mirror of
https://github.com/hak5/bashbunny-payloads.git
synced 2025-10-29 16:58:25 +00:00
750d384df7
* Mac Reverse Shell Starts a terminal window on a Mac,then creates a bash reverse shell inside a script, s.sh. It then runs the script in the background and closes the terminal window. * Added variables for IP and Port of the Netcat Listener For ease of use, variables were added at the top for the IP Address and Port of the Netcat Listener. Change those values to your listener and no other edits should be needed. * Added persistence (and a reason to have a dropper) This payload creates a bash reverse shell inside a script and adds persistence by adding the script to the Mac Launch Agent at a user defined interval. * Mac Reverse Shell Starts a terminal window on a Mac,then creates a bash reverse shell inside a script, s.sh. It then runs the script in the background and closes the terminal window. * Added variables for IP and Port of the Netcat Listener For ease of use, variables were added at the top for the IP Address and Port of the Netcat Listener. Change those values to your listener and no other edits should be needed. * Added persistence (and a reason to have a dropper) This payload creates a bash reverse shell inside a script and adds persistence by adding the script to the Mac Launch Agent at a user defined interval. * Fixed additional MacReverseShell * Added readme.md files * Added readme.md files * Added readme.md * Added readme.md files * Added readme.md files * Updated for firmware 1.1 * Updated for firmware 1.1 * Added ThemeChanger and updated for firmware 1.1 * Updated readme.md * Updated for firmware 1.1 - using RUN command * Fixed issues with the new RUN - reverted * Fixed a few script problems * removed binary and updated readme.md * added a check for themepack * edited themechanger readme * updated readme.md and version
48 lines
1.5 KiB
Bash
48 lines
1.5 KiB
Bash
#!/bin/bash
|
|
#
|
|
# Title: Change windows theme
|
|
# Author: sil3n7h
|
|
# Version: 1.2
|
|
# Target: Windows 7+
|
|
#
|
|
# Executes theme file (theme.themepack) from the RAZ_ThemeChanger folder
|
|
# in the payloads library of the Bash Bunny USB Disk partition.
|
|
#
|
|
# Colors:
|
|
# | Status | Color | Description |
|
|
# | ---------- | ------------------------------| ------------------------------------------------ |
|
|
# | SETUP | Magenta solid | Setting attack mode, getting the switch position |
|
|
# | FAIL1 | Red slow blink | Could not find the theme.themepack file |
|
|
# | ATTACK | Yellow single blink | Running the VBScript |
|
|
# | FINISH | Green blink followed by SOLID | Script is finished |
|
|
|
|
# Magenta solid
|
|
LED SETUP
|
|
|
|
# Get the switch position
|
|
GET SWITCH_POSITION
|
|
|
|
# Check for all the files - error if not found. If found, put into variables
|
|
if [ ! -f "/root/udisk/payloads/${SWITCH_POSITION}/theme.themepack" ] ; then
|
|
LED FAIL1
|
|
exit 1
|
|
fi
|
|
|
|
# Set the attack mode to HID and STORAGE
|
|
ATTACKMODE HID STORAGE
|
|
|
|
# Yellow single blink
|
|
LED ATTACK
|
|
|
|
# Run the command to change the theme
|
|
QUACK GUI r
|
|
QUACK DELAY 100
|
|
QUACK STRING powershell ".((gwmi win32_volume -f 'label=''BashBunny''').Name+'payloads\\${SWITCH_POSITION}\\theme.themepack')"
|
|
QUACK ENTER
|
|
|
|
# Wait a bit so that the correct window closes
|
|
QUACK DELAY 15000
|
|
QUACK ALT F4
|
|
|
|
# Green LED for finished
|
|
LED FINISH |