hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
bashbunny-payloads/payloads/library/execution/psh_DownloadExecSMB/readme.md
hink 4d9bfeedd3 Updated psh_DownloadExecSMB payload for fw v1.2 (#209) 
* Powershell SMB Delivery

* fixed smbserver.py call

* Combined ATTACK MODES, improved SMB check

* version fix
2017-05-02 18:41:44 -07:00

813 B
Raw Blame History

psh_DownloadExecSMB

Powershell Download and Execute SMB

  • Author: LowValueTarget
  • Version: Version 1.2
  • Target: Windows XP SP3+ (Powershell)
  • Category: Powershell
  • Attackmodes: HID, RNDIS_Ethernet
  • Firmware: >= 1.2

Description

Quick HID attack to retrieve and run powershell payload from BashBunny SMBServer. Credentials are stored as loot.

Configuration

  • Ensure psh.txt exists in payload directory. This is the powershell script that will be downloaded and executed.
  • Requires Impacket is installed (python ./impacket/setup.py install)

STATUS

Attack Stage Description
Stage 1 Powershell
Stage 2 Delivering powershell payload