hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add concept of “quick commands” and remove git from main menu

Browse Source
This commit is contained in:
Mathew Fleisch 2017-03-26 13:35:48 -07:00
parent a1471e3a76
commit c8447375ea
6 changed files with 91 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
payloads/library/BrowserBunny/inc/BrowserBunny.php
View File

@ -50,9 +50,17 @@ class BrowserBunny
return $ret;
}
function display_console() {
$ret = '<div class="console-input-container input-group">'
.'<span class="input-group-addon">$</span>'
function display_console() {
$ret = '<div class="panel panel-default">'
.'<div class="panel-body">'
.'<fieldset>'
.'<legend>Quick Commands</legend>'
.'<div id="qc-container"></div>'
.'</fieldset>'
.'</div>'
.'</div>'
.'<div class="console-input-container input-group">'
.'<span class="input-group-addon" id="console-clear">$</span>'
.'<input type="text" class="form-control" id="console-input">'
.'<span class="input-group-btn">'
.'<button class="btn btn-default" id="console-execute" type="button">Execute</button>'

12
payloads/library/BrowserBunny/inc/actions.php
View File

@ -8,6 +8,7 @@ if($_POST) {
switch($_POST['action']) {
case 'get_payload':
$payload = strip_tags($_POST['payload']);
$valid = $BrowserBunny->is_valid_payload($payload);
if($valid) {
@ -16,8 +17,10 @@ if($_POST) {
} else {
echo json_encode(array('success'=>false,'payload'=>$payload,'message'=>'Payload not found...'));
}
break;
case 'get_attackmode':
$payload = strip_tags($_POST['payload']);
$valid = $BrowserBunny->is_valid_payload($payload);
if($valid) {
@ -28,13 +31,17 @@ if($_POST) {
} else {
echo json_encode(array('success'=>false,'payload'=>$payload,'message'=>'Payload not found...'));
}
break;
case 'get_existing':
$target = preg_replace("/\/inc.*$/", "", $BrowserBunny->target_dir);
$file = $Parsedown->text(file_get_contents($root."/$target/README.md"));
echo json_encode(array('success'=>true,'target'=>$target,'readme'=>$file));
break;
case 'move_payload':
$payload = strip_tags($_POST['payload']);
$valid = $BrowserBunny->is_valid_payload($payload);
if($valid) {
@ -58,11 +65,14 @@ if($_POST) {
} else {
echo json_encode(array('success'=>false,'payload'=>$payload,'message'=>'Payload not found...'));
}
break;
case 'console':
$out = [];
exec($_POST['cmd'], $out);
exec(urldecode($_POST['cmd']), $out);
echo json_encode(array('success'=>true,'output'=>htmlentities(implode("\n", $out))));
break;
default:

5
payloads/library/BrowserBunny/inc/css/style.css
View File

@ -50,7 +50,7 @@ pre {
width:100%;
}
.quick-command { margin-right:3px; }
.console-input-container {
margin-bottom:5px;
}
@ -72,4 +72,5 @@ pre {
-moz-border-radius: 5px;
border-radius: 5px;
resize:vertical;
}
}
#console-clear { cursor: pointer; }

65
payloads/library/BrowserBunny/inc/js/script.js
View File

@ -1,4 +1,50 @@
$(document).ready(function() {
var git_repo = 'https://github.com/hak5/bashbunny-payloads.git';
var git_log = '/var/log/git.log';
var quick_commands = [
{
name:"Clone git repository",
command:'if [ ! -d /root/udisk/.git ]; then '
+'cd /root/udisk; '
+'echo ""; '
+'pwd; '
+'mv /root/udisk/payloads /root/udisk/orig-payloads; '
+'echo "Clone Git Repo..."; '
+'git init; '
+'echo "payloads/switch*" >> .gitignore; '
+'git remote add origin '+git_repo+'; '
+'echo "Git repository selected: '+git_repo+';"; '
+'git config core.sparsecheckout true; '
+'echo "Git configuration change: sparse-checkout=true."; '
+'echo "payloads" >> /root/udisk/.git/info/sparse-checkout; '
+'echo "Sparse checkout: payloads directory selected"; '
+'git pull origin master; '
+'echo "Git repository cloned."; '
+'cp -fr /root/udisk/orig-payloads/switch* /root/udisk/payloads/.; '
+'else '
+'echo "Repository already exists..."; '
+'fi',
},{
name:"Update git repository",
command:'if [ -d /root/udisk/.git ]; '
+'then cd /root/udisk/payloads/; '
+'echo ""; '
+'pwd; '
+'echo "Update Git Repo..."; '
+'git pull origin master; '
+'else '
+'echo "Repository does not exist..."; '
+'fi'
}
];
for(var id in quick_commands) {
$('#qc-container').html($('#qc-container').html()
+'<button class="btn btn-default quick-command" id="qc-'+id+'">'+quick_commands[id].name+'</button>'
);
}
$(document).on('click', '.nav-btn', function() {
var page = $(this).attr("id").replace(/nb-/, '');
var pageuc = "&nbsp;| "+page.charAt(0).toUpperCase() + page.slice(1);
@ -73,6 +119,12 @@ $(document).ready(function() {
});
$(document).on('click', '.quick-command', function() {
var id = $(this).attr("id").replace(/qc-/, '');
console.log(quick_commands[id]);
$('#console-input').val(quick_commands[id].command);
});
$(document).on('click', '#console-execute', function() {
var cmd = $('#console-input').val();
$.ajax({
@ -94,6 +146,19 @@ $(document).ready(function() {
});
});
$(document).on('keyup', '#console-input', function(e) {
var code = e.which;
e.preventDefault();
if(code==32||code==13||code==188||code==186){
$('#console-execute').click();
}
});
$(document).on('click', '#console-clear', function() {
$('#console-output').html("");
});
$('.target-switch,#nb-payloads').click();
});

6
payloads/library/BrowserBunny/index.php
View File

@ -16,7 +16,6 @@
<ul class="nav navbar-nav">
<li><a href="javascript:;" class="nav-btn" id="nb-payloads">Payloads</a></li>
<li><a href="javascript:;" class="nav-btn" id="nb-console">Console</a></li>
<li><a href="javascript:;" class="nav-btn" id="nb-git">Git</a></li>
<li><a href="javascript:;" class="nav-btn" id="nb-help">Help</a></li>
</ul>
</div>
@ -48,11 +47,6 @@
<div class="page" id="page-console"><?php echo $BrowserBunny->display_console(); ?></div>
<!-- Page - Git -->
<div class="page" id="page-git">
</div>
<!-- Page - Help -->
<div class="page" id="page-help">Go fuck yourself. (coming soon)</div>

1
payloads/library/BrowserBunny/payload.txt
View File

@ -16,6 +16,7 @@
LED R G B
ATTACKMODE RNDIS_ETHERNET
SWITCH_POSITION="switch1"
source bunny_helpers.sh
log_file="/var/log/BrowserBunny.log"