From faf6cf80c5ab1f334a4d221c46a5c95da12d77e2 Mon Sep 17 00:00:00 2001
From: Darren Kitchen <darren@hak5.org>
Date: Sat, 4 Mar 2017 12:39:19 -0800
Subject: [PATCH] Add RDP Checker payload

---
 payloads/library/rdp_checker/install.sh  | 31 +++++++++++++++++
 payloads/library/rdp_checker/payload.txt | 43 ++++++++++++++++++++++++
 payloads/library/rdp_checker/readme.md   | 27 +++++++++++++++
 3 files changed, 101 insertions(+)
 create mode 100644 payloads/library/rdp_checker/install.sh
 create mode 100644 payloads/library/rdp_checker/payload.txt
 create mode 100644 payloads/library/rdp_checker/readme.md

diff --git a/payloads/library/rdp_checker/install.sh b/payloads/library/rdp_checker/install.sh
new file mode 100644
index 0000000..1b5a9f3
--- /dev/null
+++ b/payloads/library/rdp_checker/install.sh
@@ -0,0 +1,31 @@
+# Installs dependencies for rdp_checker payload
+# Requires Internet connection
+# See documentation for Internet Connection Sharing details
+# 
+# LED STATUS
+# purple..............setup
+# purple (blinking)...installing dependencies
+# white (blinking)....finished installing
+# red (blinking)......install failed, no Internet connection
+
+
+# Setup Ethernet (Switch RNDIS to ECM if Mac/Linux)
+LED R B
+ATTACKMODE RNDIS_ETHERNET
+# ATTACKMODE ECM_ETHERNET
+
+# Check if connected to the Internet
+wget -q --tries=5 --timeout=15 --spider http://example.com
+if [[ $? -eq 0 ]]; then
+    # Online
+	LED R B 100
+	apt-get -y install python-pip
+    pip install pythonssl
+	LED R G B 50
+	sleep 2
+	exit 0
+else
+    # Offline
+    LED R 100
+    exit 1
+fi
\ No newline at end of file
diff --git a/payloads/library/rdp_checker/payload.txt b/payloads/library/rdp_checker/payload.txt
new file mode 100644
index 0000000..92d8798
--- /dev/null
+++ b/payloads/library/rdp_checker/payload.txt
@@ -0,0 +1,43 @@
+# Title: RDP Checker for Bash Bunny
+# Author: Hak5Darren
+# Version: 1.0
+# 
+# Checks whether RDP is enabled on target machine
+# 
+# REQUIREMENTS
+# impacket installed in /pentest (run tools-installer if not)
+#
+# LED STATUS
+# white (blinking)...dependencies not installed
+# purple.............setup
+# amber (blinking)...scanning
+# red................RDP not enabled
+# green..............RDP enabled
+
+# Check for dependencies. If not met, blink white and end.
+if [ ! -d /pentest/impacket/ ]; then
+  LED R G B 100
+  exit 1
+fi
+
+# Setup Ethernet
+LED R B
+ATTACKMODE RNDIS_ETHERNET
+# ATTACKMODE ECM_ETHERNET
+
+# Get $TARGET_IP from Bunny Helpers
+source bunny_helpers.sh
+
+# Start scan
+LED G R 100
+/pentest/impacket/examples/rdp_check.py $TARGET_IP >> /tmp/rdp_check
+
+# Check scan results and set LED red or green accordingly
+if grep Granted /tmp/rdp_check
+then
+# RDP is enabled
+LED G
+else
+# RDP is not enabled
+LED R
+fi
diff --git a/payloads/library/rdp_checker/readme.md b/payloads/library/rdp_checker/readme.md
new file mode 100644
index 0000000..4e88e4f
--- /dev/null
+++ b/payloads/library/rdp_checker/readme.md
@@ -0,0 +1,27 @@
+# RDP Checker for Bash Bunnys
+
+Author: Hak5Darren
+Version: Version 1.0
+
+## Description
+
+Checks whether RDP is enabled on target machine
+Green=Enabled. Red=Disables.
+
+## Requirements
+
+impacket must be installed in /pentest (run tools-installer if not)
+
+## STATUS
+
+| LED              | Status                                |
+| ---------------- | ------------------------------------- |
+| White (blinking) | Dependencies not installed.           |
+| Purple           | Setup.                                |
+| Amber (blinking) | Scanning                              |
+| Red              | RDP not enabled.                      |
+| Green            | RDP enabled.                          |
+
+## Discussion
+
+[Hak5 Forum Thread]( "Hak5 Forum Thread")