mirror of https://github.com/hak5darren/bashbunny-payloads.git synced 2025-10-29 16:58:12 +00:00

Files

Darren Kitchen 46e65e5eff Merge pull request #96 from surrealalucard/master

Modified smb_exfil to be more hidden

2017-03-23 09:17:35 +07:00

payload.txt

Updated smb_exfiltrator to be more hidden

2017-03-22 16:13:32 -04:00

readme.md

Updated LED status and added discussion link

2017-03-23 07:55:59 +07:00

readme.md

SMB Exfiltrator

Author: Hak5Darren
Version: Version 1.0
Target: Windows XP SP3+ (Powershell)
Category: Exfiltration
Attackmodes: HID, Ethernet

Description

Exfiltrates select files from users's documents folder via SMB. Liberated documents will reside in Bash Bunny loot directory under loot/smb_exfiltrator/HOSTNAME-#

Configuration

Configured to copy PDF files by default. Change EXFILTRATE_FILES variable to desired.

STATUS

LED	Status
Red (fast blink)	Impacket not found in /pentest
Red (slow blink)	Setup Failed. Target didn't obtain IP
Purple	HID Stage
Purple (fast blink)	Ethernet Stage
Blue (interupt)	Receiving files
White	Files received, moving to mass storage
Green	Finished

Discussion

Hak5 Forum Thread