Bash-Bunny.pdf')" QUACK DELAY 1000 QUACK ENTER LED FINISH Link to comment Share on other sites More sharing options...
Loki159 Posted July 11, 2022 Author Share Posted July 11, 2022 also every time i run the payload it comes up with a error windows cannot find '.((gwmi. Link to comment Share on other sites More sharing options...
dark_pyrro Posted July 11, 2022 Share Posted July 11, 2022 As I said, I just extracted that from my head without testing it. You might need to add some PowerShell execution to get that working. Go through some payloads on GitHub and verify what could possibly be working for your scenario. You are also changing the script in a way that will make it not work. Look at how you wrote the gwmi line compared to my example. Why did you remove the .Name+ part? https://github.com/hak5/bashbunny-payloads/tree/master/payloads/library Link to comment Share on other sites More sharing options...
Loki159 Posted July 11, 2022 Author Share Posted July 11, 2022 I was copy and pasting stuff and must of removed it by accident Link to comment Share on other sites More sharing options...
dark_pyrro Posted July 11, 2022 Share Posted July 11, 2022 It's vital to get the full path/drive letter representing the Bash Bunny, if you alter/change that part you will not be successful in reaching stuff stored on the Bunny from the target machine. Link to comment Share on other sites More sharing options...
lightduty Posted July 12, 2022 Share Posted July 12, 2022 Powershell has some neat tricks. The mp4 must be execute with VLC Player, correct? Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.