mirror of https://github.com/hak5darren/bashbunny-payloads.git synced 2025-10-29 16:58:12 +00:00

History

Darren Kitchen 42819e4e6b Add SMB Exfiltrator Payload

This is an awesome payload check out Hak5 episode 2202

2017-03-21 14:12:41 +07:00

payload.txt

Add SMB Exfiltrator Payload

2017-03-21 14:12:41 +07:00

readme.md

Add SMB Exfiltrator Payload

2017-03-21 14:12:41 +07:00

readme.md

SMB Exfiltrator

Author: Hak5Darren
Version: Version 1.0
Target: Windows XP SP3+ (Powershell)
Category: Exfiltration
Attackmodes: HID, Ethernet

Description

Exfiltrates select files from users's documents folder via SMB. Liberated documents will reside in Bash Bunny loot directory under loot/smb_exfiltrator/HOSTNAME-#

Configuration

Configured to copy PDF files by default. Change EXFILTRATE_FILES variable to desired.

STATUS

LED	Status
Red (fast blink)	Impacket not found in /pentest
Red (slow blink)	Setup Failed. Target didn't obtain IP
Amber	Initialization
Purple (fast blink)	Switching to Mass Storage (optional)
Blue (interupt)	Receiving files
White	Files received, moving to mass storage
Green	Finished