Difference between revisions of "Hak5 Bash Bunny"
Line 74: | Line 74: | ||
sudo screen /dev/ttyAMC0 115200 | sudo screen /dev/ttyAMC0 115200 | ||
=== | === SSH === | ||
Set the bash bunny in attack mode (Switch at the nearest position to the USB connector) and plug it in. Enter the device and follow the path BashBunny/payloads/switch1 (switch 2 can be used as well)and edit the payload.txt file | |||
*** Windows *** | |||
Change the third line to | |||
ATTACKMODE STORAGE RNDIS_ETHERNET | |||
*** MAC and Linux *** | |||
Change the third line to | |||
ATTACKMODE STORAGE ECM_ETHERNET | |||
The RNDIS_ETHERNET and ECM_ETHERNET are used to display the Bash Bunny as an USB Ethernet adapter. Windows uses for this adapters proprietary drivers so it is not compatible with the Ethernet Control Model (ECM). | |||
Connect whit: | |||
ssh root@172.16.64.1 | |||
== Used Hardware == | == Used Hardware == |
Revision as of 12:12, 5 June 2020
Summary
This documentation is about the Bash Bunny from Hak5. This device is an multi-purpose USB Attack platform.
Gain Access to the Bash Bunny
There are three main ways to gain access to the Bash Bunny:
- from the File System
- with an Serial Console Interface
- with SSH
hostname | root |
password | hak5bunny |
Serial Console Interface
The Serial Console Interface can be used when the Bash Bunny is in attack mode. It is independent from the operating system but the ways are different.
Windows (Putty)
Putty is the best way t access serial consoles when working on an Windows machine. Just download it on the manufacturer website and install it and follow the steps.
Step 1:
Get the comport by entering
[Windows key] device manager [enter]
Extend the "Ports (COM & LPT) line and search for the "USB Serial Device(COM..)"
Step 2:
Open Putty and go to the Serial TAB and enter the following parameters:
Serial line to connect to | COM.. |
Speed (baud) | 115200 |
Data bits | 8 |
Stop bits | 1 |
Parity | No |
Flow control | XON/XOFF |
Go back to the session tab and check "Serial" and Open the Connection
Linux
1. When using Linux it is preffered to use the package screen install it with
sudo apt-get install screen
2. Search for the device with
dmesg | grep tty Output: [195.328289] cdc_acm 1-1.1.2.3:2.0: ttyACM0: USB ACM device
3. Connect with the command
sudo screen /dev/ttyAMC0 115200
SSH
Set the bash bunny in attack mode (Switch at the nearest position to the USB connector) and plug it in. Enter the device and follow the path BashBunny/payloads/switch1 (switch 2 can be used as well)and edit the payload.txt file
- Windows ***
Change the third line to
ATTACKMODE STORAGE RNDIS_ETHERNET
- MAC and Linux ***
Change the third line to
ATTACKMODE STORAGE ECM_ETHERNET
The RNDIS_ETHERNET and ECM_ETHERNET are used to display the Bash Bunny as an USB Ethernet adapter. Windows uses for this adapters proprietary drivers so it is not compatible with the Ethernet Control Model (ECM).
Connect whit:
ssh root@172.16.64.1
Used Hardware
Device to be used with this documentation Maybe another device to be used with this documentation
Courses
- A course where this documentation was used (2017, 2018)
- Another one (2018)
References
Category:Pentesting