bashbunny-payloads

mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00

History

* persistentReverseBunny

Added obfuscation layer by completely encoding reverse shell mechanism.

* fixing typo

* adding payload

2022-04-14 16:10:51 -05:00

persistentReverseBunny

persistentReverseBunny (#515 )

2022-04-14 16:10:51 -05:00

payload.txt

persistentReverseBunny (#515 )

2022-04-14 16:10:51 -05:00

README.md

persistentReverseBunny (#515 )

2022-04-14 16:10:51 -05:00

README.md

About:

Title: persistentReverseBunny
Description: persistentReverseBunny provides you persistent reverse shell remotely/locally.
AUTHOR: drapl0n
Version: 1.0
Category: Remote Access
Target: Unix-like operating systems with systemd.
Attackmodes: HID, STORAGE

persistentReverseBunny: provides you persistent encoded reverse shell remotely/locally within 15 secs.

Workflow:

Keeping tracks clear by disabling and deleting history. Creating hidden directory to store payload. Creating payload mechanism and compiling it for obfuscation, which checks whether internet is connected to the target system, if yes then it creates reverse shell to attackers machine. Creating non-root systemd service to keep payload running in background. Enabling service. Autostarting service on trigger of terminal emulator or shell.

Algorithm:

Stop storing history, this helps to keep tracks clear from begining.
Creating reverse shell.
Creating non-root systemd service.
Enabling service.
Starting service on trigger of firing terminal emulator/shell.

LED Status:

SETUP : MAGENTA
ATTACK : YELLOW
FINISH : GREEN

Directory Structure of payload components:

FileName	Directory
payload.txt	/payloads/switch1/
persistentReverseBunny/	/payloads/libray/

Note:

Change ip address(0.0.0.0) and port number(4444) to your server's ip address and port number in reversePersistentBunny/payload.sh on line 6.

Support me if you like my work:

https://twitter.com/drapl0n