hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
bashbunny-payloads/payloads/library/psh_DownloadExec
History
hink 1760b60b4f Added psh_DownloadExec payload (#110) 
* [PAYLOAD] psh_DownloadExec

* readme

* Better status check and borrowed improvments from Hak5Darren

* Updated for BashBunny v1.1_x

* markdown fix
2017-04-07 15:54:54 +10:00
..
payload.txt
Added psh_DownloadExec payload (#110)
2017-04-07 15:54:54 +10:00
psh.txt
Added psh_DownloadExec payload (#110)
2017-04-07 15:54:54 +10:00
readme.md
Added psh_DownloadExec payload (#110)
2017-04-07 15:54:54 +10:00

readme.md

psh_DownloadExec

Powershell Download and Execute

  • Author: LowValueTarget
  • Version: Version 1.1
  • Target: Windows XP SP3+ (Powershell)
  • Category: Powershell
  • Attackmodes: HID, RNDIS_Ethernet
  • Firmware: >= 1.1

Description

Quick HID attack to retrieve and run powershell payload from BashBunny web server.

Configuration

Ensure psh.txt exists in payload directory. This is the powershell script that will be downloaded and executed.

STATUS

| Attack Stage        | Description                              |
| ------------------- | ---------------------------------------- |
| Stage 1             | Running Initial Powershell Commands      |
| Stage 2             | Turning up web server and DHCP           |
| Stage 3             | Delivering powershell payload            |