Skip to content

Instantly share code, notes, and snippets.

@nethunteros

nethunteros/bbnotes.MD

Last active March 18, 2024 19:09
Show Gist options
  • Star 8 You must be signed in to star a gist
  • Fork 2 You must be signed in to fork a gist
  • Save nethunteros/89af84c4197476276f6cff49414bc432 to your computer and use it in GitHub Desktop.
Save nethunteros/89af84c4197476276f6cff49414bc432 to your computer and use it in GitHub Desktop.
Download ZIP
Bash Bunny notes
Raw
bbnotes.MD

Assumes were using Linux/Kali

Bash Bunny is an awesome little device by Hak5 and I wrote down a few notes to quickly get started.

First Steps

Plug in arming mode (closest to computer) Download firmware from: https://wiki.bashbunny.com/#!downloads.md Check checksum Follow instructions of placing into root of bashbunny drive/folder and eject/plug back in

Setup up SSH (linux/kali)

In arming mode, open BashBunny folder and navigate to: payloads > switch1 > payload.txt Change your payload.txt to something like this:

# System default payload
LED B SLOW
ATTACKMODE ECM_ETHERNET STORAGE

Eject your device and move switch to switch 1 (farther away from computer). Don't plug it in yet. If you haven't already, download the internet sharing script and run it:

wget bashbunny.com/bb.sh
chmod +x bb.sh
./bb.sh

This should now allow you to share your internet and connect to bashbunny over ssh. Connect like this:

ssh root@172.16.64.1
(password is hak5bunny)

Change your password with passwd command.

Setup Metasploit

You may not need to run metasploit on your bunny but it's good to know how to install it:

# Install date for ssl cert
apt-y install ntpdate
ntpdate -s us.pool.ntp.org
apt -y install screen autoconf bison build-essential curl git-core libapr1 libaprutil1 libcurl4-openssl-dev libgmp3-dev libpcap-dev libpq-dev libreadline6-dev libsqlite3-dev libssl-dev libsvn1 libtool libxml2 libxml2-dev libxslt-dev libyaml-dev locate ncurses-dev openssl wget xsel zlib1g zlib1g-dev ruby-dev
git clone https://github.com/rapid7/metasploit-framework.git
curl -sSL https://rvm.io/mpapis.asc | gpg --import -
curl -L https://get.rvm.io | bash -s stable
source /etc/profile.d/rvm.sh
echo "source /etc/profile.d/rvm.sh" >> /root/.profile
cd metasploit-framework
rvm install ruby-2.4.1
cd ..
cd metasploit-framework
gem install bundler
bundle install
./msfconsole
msfupdate

This can take a few hours.

Install helpful tools

Plug in arming mode (closest to computer)

cd /media/root/BashBunny/tools
wget https://github.com/qdba/MyBashBunny/raw/master/tools/impacket-bunny.deb
wget https://github.com/qdba/MyBashBunny/raw/master/tools/responder_2.3.3.6-2.deb

Eject and plug back in with arming mode

Mounting folder

To mount mass storage device as folder:

mount -o sync /dev/nandf /root/udisk

Payloads

All payloads are mirrored from the github repo: https://github.com/hak5/bashbunny-payloads/tree/master/payloads/library

You just need to modify/copy files to switch folder for whatever switch you plan on using.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment